Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/FUt5mHsV-LKpYZ-D0EyPUXSZ4Jo.roa
File: FUt5mHsV-LKpYZ-D0EyPUXSZ4Jo.roa (raw, json)
Hash identifier: bOJp6H8CvrQdLZItSydM0HJz7yw7qG/v5seSoNBfFVU=
Subject key identifier: 15:4B:79:98:7B:15:F8:B2:A9:61:9F:83:D0:4C:8F:51:74:99:E0:9A
Certificate issuer: /CN=e92c415d1775ae9993e900a7536b46ab144a9aa2
Certificate serial: 018CC56E1EF4E34F966AC8C93243B4C1322F
Authority key identifier: E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/FUt5mHsV-LKpYZ-D0EyPUXSZ4Jo.roa
Signing time: Mon 01 Jan 2024 14:29:37 +0000
ROA not before: Mon 01 Jan 2024 14:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60267
IP address blocks: 89.29.224.0/24 maxlen: 24
89.29.231.0/24 maxlen: 24
89.29.229.0/24 maxlen: 24
89.29.246.0/24 maxlen: 24
185.64.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:1e:f4:e3:4f:96:6a:c8:c9:32:43:b4:c1:32:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e92c415d1775ae9993e900a7536b46ab144a9aa2
Validity
Not Before: Jan 1 14:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=154b79987b15f8b2a9619f83d04c8f517499e09a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:35:73:13:8b:7b:ea:7d:20:81:97:ec:33:f9:
24:38:20:1e:dc:dc:ef:06:c5:33:ea:81:02:a5:9f:
da:f6:5b:11:8d:65:e4:04:a1:89:26:d0:31:8f:75:
64:d0:5c:b8:ca:55:95:68:b2:f8:6f:aa:73:14:0a:
de:41:22:d9:28:e3:1b:ce:5a:df:1f:a1:91:2d:12:
cc:e0:35:77:6c:2b:48:01:64:ea:c9:c3:23:2a:73:
b0:64:7f:70:72:37:da:ca:56:58:30:a2:70:2f:68:
8a:de:43:b2:98:31:5d:7b:1b:68:e6:4e:09:91:71:
d8:80:d2:2a:a4:b2:7d:f0:8f:74:3c:5f:8b:59:26:
9f:4e:11:3e:25:96:c4:83:72:5e:fd:9d:07:90:b3:
bf:78:4c:b6:35:c4:1d:fd:dc:7a:f3:a9:a9:ab:22:
e8:02:e1:5b:74:7f:b8:53:4c:e0:08:b8:72:09:a8:
ff:b3:a7:fa:86:79:31:66:53:40:51:7d:02:3d:2b:
f0:8b:ac:08:2c:6b:11:e0:84:74:4e:d1:b9:c2:6e:
5c:fc:b1:c8:4d:92:d4:77:02:d4:9a:63:e8:96:c1:
34:38:36:e2:64:ed:1a:11:ea:06:9b:65:db:d4:51:
36:5f:46:78:96:e7:36:14:09:9d:3f:d9:fb:2f:59:
c9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:4B:79:98:7B:15:F8:B2:A9:61:9F:83:D0:4C:8F:51:74:99:E0:9A
X509v3 Authority Key Identifier:
keyid:E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/FUt5mHsV-LKpYZ-D0EyPUXSZ4Jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.29.224.0/24
89.29.229.0/24
89.29.231.0/24
89.29.246.0/24
185.64.240.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:99:f3:84:56:22:d5:27:c1:5a:fe:41:8e:b5:74:ae:6f:c3:
82:b6:bc:1c:b7:bb:82:93:61:a3:0d:81:f3:da:b5:de:4b:23:
47:14:dd:93:df:e1:62:d8:0d:f3:de:8e:94:94:84:df:10:d1:
0f:34:eb:d5:06:c2:64:12:8f:97:ee:ef:57:f6:79:f3:96:32:
18:c6:86:d0:40:07:1f:e8:ce:96:fe:07:33:03:8e:d0:d3:d0:
f4:6a:21:ed:01:d2:57:f3:28:14:2a:be:c9:3c:10:34:c2:15:
f3:7f:7e:96:03:82:e1:34:db:9d:a9:80:6b:5d:61:de:91:c0:
d0:45:5a:27:9d:35:c4:15:5e:d9:97:5e:53:d6:dc:1c:69:d1:
22:d2:eb:94:4f:5e:56:11:80:52:77:9f:61:20:e5:af:fa:c1:
92:6a:fa:73:52:d1:be:97:56:c9:85:57:77:8e:a3:66:f0:4b:
c2:20:06:6a:26:d1:5c:69:cf:ab:dc:55:e4:82:02:71:58:9d:
92:97:f4:09:cd:4b:22:ab:51:cb:24:1c:fe:af:e8:59:7e:27:
88:6c:8a:41:b5:3e:79:7c:a2:fa:a6:3a:67:52:29:c0:c3:72:
75:09:83:c9:25:e6:c5:92:8e:f1:0c:5d:23:65:77:af:eb:ea:
2a:ba:3b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 10:45:09 2024 by rpki-client on console-ams.rpki-client.org