Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/ZEyfnNYb2rAV75IjNI53ZY4N2QA.roa
File: ZEyfnNYb2rAV75IjNI53ZY4N2QA.roa (raw, json)
Hash identifier: 4yAY4pRTxooNzCZ4YzhOc0BK5UcmnvcwokF3NEzqn5U=
Subject key identifier: 64:4C:9F:9C:D6:1B:DA:B0:15:EF:92:23:34:8E:77:65:8E:0D:D9:00
Certificate issuer: /CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Certificate serial: 018DD017AA3151E2AE2F8B94B7A6FF2B52BD
Authority key identifier: 26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/ZEyfnNYb2rAV75IjNI53ZY4N2QA.roa
Signing time: Thu 22 Feb 2024 09:13:48 +0000
ROA not before: Thu 22 Feb 2024 09:13:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208685
IP address blocks: 89.47.1.0/24 maxlen: 24
2a00:1ca8:8a::/48 maxlen: 48
2a03:3f40:89::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.mft
rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d0:17:aa:31:51:e2:ae:2f:8b:94:b7:a6:ff:2b:52:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Validity
Not Before: Feb 22 09:13:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=644c9f9cd61bdab015ef9223348e77658e0dd900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e5:d0:7b:8f:17:9b:51:cb:ca:d5:f6:40:2e:
ef:5e:4a:a9:9f:79:d7:8b:ee:55:01:08:9d:64:9d:
09:45:52:d5:bd:95:53:39:40:b8:45:58:a1:18:16:
ca:6d:02:b5:43:76:af:30:11:07:be:48:32:3d:bc:
ed:25:aa:85:ab:e1:c6:f7:0d:34:3b:98:60:4d:0c:
e3:e2:62:e7:87:c1:21:0e:f5:52:f4:b6:b8:f2:98:
58:34:64:37:3b:83:66:ab:4d:fc:17:5b:66:67:ca:
bd:05:8a:1d:98:ec:74:c2:18:db:04:05:85:7b:6c:
7f:83:64:99:47:0a:41:e5:98:ab:fe:22:7e:b4:87:
2f:e2:47:65:28:3c:9c:80:ca:05:59:26:92:92:c5:
a9:55:3d:8d:a9:75:23:0c:3d:98:24:73:77:f6:fd:
86:a3:42:25:7d:3e:df:3d:2d:04:d1:25:14:1b:dd:
a6:e5:6f:10:0f:75:40:a6:7f:2f:c4:f7:a4:70:d6:
80:2e:97:22:49:e7:0b:f7:97:cc:a5:3c:62:a8:8f:
1a:8a:aa:af:35:24:f3:be:27:6b:9a:bc:d6:cb:9e:
f7:aa:4b:98:1f:e9:8b:90:32:42:3d:51:ee:ff:93:
40:2d:b5:94:1c:d2:c8:97:88:8f:3a:0c:bc:76:6a:
a3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:4C:9F:9C:D6:1B:DA:B0:15:EF:92:23:34:8E:77:65:8E:0D:D9:00
X509v3 Authority Key Identifier:
keyid:26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/ZEyfnNYb2rAV75IjNI53ZY4N2QA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.1.0/24
IPv6:
2a00:1ca8:8a::/48
2a03:3f40:89::/48
Signature Algorithm: sha256WithRSAEncryption
0e:04:a4:b3:fc:91:e7:88:1c:0b:e9:67:e5:2a:ff:32:b2:48:
ce:c5:71:32:1e:05:1b:f5:4a:fd:ee:0f:6d:7c:7f:cb:33:b2:
67:eb:11:b8:29:65:b2:cf:ac:3c:1f:94:6b:c9:68:1a:39:a9:
84:57:01:c3:b6:02:45:9c:78:01:08:34:b1:35:1f:79:c5:3e:
9f:9a:d4:b9:8f:71:b6:06:46:3c:0c:f8:fa:03:6f:52:4e:fe:
a2:26:e4:18:92:b0:4c:5b:17:8a:ef:45:6b:7b:48:00:b3:77:
0c:89:18:6d:aa:de:a0:cb:a1:77:18:40:64:e6:e8:97:44:07:
e6:27:3a:88:a9:13:ec:61:86:ea:d5:a8:12:c7:64:70:cb:26:
d0:ad:1d:81:b4:9b:94:e3:b5:0e:f7:15:40:87:1b:0a:2a:5f:
06:af:dd:40:67:6d:d6:b8:7b:d0:4d:2b:e7:11:a6:1b:de:4c:
93:42:fc:c8:c6:bf:77:83:94:8c:1e:6e:5a:1a:20:22:11:5a:
d4:3e:16:02:2b:b1:2b:35:4f:0c:e3:3a:23:f0:5a:ca:ff:09:
82:5d:d8:21:d6:6a:71:59:20:d3:90:0e:28:76:b2:de:0f:96:
58:e1:23:94:f7:f6:63:79:a2:0b:ae:b3:f8:34:66:eb:60:43:
7a:da:eb:81
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAY3QF6oxUeKuL4uUt6b/K1K9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2MzExNjZkZTc4NWEzNTMxYmRjODM2MWYxMTkwYTgzNjlh
N2VkNmEwHhcNMjQwMjIyMDkxMzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDRjOWY5Y2Q2MWJkYWIwMTVlZjkyMjMzNDhlNzc2NThlMGRkOTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouXQe48Xm1HLytX2QC7vXkqpn3nX
i+5VAQidZJ0JRVLVvZVTOUC4RVihGBbKbQK1Q3avMBEHvkgyPbztJaqFq+HG9w00
O5hgTQzj4mLnh8EhDvVS9La48phYNGQ3O4Nmq038F1tmZ8q9BYodmOx0whjbBAWF
e2x/g2SZRwpB5Zir/iJ+tIcv4kdlKDycgMoFWSaSksWpVT2NqXUjDD2YJHN39v2G
o0IlfT7fPS0E0SUUG92m5W8QD3VApn8vxPekcNaALpciSecL95fMpTxiqI8aiqqv
NSTzvidrmrzWy573qkuYH+mLkDJCPVHu/5NALbWUHNLIl4iPOgy8dmqjzwIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFGRMn5zWG9qwFe+SIzSOd2WODdkAMB8GA1UdIwQY
MBaAFCYxFm3nhaNTG9yDYfEZCoNpp+1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmpFV2JlZUZvMU1iM0lOaDhSa0tnMm1uN1dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9mYjAxNTctNjc0Ni00YjAwLThmOGUt
Yjg5YTI2MTk5OTc2LzEvWkV5Zm5OWWIyckFWNzVJak5JNTNaWTROMlFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS9mYjAxNTctNjc0Ni00YjAwLThmOGUtYjg5YTI2MTk5OTc2
LzEvSmpFV2JlZUZvMU1iM0lOaDhSa0tnMm1uN1dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQAWS8BMBgE
AgACMBIDBwAqAByoAIoDBwAqAz9AAIkwDQYJKoZIhvcNAQELBQADggEBAA4EpLP8
keeIHAvpZ+Uq/zKySM7FcTIeBRv1Sv3uD218f8szsmfrEbgpZbLPrDwflGvJaBo5
qYRXAcO2AkWceAEINLE1H3nFPp+a1LmPcbYGRjwM+PoDb1JO/qIm5BiSsExbF4rv
RWt7SACzdwyJGG2q3qDLoXcYQGTm6JdEB+YnOoipE+xhhurVqBLHZHDLJtCtHYG0
m5TjtQ73FUCHGwoqXwav3UBnbda4e9BNK+cRphveTJNC/MjGv3eDlIwebloaICIR
WtQ+FgIrsSs1TwzjOiPwWsr/CYJd2CHWanFZINOQDih2st4PlljhI5T39mN5oguu
s/g0ZutgQ3ra64E=
-----END CERTIFICATE-----
Generated at Sat Jun 1 08:01:07 2024 by rpki-client on console-fra.rpki-client.org