Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/huPI6u_LRtdxxCntM6xWi8UILhs.roa
File: huPI6u_LRtdxxCntM6xWi8UILhs.roa (raw, json)
Hash identifier: dxaGNUPSqDMCpFu0jmftsWJq4vBwtQVy+FWsjciFptc=
Subject key identifier: 86:E3:C8:EA:EF:CB:46:D7:71:C4:29:ED:33:AC:56:8B:C5:08:2E:1B
Certificate issuer: /CN=19622650048107918adf1b22cdf087c8a834f79c
Certificate serial: 019423D6D186CAD07DC37838C94D77451451
Authority key identifier: 19:62:26:50:04:81:07:91:8A:DF:1B:22:CD:F0:87:C8:A8:34:F7:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GWImUASBB5GK3xsizfCHyKg095w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/huPI6u_LRtdxxCntM6xWi8UILhs.roa
Signing time: Wed 01 Jan 2025 21:47:48 +0000
ROA not before: Wed 01 Jan 2025 21:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206170
IP address blocks: 62.3.44.0/24 maxlen: 24
86.106.25.0/24 maxlen: 24
86.107.103.0/24 maxlen: 24
109.205.246.0/24 maxlen: 24
185.132.127.0/24 maxlen: 24
185.189.48.0/22 maxlen: 22
188.66.60.0/22 maxlen: 22
188.66.60.0/24 maxlen: 24
188.66.61.0/24 maxlen: 24
188.66.62.0/24 maxlen: 24
188.66.63.0/24 maxlen: 24
195.85.54.0/24 maxlen: 24
2001:67c:750::/48 maxlen: 48
2a0b:dc80::/29 maxlen: 29
2a0d:5f47:ffff::/48 maxlen: 48
2a12:fe00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/GWImUASBB5GK3xsizfCHyKg095w.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/GWImUASBB5GK3xsizfCHyKg095w.mft
rsync://rpki.ripe.net/repository/DEFAULT/GWImUASBB5GK3xsizfCHyKg095w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:d1:86:ca:d0:7d:c3:78:38:c9:4d:77:45:14:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19622650048107918adf1b22cdf087c8a834f79c
Validity
Not Before: Jan 1 21:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=86e3c8eaefcb46d771c429ed33ac568bc5082e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d2:7e:ac:ba:6b:7d:1e:6d:5c:d2:ba:e5:3b:
a1:cd:c7:c6:07:0b:ab:e7:7b:ca:57:7e:d2:cc:d7:
b4:ab:b1:25:e8:92:ed:a9:50:a9:c8:ab:14:96:0f:
95:93:4e:76:10:ef:0c:9e:56:85:2e:bf:ae:ba:25:
0d:43:ab:82:58:52:5d:33:39:a5:c6:88:ce:07:ec:
ec:24:60:c0:05:92:b1:82:72:da:70:ba:43:bb:ea:
2e:f9:6b:c3:a9:01:dc:28:0d:cb:50:6a:32:fb:03:
41:c0:07:95:41:97:52:7e:33:83:ac:90:ee:3d:6c:
d8:90:df:ab:52:55:fa:cc:26:23:56:f9:cf:67:2f:
f0:0f:eb:f2:72:ec:9c:f7:dd:ce:b7:16:57:ec:03:
ca:db:6a:7d:de:e5:1c:5d:e5:89:ce:6a:b5:9a:a6:
78:1a:f5:94:b3:2c:58:03:0c:a4:91:30:6e:84:37:
67:71:bc:1e:8c:fb:2e:8c:eb:2f:ef:c7:90:51:66:
b6:6b:2b:3b:f0:e8:55:c8:09:a6:02:0c:f5:87:2f:
e7:9a:44:7b:10:80:ab:0a:81:53:c4:e0:b0:5b:53:
2c:b0:60:4c:77:07:3c:eb:4d:71:c8:83:5c:c3:8c:
57:ba:90:65:ef:24:39:b2:56:ad:a8:a6:26:8a:ed:
98:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E3:C8:EA:EF:CB:46:D7:71:C4:29:ED:33:AC:56:8B:C5:08:2E:1B
X509v3 Authority Key Identifier:
keyid:19:62:26:50:04:81:07:91:8A:DF:1B:22:CD:F0:87:C8:A8:34:F7:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GWImUASBB5GK3xsizfCHyKg095w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/huPI6u_LRtdxxCntM6xWi8UILhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c502c1-f314-40b1-a024-8d10fee584fe/1/GWImUASBB5GK3xsizfCHyKg095w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.44.0/24
86.106.25.0/24
86.107.103.0/24
109.205.246.0/24
185.132.127.0/24
185.189.48.0/22
188.66.60.0/22
195.85.54.0/24
IPv6:
2001:67c:750::/48
2a0b:dc80::/29
2a0d:5f47:ffff::/48
2a12:fe00::/29
Signature Algorithm: sha256WithRSAEncryption
2e:56:20:4f:ab:fb:21:ab:29:e5:3e:b9:fb:67:49:9d:f2:6c:
0a:77:de:bc:9c:7e:1f:28:a5:4f:7c:70:b1:1c:94:f0:6e:6c:
7d:88:a5:2b:5a:9b:33:92:a1:f8:46:a1:72:54:de:05:37:92:
ee:02:a3:43:58:79:b2:79:7d:67:82:5d:0a:ed:18:fd:b4:2e:
18:4e:95:cc:3f:c1:be:7d:09:af:84:95:31:42:74:dd:6b:93:
3c:91:5b:ec:7c:fa:66:6b:e5:fa:25:24:22:8f:cb:bc:70:63:
f5:64:8b:05:9e:46:79:3e:be:f0:ab:26:12:6a:8c:6d:60:8c:
64:db:21:52:cb:ce:df:c1:0d:0f:e9:92:4b:f2:a3:31:aa:f6:
55:ef:5a:c1:19:55:1b:51:4d:6c:e7:f3:75:9b:35:62:27:7c:
a2:41:07:ac:ab:00:0c:5e:b0:7e:e6:7f:2c:f0:5e:5a:c1:77:
75:7c:f4:7e:dc:4c:eb:f5:94:78:b7:5b:16:ee:76:c4:36:b8:
52:20:55:29:13:dc:35:31:4f:18:1a:74:a7:ae:22:45:9d:34:
27:81:96:27:34:b0:8c:b4:fe:91:c7:14:25:fc:19:3e:f3:5b:
e0:7a:0e:fa:0b:b5:2c:2e:c9:ea:a2:d1:14:7e:24:78:b4:0a:
c3:6f:9d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 05:11:06 2025 by rpki-client