Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/sppb7vPv-ptTS9f6DMOTSi8W-WY.roa
File: sppb7vPv-ptTS9f6DMOTSi8W-WY.roa (raw, json)
Hash identifier: EkutUE2O9EYjxeZqWLnVvvaYuOJljpCXn5iksA3ewYs=
Subject key identifier: B2:9A:5B:EE:F3:EF:FA:9B:53:4B:D7:FA:0C:C3:93:4A:2F:16:F9:66
Certificate issuer: /CN=3692fedf59c60d3254e37a9c8ecde11c9ba1282a
Certificate serial: 018D2FA22472E93EB2BAF98B1F5B90A4DA4C
Authority key identifier: 36:92:FE:DF:59:C6:0D:32:54:E3:7A:9C:8E:CD:E1:1C:9B:A1:28:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpL-31nGDTJU43qcjs3hHJuhKCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/sppb7vPv-ptTS9f6DMOTSi8W-WY.roa
Signing time: Mon 22 Jan 2024 05:26:11 +0000
ROA not before: Mon 22 Jan 2024 05:26:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 62.201.192.0/24 maxlen: 24
62.201.196.0/24 maxlen: 24
62.201.199.0/24 maxlen: 24
62.201.200.0/24 maxlen: 24
62.201.201.0/24 maxlen: 24
62.201.202.0/24 maxlen: 24
62.201.203.0/24 maxlen: 24
62.201.204.0/24 maxlen: 24
62.201.205.0/24 maxlen: 24
62.201.207.0/24 maxlen: 24
62.201.208.0/24 maxlen: 24
62.201.210.0/24 maxlen: 24
62.201.211.0/24 maxlen: 24
62.201.216.0/24 maxlen: 24
62.201.237.0/24 maxlen: 24
62.201.248.0/24 maxlen: 24
185.90.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/NpL-31nGDTJU43qcjs3hHJuhKCo.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/NpL-31nGDTJU43qcjs3hHJuhKCo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NpL-31nGDTJU43qcjs3hHJuhKCo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 07:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2f:a2:24:72:e9:3e:b2:ba:f9:8b:1f:5b:90:a4:da:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3692fedf59c60d3254e37a9c8ecde11c9ba1282a
Validity
Not Before: Jan 22 05:26:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b29a5beef3effa9b534bd7fa0cc3934a2f16f966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8b:1f:90:77:ee:a2:47:93:04:53:6e:7c:f7:
ec:5f:03:52:34:fb:43:94:cc:9e:41:39:5f:b3:1e:
91:f6:80:b3:66:57:f0:af:d3:c6:d7:5e:27:f5:2b:
a5:46:8e:ee:d4:ec:ca:8c:73:4a:fc:b1:6e:a4:7f:
a8:c4:56:cf:f5:ef:8c:f3:66:dd:44:10:ce:2b:7a:
66:b0:45:cb:b5:58:f1:35:c2:21:b3:01:58:5c:f0:
02:fd:9f:15:dc:c3:b8:40:5e:6a:c1:c8:7f:58:03:
28:de:4c:4f:a2:61:c9:5f:c3:62:00:82:90:a2:d4:
ef:f4:e9:01:b2:94:5c:d9:ed:51:69:88:0e:95:01:
56:23:d2:82:56:db:2e:d5:a9:83:0d:06:72:48:c9:
03:74:c8:54:c6:5e:ad:5a:16:b1:fe:3a:06:ec:6c:
3b:f8:e2:7c:9a:94:25:66:ca:a6:36:b6:24:c8:88:
67:cb:05:17:42:c3:a6:50:4a:55:67:8b:fe:00:01:
e0:30:45:82:cd:a6:b6:cd:45:9e:90:59:4c:96:87:
7a:bf:19:62:d3:1c:5e:f9:05:10:b6:26:83:53:32:
50:5e:d4:5a:a0:ed:99:78:94:30:53:08:97:a2:f7:
29:de:d9:7f:04:de:38:66:17:28:8b:85:19:c5:4c:
d7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9A:5B:EE:F3:EF:FA:9B:53:4B:D7:FA:0C:C3:93:4A:2F:16:F9:66
X509v3 Authority Key Identifier:
keyid:36:92:FE:DF:59:C6:0D:32:54:E3:7A:9C:8E:CD:E1:1C:9B:A1:28:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpL-31nGDTJU43qcjs3hHJuhKCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/sppb7vPv-ptTS9f6DMOTSi8W-WY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/NpL-31nGDTJU43qcjs3hHJuhKCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.201.192.0/24
62.201.196.0/24
62.201.199.0-62.201.205.255
62.201.207.0-62.201.208.255
62.201.210.0/23
62.201.216.0/24
62.201.237.0/24
62.201.248.0/24
185.90.106.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:9f:ea:58:05:7f:9b:f7:53:2d:38:63:a0:11:af:76:6f:9a:
0a:60:99:e3:12:67:8e:12:88:af:38:4a:14:41:f6:03:d1:8a:
3d:5f:63:d3:2e:a4:73:cf:10:c4:ba:f2:6a:0c:8f:ad:cc:fc:
81:03:d5:7d:da:0d:51:0c:04:ec:29:62:12:7a:6e:46:06:72:
49:c6:21:70:9e:53:63:5c:b0:b0:a5:c5:2a:a4:3f:ad:56:d8:
74:ad:bf:fe:c9:63:4e:02:77:62:4e:26:08:aa:ed:5b:38:4e:
ea:72:db:72:95:8d:99:e8:dc:21:32:a6:c4:26:a1:ae:14:1f:
4c:b4:20:7a:50:1b:5d:f1:c8:29:20:b1:49:f6:5b:7a:85:65:
88:43:d8:bd:fa:e5:17:c5:38:67:a3:d6:2d:0f:4d:51:e1:a9:
cb:32:bb:bd:f7:dc:8f:47:52:73:4d:19:d2:31:99:91:c4:3b:
bc:0f:0c:a6:7c:88:53:6a:4c:6f:55:cb:3c:30:90:b0:f4:de:
96:f4:8a:ba:68:2d:f5:ba:d0:41:d7:79:14:04:0a:0a:49:30:
ee:ef:42:79:e0:89:ee:08:cc:04:cf:76:9b:88:9e:4a:4a:fd:
08:40:a4:a5:18:de:1a:09:84:72:74:ae:26:27:9e:d2:46:61:
41:94:b6:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 16:21:38 2024 by rpki-client on console-fra.rpki-client.org