Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/jlvYhHUl_tINr9DvbuRTQ2-Nn2U.roa
File: jlvYhHUl_tINr9DvbuRTQ2-Nn2U.roa (raw, json)
Hash identifier: zHfvfzIpGyZaL87/Bw/C5E1ZbrhmKTMyoed2TyPvM08=
Subject key identifier: 8E:5B:D8:84:75:25:FE:D2:0D:AF:D0:EF:6E:E4:53:43:6F:8D:9F:65
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018D35B59FDA86640C026B50C31005DCAF0D
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/jlvYhHUl_tINr9DvbuRTQ2-Nn2U.roa
Signing time: Tue 23 Jan 2024 09:45:11 +0000
ROA not before: Tue 23 Jan 2024 09:45:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64267
IP address blocks: 62.72.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:35:b5:9f:da:86:64:0c:02:6b:50:c3:10:05:dc:af:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 23 09:45:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e5bd8847525fed20dafd0ef6ee453436f8d9f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:8a:85:a4:cb:85:d1:da:9b:4b:f6:5c:de:e7:
a8:5d:b5:25:20:f5:88:0c:b7:57:76:88:2e:00:9a:
ce:24:ea:7e:3b:ec:03:df:be:43:77:e5:44:64:36:
d3:30:f0:11:55:91:16:8c:be:4b:65:86:1d:5f:10:
55:9b:2f:c0:00:b1:c5:ca:63:83:6e:a2:0e:0d:89:
bb:ed:12:a8:22:7b:df:f1:56:a3:86:25:2c:36:e0:
8c:58:af:50:bc:d6:77:27:1e:d7:3d:ad:00:99:48:
ca:f7:a5:83:0f:76:c9:eb:45:4e:45:10:0f:c7:2e:
28:f9:b8:8b:a5:37:4c:dc:4f:a7:57:8d:11:cb:18:
0e:8b:b5:c5:77:68:a3:fa:8c:d2:a9:2a:b0:43:e9:
cd:4c:70:be:d9:6b:a8:78:1e:cf:3b:d0:0c:96:e2:
96:64:a8:6f:ca:6f:0e:a6:0d:91:e0:b6:8a:62:d1:
d6:22:1f:ca:57:f5:7a:92:5b:b8:91:c8:54:95:b1:
a8:f6:01:da:8a:37:2c:d1:aa:aa:87:a3:15:1d:e1:
9d:ca:80:5b:b5:3d:51:66:02:78:6d:ea:79:7a:b8:
cb:46:d7:7f:66:f3:6f:7b:c9:4c:3a:df:4d:b4:1b:
1e:dc:ce:e7:71:08:6b:06:ab:44:4d:c7:63:51:10:
dd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:5B:D8:84:75:25:FE:D2:0D:AF:D0:EF:6E:E4:53:43:6F:8D:9F:65
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/jlvYhHUl_tINr9DvbuRTQ2-Nn2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.175.0/24
Signature Algorithm: sha256WithRSAEncryption
be:fa:02:7e:21:a1:8e:06:0d:d2:37:80:73:1e:f9:16:0c:6a:
63:b7:52:a6:86:3f:b6:a2:03:38:6c:df:1e:c7:37:08:5c:75:
ad:32:9e:72:50:58:5a:e1:8d:5c:03:da:a6:b3:6c:9f:42:b7:
ed:53:93:49:b5:31:45:a1:ff:06:00:0f:88:ae:5e:14:7e:58:
b7:be:aa:52:04:6e:e6:e1:0b:59:86:c5:c1:67:40:d4:9d:ea:
1e:76:0e:f5:ff:07:3a:1f:e9:3f:8a:33:3e:14:c5:cc:ac:ab:
3a:4e:0f:1d:a0:38:ee:3b:89:ef:74:eb:09:8b:98:e0:20:ee:
8a:6a:28:97:a2:be:07:0d:31:a4:d7:b3:7b:ae:ac:3c:21:f2:
9c:75:84:e5:6b:0d:ba:d0:fe:17:f6:ea:aa:ff:28:ca:80:49:
78:bb:66:c7:7d:90:07:3c:d7:ae:f8:09:4c:40:3e:c5:18:46:
02:4c:bf:7d:b5:a9:9a:bb:76:79:d9:9f:c6:d1:8f:a1:8a:8c:
e9:12:4e:6e:69:27:3c:39:d9:b3:8b:96:41:e7:2a:a4:46:58:
c8:22:1e:a2:b6:42:66:89:b9:09:b6:c0:8a:1d:c8:00:02:1a:
46:cb:8e:50:7a:0e:84:29:8d:7c:b2:ad:29:61:e7:27:f7:dc:
23:6e:2a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 00:02:45 2024 by rpki-client on console-fra.rpki-client.org