Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/ISlzuNypu0Q4M1rMSBiLDS6YtEc.roa
File: ISlzuNypu0Q4M1rMSBiLDS6YtEc.roa (raw, json)
Hash identifier: JfWWf7nZtCjq8z5a5Uq0n8q7bWdS7CBOXSN+G3AjoMw=
Subject key identifier: 21:29:73:B8:DC:A9:BB:44:38:33:5A:CC:48:18:8B:0D:2E:98:B4:47
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EEFB78767558BCFDD81D033C488D39397
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/ISlzuNypu0Q4M1rMSBiLDS6YtEc.roa
Signing time: Thu 18 Apr 2024 05:39:26 +0000
ROA not before: Thu 18 Apr 2024 05:39:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24783
IP address blocks: 62.109.160.0/19 maxlen: 19
62.109.173.0/24 maxlen: 24
62.109.176.0/22 maxlen: 22
62.109.180.0/23 maxlen: 23
62.109.183.0/24 maxlen: 24
62.109.184.0/24 maxlen: 24
62.109.187.0/24 maxlen: 24
62.109.188.0/22 maxlen: 22
62.109.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ef:b7:87:67:55:8b:cf:dd:81:d0:33:c4:88:d3:93:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 18 05:39:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=212973b8dca9bb4438335acc48188b0d2e98b447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4c:e7:d7:a4:51:aa:bd:f2:32:c3:22:74:f8:
2a:53:c9:b8:80:e7:be:76:10:90:b2:95:f0:66:77:
a3:c2:82:9d:63:f1:1d:7f:a0:28:00:40:20:ea:f7:
07:8d:af:0b:8d:82:5f:ca:b6:89:53:b5:e6:74:78:
75:0a:ca:47:12:00:dd:31:d9:8d:92:65:67:ce:4d:
c4:9a:8c:fb:cb:f0:2f:ca:4b:ee:25:0f:fa:97:75:
a1:89:53:86:71:5b:59:f5:28:cc:47:10:81:5b:a6:
70:6e:5d:42:3d:77:7a:72:a9:bc:7d:af:36:e5:14:
ef:01:19:91:65:d2:9f:d7:d5:bd:6e:73:12:d0:d5:
c1:e0:30:f1:ae:32:a8:26:33:52:97:78:17:95:f0:
56:a1:28:66:17:0d:c6:7b:7a:c1:c7:96:d7:8d:d5:
12:0a:88:97:a0:75:9f:2e:2a:53:9c:f3:d8:5b:07:
58:21:ba:39:2e:fd:f9:3a:80:3a:a2:c4:ac:17:cb:
c9:ae:4d:ce:8c:93:ba:4c:a9:0c:8b:7c:2a:e6:4c:
7d:cf:27:be:d0:f8:aa:e3:47:44:70:ce:83:1d:8e:
47:26:f1:7f:dd:50:58:fe:05:c1:67:eb:7b:5b:ee:
96:ed:05:db:56:87:5d:ba:52:4c:91:bd:1c:cb:d3:
b0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:29:73:B8:DC:A9:BB:44:38:33:5A:CC:48:18:8B:0D:2E:98:B4:47
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/ISlzuNypu0Q4M1rMSBiLDS6YtEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.109.160.0/19
Signature Algorithm: sha256WithRSAEncryption
0e:aa:1e:64:6a:17:d9:ae:40:13:da:a0:c3:86:71:92:2d:08:
7c:a2:c0:89:76:48:15:d5:78:9d:cb:3b:b3:a9:e3:34:b0:31:
bb:de:8a:7f:85:58:19:06:c6:6f:d4:de:be:f1:d2:e9:c0:e5:
fe:48:0e:45:5e:20:87:e7:1b:b8:a3:e0:07:3c:6e:0e:be:f4:
7e:ac:19:ff:b2:ca:22:91:b7:2a:7b:b3:7e:7a:7d:b7:32:f4:
ef:1c:d4:94:7b:ae:ff:ac:3f:46:a4:f4:86:2b:64:52:f8:c2:
66:c2:29:82:97:6a:b4:45:5f:71:89:9c:fa:4d:24:8c:68:f9:
f6:fb:24:8f:f5:95:fe:df:e5:ae:8f:64:1c:fa:90:f0:1e:67:
01:94:89:67:97:4e:e0:fa:bb:ea:11:f5:65:d0:44:7e:de:f8:
6b:ef:76:9f:4c:ca:60:10:79:df:6b:41:d5:b3:85:f3:3e:1e:
f2:c6:20:61:44:0f:c1:c1:70:af:b5:0a:47:e3:ea:ea:bb:9b:
ae:ac:8d:b4:f6:76:ec:c4:2a:9c:82:c5:c2:fd:6a:a5:07:f0:
d8:37:0a:ea:aa:37:67:5d:02:6d:81:08:bc:3a:22:4c:39:5f:
fd:07:fb:de:e2:4b:55:5d:7a:e0:a1:81:74:39:6b:56:a3:05:
fe:f5:95:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:43:26 2024 by rpki-client on console-fra.rpki-client.org