Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/b_Se1Hv7TRgduIF85BXaqJDcsvg.roa
File: b_Se1Hv7TRgduIF85BXaqJDcsvg.roa (raw, json)
Hash identifier: eVjBWQnzrXl3iIjM0QuXQ7vZvDmDY9zDhw4ZjdVXpYk=
Subject key identifier: 6F:F4:9E:D4:7B:FB:4D:18:1D:B8:81:7C:E4:15:DA:A8:90:DC:B2:F8
Certificate issuer: /CN=e92c415d1775ae9993e900a7536b46ab144a9aa2
Certificate serial: 018CC56E1CC590DACC10D19919A4BF46BA59
Authority key identifier: E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/b_Se1Hv7TRgduIF85BXaqJDcsvg.roa
Signing time: Mon 01 Jan 2024 14:29:36 +0000
ROA not before: Mon 01 Jan 2024 14:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41343
IP address blocks: 213.181.70.0/24 maxlen: 24
213.181.71.0/24 maxlen: 24
89.29.192.0/24 maxlen: 24
89.29.192.0/21 maxlen: 21
89.29.195.0/24 maxlen: 24
89.29.194.0/24 maxlen: 24
89.29.193.0/24 maxlen: 24
89.29.199.0/24 maxlen: 24
89.29.198.0/24 maxlen: 24
89.29.197.0/24 maxlen: 24
89.29.196.0/24 maxlen: 24
89.29.202.0/24 maxlen: 24
89.29.200.0/23 maxlen: 23
89.29.205.0/24 maxlen: 24
89.29.204.0/24 maxlen: 24
89.29.226.0/24 maxlen: 24
89.29.228.0/24 maxlen: 24
89.29.227.0/24 maxlen: 24
185.40.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:1c:c5:90:da:cc:10:d1:99:19:a4:bf:46:ba:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e92c415d1775ae9993e900a7536b46ab144a9aa2
Validity
Not Before: Jan 1 14:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ff49ed47bfb4d181db8817ce415daa890dcb2f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:04:f6:45:f9:1d:85:2d:1b:b6:8e:42:a2:8f:
9e:d7:5f:64:fa:bd:aa:28:25:71:2c:1e:e2:9c:a5:
66:a3:fa:c1:dc:a9:f3:5f:27:c9:b4:b4:41:5a:84:
90:2a:b8:9c:27:fa:95:fe:87:c9:d9:b9:2b:d7:0e:
df:5f:93:0d:f6:12:4f:f2:af:48:41:45:86:35:54:
34:20:ed:e3:89:88:15:b7:42:cb:2b:a5:f6:cf:9d:
b4:cb:57:72:d5:e3:98:48:b3:14:e7:90:94:a3:ee:
18:d7:f8:23:64:87:3f:b7:50:15:db:89:f3:d4:14:
de:56:10:72:3a:6a:6e:5a:10:22:17:2f:c1:b6:28:
05:17:06:80:8f:ef:f5:58:49:82:40:9e:69:e0:2d:
6c:a3:a0:80:bf:c3:76:db:5b:79:36:6a:c4:58:e0:
31:fb:b0:3f:f9:f6:0f:3f:6f:55:16:d7:45:82:1a:
b0:dc:f0:4c:36:83:cc:8b:f8:fb:20:ee:52:c7:de:
e2:fb:64:92:92:fc:a9:94:0a:92:3e:e0:12:65:9e:
f8:d8:e7:ce:26:99:fa:d5:77:a6:e3:65:dc:3f:98:
1e:67:aa:92:5b:11:c2:5e:d7:c0:d3:c5:0c:b4:cd:
78:0c:6f:95:d0:63:53:8e:5a:49:38:da:93:b2:b8:
e0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:F4:9E:D4:7B:FB:4D:18:1D:B8:81:7C:E4:15:DA:A8:90:DC:B2:F8
X509v3 Authority Key Identifier:
keyid:E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/b_Se1Hv7TRgduIF85BXaqJDcsvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.29.192.0-89.29.202.255
89.29.204.0/23
89.29.226.0-89.29.228.255
185.40.36.0/24
213.181.70.0/23
Signature Algorithm: sha256WithRSAEncryption
92:7c:92:57:83:42:98:6a:5b:82:71:ef:f4:bc:8d:29:a4:f9:
04:69:f5:32:1c:e7:01:c8:65:7b:f7:9f:23:31:5a:b0:38:02:
1d:3b:8c:73:66:ab:0e:55:45:bc:aa:fd:aa:74:de:d2:7a:11:
fd:5b:b0:e3:22:6a:49:19:4b:f6:78:be:35:ee:d3:14:c3:5e:
1f:bf:d3:6b:54:3e:e3:07:d7:90:04:f7:05:26:8d:36:38:44:
82:7b:49:e6:c0:18:ab:8b:f6:ad:5e:0b:21:54:64:09:0b:eb:
9a:6f:1e:de:51:d8:8d:90:66:a3:39:0b:8f:f0:87:99:a0:e3:
81:ae:c8:2b:8c:99:68:66:54:0c:73:5f:8e:8e:a0:30:40:b4:
db:f8:3b:0b:e1:de:a1:04:5d:17:2e:ce:74:46:d5:ca:73:72:
1d:65:12:5b:3b:6f:63:4e:44:09:f5:c0:9f:cb:6c:fd:d1:5f:
1d:87:ae:81:99:24:c4:c2:e3:a0:9a:fc:ef:79:c1:29:62:50:
bf:4d:94:34:29:8e:37:c5:d8:59:ef:4f:ee:eb:ff:23:e7:5f:
67:6d:cb:20:71:85:22:e4:01:ca:5f:74:39:4d:a1:2b:c7:da:
82:9a:7c:be:d8:d4:2b:b3:16:8c:45:75:d5:f6:b5:2a:c9:ea:
ab:b7:62:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 10:45:09 2024 by rpki-client on console-ams.rpki-client.org