Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/d07f01-77c0-4a40-9563-d6bb580af785/1/62UrKny_bfQJeP8ALtnucxbRVs4.roa
File: 62UrKny_bfQJeP8ALtnucxbRVs4.roa (raw, json)
Hash identifier: IOt8F9FNi+tcUPd6Ak/j54/7dZh7sVDGMOyWPDHO1rA=
Subject key identifier: EB:65:2B:2A:7C:BF:6D:F4:09:78:FF:00:2E:D9:EE:73:16:D1:56:CE
Certificate issuer: /CN=7645692d4bd30cf9e989d55bac8d08e7714493ab
Certificate serial: 0191B2EFC13F2DB91E851E4D1CCF0AE7C360
Authority key identifier: 76:45:69:2D:4B:D3:0C:F9:E9:89:D5:5B:AC:8D:08:E7:71:44:93:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkVpLUvTDPnpidVbrI0I53FEk6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/d07f01-77c0-4a40-9563-d6bb580af785/1/62UrKny_bfQJeP8ALtnucxbRVs4.roa
Signing time: Mon 02 Sep 2024 13:32:22 +0000
ROA not before: Mon 02 Sep 2024 13:32:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12637
IP address blocks: 31.14.183.0/24 maxlen: 24
77.81.143.0/24 maxlen: 24
78.40.111.0/24 maxlen: 24
86.106.75.0/24 maxlen: 24
86.106.76.0/24 maxlen: 24
91.233.180.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/d07f01-77c0-4a40-9563-d6bb580af785/1/dkVpLUvTDPnpidVbrI0I53FEk6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/d07f01-77c0-4a40-9563-d6bb580af785/1/dkVpLUvTDPnpidVbrI0I53FEk6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/dkVpLUvTDPnpidVbrI0I53FEk6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b2:ef:c1:3f:2d:b9:1e:85:1e:4d:1c:cf:0a:e7:c3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7645692d4bd30cf9e989d55bac8d08e7714493ab
Validity
Not Before: Sep 2 13:32:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb652b2a7cbf6df40978ff002ed9ee7316d156ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f4:58:1f:41:60:4a:ab:f5:a0:0a:ab:ff:3c:
ef:05:90:5d:b4:56:e5:6a:8f:8f:e8:89:e0:12:06:
f2:0c:30:4f:06:34:54:4a:45:80:a0:80:19:f4:63:
b3:e2:77:3d:6e:74:b4:ca:32:4e:9b:70:17:ae:9c:
c3:37:f4:a5:e5:bf:19:7c:12:5d:2e:ce:95:b9:df:
49:f9:32:80:b2:a4:57:4c:7a:58:e1:38:1d:5e:5b:
7f:62:ba:b7:7a:1e:1f:c7:85:28:a0:7a:cc:f0:f1:
76:f0:3f:fc:bc:de:78:1a:40:e0:8a:0e:80:13:44:
a0:e6:97:d6:93:9f:86:db:d1:36:14:2d:cc:00:37:
42:4d:ac:15:1c:96:36:8a:f9:5e:4c:d3:fe:da:62:
0e:21:5b:fc:39:5a:79:cd:ea:cb:75:ab:02:fd:b8:
60:38:12:3e:40:92:a7:32:10:af:62:fe:60:1e:0c:
f1:24:e5:63:15:24:f0:12:88:1e:0c:fd:70:f0:45:
12:4d:6a:6a:31:bd:2e:61:b4:d7:14:32:34:a3:a6:
bc:6c:33:e1:bc:e0:66:d1:0e:ae:34:b3:ff:b9:25:
02:84:f9:bf:31:06:ae:08:56:22:1e:77:b4:66:54:
f6:3d:24:d6:3e:83:cd:c1:b3:13:e6:b1:dd:dc:38:
35:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:65:2B:2A:7C:BF:6D:F4:09:78:FF:00:2E:D9:EE:73:16:D1:56:CE
X509v3 Authority Key Identifier:
keyid:76:45:69:2D:4B:D3:0C:F9:E9:89:D5:5B:AC:8D:08:E7:71:44:93:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkVpLUvTDPnpidVbrI0I53FEk6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d07f01-77c0-4a40-9563-d6bb580af785/1/62UrKny_bfQJeP8ALtnucxbRVs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d07f01-77c0-4a40-9563-d6bb580af785/1/dkVpLUvTDPnpidVbrI0I53FEk6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.183.0/24
77.81.143.0/24
78.40.111.0/24
86.106.75.0-86.106.76.255
91.233.180.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:2c:df:6e:eb:a3:a9:31:78:75:be:fe:c6:28:de:ca:49:df:
03:02:aa:66:31:84:1d:09:3d:04:b6:55:4a:95:13:d6:c9:37:
38:bb:ed:12:0a:8e:56:e9:63:32:66:e4:1e:f2:dd:68:68:e3:
1d:a7:ad:ed:f2:73:7a:4a:f6:ed:d7:63:14:1e:10:b4:48:7b:
75:93:84:2c:d0:ef:ef:74:60:0e:e2:80:97:fd:f3:2f:dd:05:
82:d7:93:da:f1:64:c6:94:2a:d5:50:a3:59:67:98:4b:74:b4:
43:c0:ef:d0:d5:a7:45:7f:64:5e:f7:b9:4c:4c:b5:d2:ee:de:
0f:67:52:fc:70:6a:61:e6:85:3d:d5:22:4a:98:18:64:71:d7:
80:8e:26:5d:2e:73:99:c5:9c:d1:62:58:ff:9d:5d:5e:95:bc:
07:25:eb:84:63:21:4d:c7:d8:f1:63:df:4a:01:ae:0f:3a:de:
67:e5:17:48:c5:02:c8:d7:e9:53:de:0d:c8:f3:b8:9b:6e:5b:
c8:84:1a:f4:47:e0:34:01:24:6e:be:a6:ac:85:7d:c6:0d:fb:
e1:7c:ab:40:6d:1f:e9:af:1c:22:a5:17:1f:f3:ab:58:d1:39:
b1:64:71:8b:cd:e5:96:bb:a1:8f:fd:dc:40:f1:db:0d:47:39:
3d:9c:c9:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 10:15:49 2024 by rpki-client on console-ams.rpki-client.org