Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS211975.roa
File: AS211975.roa (raw, json)
Hash identifier: vqnnai3T9IbIgvlQIJ67KL2KURPztJY7YR5LDyEZhjg=
Subject key identifier: ED:CA:BA:B3:CE:23:6D:4A:79:B1:DB:0F:70:F1:8A:DA:2A:51:61:9E
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 1B5D8CBF75434A68B3BCC95BBA91DA99735D332C
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS211975.roa
Signing time: Fri 24 May 2024 19:23:15 +0000
ROA not before: Fri 24 May 2024 19:18:15 +0000
ROA not after: Fri 23 May 2025 19:23:15 +0000
asID: 211975
IP address blocks: 140.233.164.0/24 maxlen: 24
146.103.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 22:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:5d:8c:bf:75:43:4a:68:b3:bc:c9:5b:ba:91:da:99:73:5d:33:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 24 19:18:15 2024 GMT
Not After : May 23 19:23:15 2025 GMT
Subject: CN=EDCABAB3CE236D4A79B1DB0F70F18ADA2A51619E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:9e:eb:fa:bc:e6:4b:b4:47:19:84:30:27:40:
60:a3:54:98:54:2f:7e:24:8a:f6:00:57:de:b4:9d:
13:c6:5e:3e:1a:da:74:07:fc:bc:23:b9:89:a2:a8:
f4:3f:18:a0:92:3c:99:b7:31:ac:c6:8a:c7:88:0b:
d0:b0:0c:9f:ba:de:1d:dc:42:71:91:19:38:6c:35:
2a:27:30:0e:c9:09:60:fa:8b:01:eb:cd:1e:83:c9:
0d:ef:7b:30:7c:4c:d1:56:7d:95:98:20:d7:4d:48:
a2:0c:e6:1a:e3:31:f6:a5:4b:4f:b8:ee:0b:fd:ae:
0c:5e:0d:59:a7:23:ce:2d:e4:53:79:19:10:27:15:
c6:86:52:62:3c:f7:a0:b7:cb:2c:ca:43:5a:dd:96:
f9:f0:c7:30:ca:4c:8c:cd:82:ff:0d:b6:7b:5a:d4:
e3:fc:a0:42:45:e0:fd:4d:88:44:a5:3b:11:fe:56:
f2:bb:a1:3b:6e:2c:33:42:18:9b:77:f8:71:ff:fb:
2c:19:8c:f4:08:70:ef:81:d3:36:1d:31:7f:47:b5:
c2:b9:a8:3b:5b:50:62:17:ef:08:3b:9f:de:2c:bb:
cf:0f:e3:23:23:aa:71:b4:f5:d9:48:e8:76:1c:b9:
47:19:e5:c8:9b:d4:49:e8:06:a1:4b:62:20:1a:5d:
89:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:CA:BA:B3:CE:23:6D:4A:79:B1:DB:0F:70:F1:8A:DA:2A:51:61:9E
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS211975.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.164.0/24
146.103.18.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:c7:e0:b2:d2:ae:2e:88:f4:5f:5a:32:d2:6e:e5:c3:75:78:
77:58:e4:3a:4c:bc:b8:b8:c6:ae:5c:78:b5:84:12:7c:da:cd:
5b:04:8e:48:44:37:1e:1c:d2:18:f8:f9:9f:41:38:69:22:c1:
87:a5:18:6e:7b:38:27:f4:3b:03:c9:cb:3a:d5:c0:8f:58:2a:
9c:44:91:b4:0d:eb:35:67:de:fe:c0:ad:47:70:fa:4e:0b:35:
68:ab:da:e2:81:40:df:d3:29:33:08:6d:7b:bd:44:7a:01:07:
c2:c5:bc:14:f3:2a:8a:2f:d7:9b:ef:b3:d4:a4:ef:8e:85:fd:
4e:5d:99:ab:df:bf:8d:c0:ee:d5:8b:83:8c:f4:62:de:d3:98:
b4:c0:52:4c:ee:8c:12:c9:22:b0:49:98:11:b1:a3:d5:35:44:
f2:a9:04:15:8c:55:35:ba:db:f3:3e:ac:d3:10:7c:4f:ad:5a:
84:9e:6f:64:39:14:ff:2b:da:50:87:98:3b:de:b1:1f:86:f1:
5c:1d:73:95:68:71:e7:d4:81:c9:36:0c:80:9e:65:ae:18:f5:
79:e8:5f:0c:85:1d:29:4c:3b:b8:8d:77:7e:81:f3:c4:3c:96:
f1:d5:28:98:02:1e:69:1b:35:6e:de:0e:6b:a4:c8:87:54:72:
2f:83:61:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 02:59:19 2024 by rpki-client on console-ams.rpki-client.org