Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS212238.roa
File: AS212238.roa (raw, json)
Hash identifier: 5I4ay1OaJG5u2OVu0GaR/lb/HIA4WWDvc6n9K3GxE9o=
Subject key identifier: DA:A7:B5:20:35:DC:62:E5:EE:29:7D:5A:28:D7:AD:62:F1:18:B1:4A
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 0D3DA8950A0210772EA54E004C33E1030C7E373F
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS212238.roa
Signing time: Fri 19 Apr 2024 15:05:59 +0000
ROA not before: Fri 19 Apr 2024 15:00:59 +0000
ROA not after: Fri 18 Apr 2025 15:05:59 +0000
asID: 212238
IP address blocks: 140.233.176.0/23 maxlen: 24
140.233.178.0/23 maxlen: 24
140.233.184.0/22 maxlen: 22
140.233.188.0/23 maxlen: 24
146.103.10.0/24 maxlen: 24
146.103.45.0/24 maxlen: 24
147.79.52.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 16:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:3d:a8:95:0a:02:10:77:2e:a5:4e:00:4c:33:e1:03:0c:7e:37:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 19 15:00:59 2024 GMT
Not After : Apr 18 15:05:59 2025 GMT
Subject: CN=DAA7B52035DC62E5EE297D5A28D7AD62F118B14A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f2:69:e6:a3:0b:12:b5:9e:1f:49:79:7c:70:
7a:6a:3b:b6:f9:51:00:5f:79:24:07:45:eb:82:05:
a1:67:f7:80:61:8a:52:cf:9b:92:f2:75:a2:dd:20:
95:d9:ba:6d:4c:4e:28:ff:16:a9:1f:df:b4:0f:b3:
5d:06:80:07:72:6e:8f:1e:99:7a:67:12:85:87:49:
2a:d6:7d:26:03:a6:02:cd:99:ad:1a:ed:46:ed:f8:
58:9a:83:11:96:02:e9:88:35:cc:84:d4:a3:30:40:
54:15:b1:c5:7f:26:e9:ea:cb:ae:e6:d4:3f:3c:c8:
1e:6f:b6:d1:8c:25:6f:b6:fb:bd:66:73:5d:5f:5f:
7e:0e:a5:e6:b4:0e:29:a1:51:91:14:19:d8:10:fb:
4b:4c:e3:6e:6e:ea:31:60:d7:c1:57:32:aa:61:1a:
e4:d3:d3:41:eb:c6:fb:ba:39:b5:c3:2c:32:2e:fb:
ce:c4:07:40:ae:64:2e:8b:e2:ff:8a:0e:50:4e:82:
fd:35:0d:7d:b0:4c:2d:d8:c7:c9:f1:2b:e6:85:d9:
29:7c:f7:c3:b3:87:84:9d:b9:97:85:54:5a:cc:1d:
51:4a:ba:56:4c:04:19:e0:ac:9d:3a:83:0f:42:29:
c9:60:b4:46:68:e1:c7:24:64:2b:73:0a:21:29:0b:
17:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:A7:B5:20:35:DC:62:E5:EE:29:7D:5A:28:D7:AD:62:F1:18:B1:4A
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS212238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.176.0/22
140.233.184.0-140.233.189.255
146.103.10.0/24
146.103.45.0/24
147.79.52.0/22
Signature Algorithm: sha256WithRSAEncryption
24:95:1a:75:18:33:45:4d:79:75:ee:3b:dc:ff:ec:f7:e8:8b:
83:d7:cf:61:cb:84:c8:e1:e9:75:14:c4:47:08:e8:0b:13:55:
18:c6:e4:22:ed:56:32:1b:c6:67:8c:16:01:c9:2f:32:08:35:
79:e2:74:3e:dc:f4:7f:3b:64:e9:8e:c8:2e:70:4e:01:ae:45:
75:28:b8:d7:bc:b0:0d:16:20:72:fd:0b:47:de:d6:71:49:9f:
6b:c2:4e:3f:00:55:79:25:e2:1d:95:c3:63:59:58:00:fd:69:
cf:a1:0d:0f:6d:3e:29:47:59:bd:78:a3:ed:1f:7e:c4:34:6b:
a9:b0:98:2a:3c:e1:68:96:0f:57:54:d0:38:b7:c5:c0:9e:41:
a6:ce:45:76:bc:c6:9e:64:f8:d8:c5:ea:7b:cc:3f:fd:c8:bb:
64:7c:07:41:8c:44:2e:ef:94:d4:7e:29:f1:7b:49:59:91:22:
f6:8c:7c:54:4d:cc:c5:e2:5d:28:f7:f2:ac:c9:0f:a9:1e:0f:
e1:b0:db:18:3d:aa:2a:73:4c:4d:19:c3:e4:99:1d:bc:95:32:
9e:a0:c8:fb:df:56:d4:a7:86:51:3d:6a:3a:3c:56:34:8c:34:
0c:1c:52:5f:f6:6e:e2:4b:ed:12:c8:a5:b8:0c:08:33:eb:26:
cc:72:fb:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 01:22:08 2024 by rpki-client on console-ams.rpki-client.org