Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/sVO_hwOUMLHjYiUFYzC6ZlJnNjg.roa
File: sVO_hwOUMLHjYiUFYzC6ZlJnNjg.roa (raw, json)
Hash identifier: A+S9gnFkAJ3wbXU2lCWRPwZRzZuYDwzqjjLfNzaAhnw=
Subject key identifier: B1:53:BF:87:03:94:30:B1:E3:62:25:05:63:30:BA:66:52:67:36:38
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 019421B1B69A7992F7299E06B71E4DAC31E2
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/sVO_hwOUMLHjYiUFYzC6ZlJnNjg.roa
Signing time: Wed 01 Jan 2025 11:48:02 +0000
ROA not before: Wed 01 Jan 2025 11:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396356
IP address blocks: 62.72.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:b6:9a:79:92:f7:29:9e:06:b7:1e:4d:ac:31:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 11:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b153bf87039430b1e36225056330ba6652673638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f7:09:6e:1d:0c:92:73:b7:51:cd:dd:15:1f:
d0:11:d1:f9:83:e9:8f:85:92:bf:a7:6c:ed:8d:70:
36:50:36:e3:ab:ff:45:b3:89:0c:5b:a6:54:c5:37:
3d:c8:b7:70:8c:b0:92:55:c2:2a:7b:14:7a:61:d2:
39:c7:15:54:d8:1a:57:85:65:3a:cf:08:3b:0a:ca:
8d:5a:7f:40:66:0d:f0:c8:c9:41:e7:41:71:8f:7e:
38:34:7f:7d:1a:02:b0:4e:20:95:f3:0a:1c:5e:5d:
79:f0:5d:ba:50:5d:ca:7f:f4:b4:a7:89:0a:05:cd:
4a:c8:9b:86:15:b4:e0:7e:dd:c2:f7:6a:3d:12:59:
aa:18:ac:a7:f6:45:30:59:44:0a:26:bd:71:c6:b6:
6a:87:0e:cc:41:bf:ae:91:61:17:b2:23:1b:fb:86:
5b:11:13:33:c0:7f:4d:38:2c:49:dc:24:00:ab:e9:
2c:7a:16:ce:d8:2c:90:da:fd:57:45:8a:9f:55:d3:
c0:69:24:09:01:77:24:21:3c:70:4d:c6:68:02:92:
4d:e8:b0:2b:8c:dc:e3:5b:b0:77:da:7e:2f:dc:70:
46:f2:a9:41:9a:91:e1:db:bc:c4:de:d3:30:aa:fc:
f6:19:d5:ee:00:f8:19:a1:8f:88:60:05:b8:e4:d3:
3f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:53:BF:87:03:94:30:B1:E3:62:25:05:63:30:BA:66:52:67:36:38
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/sVO_hwOUMLHjYiUFYzC6ZlJnNjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.160.0/24
Signature Algorithm: sha256WithRSAEncryption
81:b0:ea:3c:b5:e7:2d:a2:27:c2:01:fe:66:f5:50:1d:d3:e5:
30:b4:e0:c2:20:00:93:e2:3b:bf:ad:66:6c:0f:eb:47:0d:3c:
13:78:bd:4a:32:e8:b2:f2:91:40:45:54:59:0e:31:93:02:76:
9e:c5:09:60:60:27:9d:be:68:b2:fb:24:fb:eb:49:ac:1f:95:
a3:0f:07:8d:03:a4:0f:10:fb:f0:3a:83:4a:cc:e7:73:d9:50:
ed:3e:24:93:63:66:b6:41:42:f9:a3:0e:fb:4a:08:26:bd:20:
f2:d6:7b:32:d3:dd:63:9f:55:76:20:c9:64:22:28:f6:6a:bd:
7b:31:14:44:81:5d:1c:1e:ad:bc:56:46:51:e4:f3:20:29:8e:
35:cc:50:e0:e8:33:bf:91:84:f5:8b:df:43:01:ed:1f:92:6e:
c0:b9:00:3d:fa:6b:dc:00:77:90:5a:63:58:2f:a3:b0:d1:71:
14:cd:8a:b8:8d:10:88:82:91:05:4c:c5:06:30:75:88:8e:9e:
35:c0:c1:5d:8b:40:6d:a7:1c:80:df:b1:ca:17:15:03:0b:af:
53:f1:97:99:2d:73:35:75:7f:c5:b5:54:4e:1f:de:4f:11:fe:
e5:9e:17:9c:45:f3:aa:4b:b1:56:f7:0a:ae:c3:fb:67:c1:6a:
10:55:b6:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:16 2025 by rpki-client