Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/nWIGQEEDzaoVvT_y5hPxRiP1qn8.roa
File: nWIGQEEDzaoVvT_y5hPxRiP1qn8.roa (raw, json)
Hash identifier: uGDWeypcq1B/eKXj8B8fn9FgOmQqtHY/Hs+n7XduT00=
Subject key identifier: 9D:62:06:40:41:03:CD:AA:15:BD:3F:F2:E6:13:F1:46:23:F5:AA:7F
Certificate issuer: /CN=1e75106771c4295e3d3ecfa04cb97f631623e5bf
Certificate serial: 019423695E75C997EDCF029D4F78D582D264
Authority key identifier: 1E:75:10:67:71:C4:29:5E:3D:3E:CF:A0:4C:B9:7F:63:16:23:E5:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/nWIGQEEDzaoVvT_y5hPxRiP1qn8.roa
Signing time: Wed 01 Jan 2025 19:48:15 +0000
ROA not before: Wed 01 Jan 2025 19:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42334
IP address blocks: 62.84.64.0/24 maxlen: 24
62.84.65.0/24 maxlen: 24
62.84.66.0/24 maxlen: 24
62.84.67.0/24 maxlen: 24
62.84.68.0/24 maxlen: 24
62.84.69.0/24 maxlen: 24
62.84.70.0/24 maxlen: 24
62.84.71.0/24 maxlen: 24
62.84.72.0/24 maxlen: 24
62.84.73.0/24 maxlen: 24
62.84.74.0/24 maxlen: 24
62.84.75.0/24 maxlen: 24
62.84.76.0/24 maxlen: 24
62.84.77.0/24 maxlen: 24
62.84.78.0/24 maxlen: 24
62.84.79.0/24 maxlen: 24
62.84.80.0/24 maxlen: 24
62.84.82.0/24 maxlen: 24
62.84.83.0/24 maxlen: 24
62.84.84.0/24 maxlen: 24
62.84.85.0/24 maxlen: 24
62.84.86.0/24 maxlen: 24
62.84.87.0/24 maxlen: 24
62.84.89.0/24 maxlen: 24
62.84.90.0/24 maxlen: 24
62.84.91.0/24 maxlen: 24
62.84.92.0/24 maxlen: 24
62.84.93.0/24 maxlen: 24
62.84.94.0/24 maxlen: 24
62.84.95.0/24 maxlen: 24
185.114.252.0/24 maxlen: 24
185.114.253.0/24 maxlen: 24
185.114.254.0/24 maxlen: 24
185.114.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 16:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:5e:75:c9:97:ed:cf:02:9d:4f:78:d5:82:d2:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e75106771c4295e3d3ecfa04cb97f631623e5bf
Validity
Not Before: Jan 1 19:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9d6206404103cdaa15bd3ff2e613f14623f5aa7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b8:ff:8c:f6:62:88:fb:3f:49:e8:9a:b4:c4:
9a:11:19:b1:58:86:39:c3:b9:0d:be:87:e9:f1:3a:
b5:20:38:b0:5b:b2:6e:10:e5:ef:cd:fd:68:aa:46:
ea:bd:48:e4:58:37:01:bf:ba:9e:fb:00:47:27:49:
26:21:84:ff:ac:b6:7e:45:ac:30:77:96:6f:89:03:
f9:13:e6:62:ff:de:64:be:6d:a6:02:2f:91:2a:b3:
c4:bc:5c:18:78:32:15:7e:19:47:ec:b9:64:40:3f:
a6:d9:35:ef:a7:81:68:08:86:ca:f2:19:56:db:05:
dd:9c:a8:88:cf:cb:2c:ff:87:f4:23:0e:81:3b:1d:
82:7f:b4:ac:dc:4f:7f:be:09:d1:c0:8a:a8:d8:72:
11:d1:41:cc:8e:3c:bc:88:70:44:c5:f0:00:88:ee:
9d:fa:f3:b7:c9:8f:f3:60:cb:ca:ab:87:58:e4:a2:
9d:5f:6c:08:2e:2a:c3:c7:f8:51:de:65:5a:34:d9:
92:01:35:ae:c4:a8:15:87:94:2e:b9:66:3e:76:b9:
84:9f:0d:11:da:07:f7:a3:64:cd:7b:17:f5:e7:d4:
0c:c2:90:ae:83:e0:f0:d4:39:c9:77:44:95:18:04:
09:62:33:71:9b:a5:3f:41:db:43:aa:08:a0:f7:66:
1e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:62:06:40:41:03:CD:AA:15:BD:3F:F2:E6:13:F1:46:23:F5:AA:7F
X509v3 Authority Key Identifier:
keyid:1E:75:10:67:71:C4:29:5E:3D:3E:CF:A0:4C:B9:7F:63:16:23:E5:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/nWIGQEEDzaoVvT_y5hPxRiP1qn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.84.64.0-62.84.80.255
62.84.82.0-62.84.87.255
62.84.89.0-62.84.95.255
185.114.252.0/22
Signature Algorithm: sha256WithRSAEncryption
25:b9:75:a1:bb:a8:44:ef:45:09:85:b9:db:4e:d8:90:7e:b8:
c8:c3:a0:38:fc:54:b0:20:45:a6:c8:e0:af:c4:db:50:2b:51:
34:49:22:90:5a:da:40:de:64:09:be:ca:7b:87:c5:1a:e1:e6:
67:b1:8b:b2:5f:68:71:88:51:c9:a5:b6:a4:a0:8f:a7:70:f9:
29:fd:00:51:b8:67:c3:ec:a3:fd:12:70:50:2f:5a:9e:4c:7b:
70:91:99:86:d5:98:8f:e8:e6:f9:f2:8d:52:cb:b6:5e:a1:e5:
b2:01:77:90:c1:8e:f5:cf:e1:dc:81:83:e4:65:3e:6d:09:b6:
7a:41:31:85:3b:80:18:73:2a:0a:cb:21:4b:dd:c2:94:e7:76:
70:a6:24:98:ee:b4:8c:be:2d:ce:2a:2f:7c:f5:e2:c4:af:8d:
6c:0a:c1:2e:0e:e2:1e:6d:9f:d6:cc:c1:4e:08:f8:a5:5a:af:
5a:69:47:c3:07:c2:ad:d2:64:e5:ef:61:23:a3:dc:6d:88:fb:
94:f0:c0:30:ba:b7:4e:a0:1c:98:03:02:75:a2:7a:5a:70:05:
45:17:e5:6b:f7:a3:0a:f6:5a:07:74:e7:6d:f7:09:60:a3:c8:
46:2f:17:e4:d5:37:fa:36:f6:f6:28:8f:d4:bc:f5:28:f6:1c:
bf:aa:e6:82
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAZQjaV51yZftzwKdT3jVgtJkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNzUxMDY3NzFjNDI5NWUzZDNlY2ZhMDRjYjk3ZjYzMTYy
M2U1YmYwHhcNMjUwMTAxMTk0ODE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDYyMDY0MDQxMDNjZGFhMTViZDNmZjJlNjEzZjE0NjIzZjVhYTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrj/jPZiiPs/SeiatMSaERmxWIY5
w7kNvofp8Tq1IDiwW7JuEOXvzf1oqkbqvUjkWDcBv7qe+wBHJ0kmIYT/rLZ+Raww
d5ZviQP5E+Zi/95kvm2mAi+RKrPEvFwYeDIVfhlH7LlkQD+m2TXvp4FoCIbK8hlW
2wXdnKiIz8ss/4f0Iw6BOx2Cf7Ss3E9/vgnRwIqo2HIR0UHMjjy8iHBExfAAiO6d
+vO3yY/zYMvKq4dY5KKdX2wILirDx/hR3mVaNNmSATWuxKgVh5QuuWY+drmEnw0R
2gf3o2TNexf159QMwpCug+Dw1DnJd0SVGAQJYjNxm6U/QdtDqgig92YeDwIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFJ1iBkBBA82qFb0/8uYT8UYj9ap/MB8GA1UdIwQY
MBaAFB51EGdxxClePT7PoEy5f2MWI+W/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSG5VUVozSEVLVjQ5UHMtZ1RMbF9ZeFlqNWI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85NGEwZjItYzgwNi00YjU1LWJiZTct
YTJmZGI5MzhjYTJkLzEvbldJR1FFRUR6YW9WdlRfeTVoUHhSaVAxcW44LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC85NGEwZjItYzgwNi00YjU1LWJiZTctYTJmZGI5MzhjYTJk
LzEvSG5VUVozSEVLVjQ5UHMtZ1RMbF9ZeFlqNWI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwMAwDBAY+VEAD
BAA+VFAwDAMEAT5UUgMEAz5UUDAMAwQAPlRZAwQFPlRAAwQCuXL8MA0GCSqGSIb3
DQEBCwUAA4IBAQAluXWhu6hE70UJhbnbTtiQfrjIw6A4/FSwIEWmyOCvxNtQK1E0
SSKQWtpA3mQJvsp7h8Ua4eZnsYuyX2hxiFHJpbakoI+ncPkp/QBRuGfD7KP9EnBQ
L1qeTHtwkZmG1ZiP6Ob58o1Sy7ZeoeWyAXeQwY71z+HcgYPkZT5tCbZ6QTGFO4AY
cyoKyyFL3cKU53ZwpiSY7rSMvi3OKi989eLEr41sCsEuDuIebZ/WzMFOCPilWq9a
aUfDB8Kt0mTl72Ejo9xtiPuU8MAwurdOoByYAwJ1onpacAVFF+Vr96MK9loHdOdt
9wlgo8hGLxfk1Tf6Nvb2KI/UvPUo9hy/quaC
-----END CERTIFICATE-----
Generated at Sat Apr 19 00:50:28 2025 by rpki-client