Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS211440.roa
File: AS211440.roa (raw, json)
Hash identifier: YIvj9Y6uAuE4QG8eGLqX5EALeaHPgAnRPzP62+DmNp4=
Subject key identifier: 29:04:86:86:E6:03:AB:61:5E:0C:A7:61:D2:87:8B:C5:BD:5C:FC:6F
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 7DEC4F7B34912DEE6B166F511C56345FC174590F
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS211440.roa
Signing time: Thu 16 May 2024 09:25:40 +0000
ROA not before: Thu 16 May 2024 09:20:40 +0000
ROA not after: Thu 15 May 2025 09:25:40 +0000
asID: 211440
IP address blocks: 147.79.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 22:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:ec:4f:7b:34:91:2d:ee:6b:16:6f:51:1c:56:34:5f:c1:74:59:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 16 09:20:40 2024 GMT
Not After : May 15 09:25:40 2025 GMT
Subject: CN=29048686E603AB615E0CA761D2878BC5BD5CFC6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ef:a3:ea:2d:ea:bc:ff:65:74:b4:9a:02:94:
40:a1:e8:8e:0d:78:6a:7c:73:a5:90:b8:5b:41:1f:
4f:4f:1f:eb:24:84:cf:05:65:05:cb:bf:2a:91:47:
fa:83:16:94:07:f9:38:35:1d:d8:b2:9d:5a:0c:1c:
a6:dd:d9:ff:b6:eb:83:7e:09:76:3b:a5:11:fe:24:
f2:4f:61:72:fe:87:bf:bd:17:67:6c:d6:83:65:71:
a8:e0:2d:db:44:a2:f5:e5:b6:96:37:31:2a:ef:f6:
5e:97:dd:d5:61:8e:d2:ac:14:0c:7f:f5:8c:b7:94:
97:aa:62:ae:82:c4:fa:7f:95:07:19:b8:81:e5:19:
e2:f9:eb:c7:bb:ca:b8:6c:e5:1f:4f:15:ed:93:e5:
6e:52:bf:9c:79:55:58:b8:23:69:9b:91:27:ad:89:
2c:ad:53:a8:7f:e8:5e:2e:03:70:a4:e8:60:63:3f:
3b:4a:8e:d1:be:3b:ef:df:d6:41:8d:8c:d2:d9:69:
3d:f1:6b:32:ee:69:cc:53:db:5a:37:ad:c6:d5:28:
e3:47:71:67:d2:1a:e0:02:5f:db:1e:4b:47:a1:66:
0f:2d:a7:67:ab:26:60:6d:10:08:10:e5:b4:3a:96:
e2:96:d4:41:91:2a:45:61:22:06:39:de:c0:5d:51:
95:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:04:86:86:E6:03:AB:61:5E:0C:A7:61:D2:87:8B:C5:BD:5C:FC:6F
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS211440.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.6.0/24
Signature Algorithm: sha256WithRSAEncryption
50:be:af:45:01:3d:1e:42:bb:6c:01:38:bf:7f:58:3a:7d:ad:
27:c1:0a:4d:b3:d4:ff:2a:79:d7:4d:de:60:5a:31:f1:a6:87:
09:13:b0:ea:92:7f:35:a5:a1:32:0d:ea:14:e1:26:4e:7d:b5:
88:a1:1d:23:af:e6:78:68:f9:f1:95:67:a3:38:7d:a6:3b:7e:
9d:b9:df:00:a2:2a:a5:69:42:b2:7c:f0:63:fc:f9:32:91:80:
cb:4c:c4:b6:a0:b4:d8:94:f1:f8:45:ed:dc:60:9c:a6:06:2a:
7e:6b:94:da:21:63:22:e6:d6:a7:60:b2:67:02:ad:0a:4e:cd:
40:d3:44:6a:c4:1d:c7:2d:9f:27:aa:df:ff:cc:cc:95:70:ff:
29:bd:20:19:80:6d:5c:48:6b:4f:18:cf:0c:10:5b:22:ed:22:
c6:47:52:93:dd:04:44:7c:0b:29:b6:ef:df:97:b0:77:11:f4:
8c:69:b0:39:8d:2d:7d:92:4c:96:87:cb:4e:aa:f6:c2:f7:f8:
01:ca:61:80:83:90:57:65:35:50:5f:af:43:b4:03:b5:ab:0d:
e8:16:c4:e6:da:bf:dd:13:15:64:5c:19:2a:cf:18:7d:fc:8e:
44:61:80:b0:78:60:08:8c:fa:68:b5:08:a9:53:9a:00:d9:3d:
61:01:e2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 02:59:19 2024 by rpki-client on console-ams.rpki-client.org