Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206092.roa
File: AS206092.roa (raw, json)
Hash identifier: y6f2qrjPaqtzdp0AvesEX90XOMR3H6I6IG5fJXcGSAc=
Subject key identifier: C7:43:77:B9:4B:22:3A:6F:3D:21:9F:C2:4B:4C:B6:AA:CB:13:3A:6D
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 158DBB521E702F52A65CEBF138C9EF9CF6C6D551
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206092.roa
Signing time: Sat 01 Jun 2024 00:00:17 +0000
ROA not before: Fri 31 May 2024 23:55:17 +0000
ROA not after: Sat 31 May 2025 00:00:17 +0000
asID: 206092
IP address blocks: 45.133.176.0/24 maxlen: 24
45.137.124.0/24 maxlen: 24
181.215.67.0/24 maxlen: 24
191.101.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:8d:bb:52:1e:70:2f:52:a6:5c:eb:f1:38:c9:ef:9c:f6:c6:d5:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 31 23:55:17 2024 GMT
Not After : May 31 00:00:17 2025 GMT
Subject: CN=C74377B94B223A6F3D219FC24B4CB6AACB133A6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:21:3a:bb:56:ee:4e:93:3e:10:4a:40:9e:b4:
b8:b5:79:d0:62:0e:92:9c:ea:c3:f9:0a:cb:75:5b:
68:53:af:67:4c:17:04:a6:a3:c3:97:58:2c:05:f5:
04:35:ee:06:08:a7:04:d4:4c:3f:45:06:83:21:49:
1c:6b:04:6d:7b:b9:50:f9:3a:ce:51:3e:27:34:b5:
31:f9:c6:c1:e5:45:df:a0:42:9d:74:51:79:76:76:
9b:b2:03:05:55:da:82:76:05:b2:b8:20:7a:13:d7:
2d:b9:39:86:07:06:b6:fa:9b:67:e3:bf:12:89:33:
45:72:e5:28:05:0c:83:42:d7:ca:e1:e3:f0:73:45:
ae:42:9b:b3:51:bb:00:49:57:dc:96:f4:14:45:e7:
42:32:e7:1d:fc:84:6c:ae:c2:7b:d4:13:ac:ec:e4:
8f:a9:48:ec:80:d1:67:cd:c6:5a:8b:8f:33:ea:ba:
6b:08:ef:19:47:3d:3c:39:06:4a:49:3e:2f:2e:96:
1b:67:23:89:ad:fa:33:44:ee:c3:77:fd:9c:da:87:
f6:b3:f0:f6:cd:9b:d8:8d:ca:aa:f2:97:5d:21:64:
e9:13:48:c1:3a:8d:06:bb:2c:b2:01:c4:2d:bd:f9:
63:50:85:65:db:57:ce:ff:24:95:19:ff:18:19:27:
51:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:43:77:B9:4B:22:3A:6F:3D:21:9F:C2:4B:4C:B6:AA:CB:13:3A:6D
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206092.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.176.0/24
45.137.124.0/24
181.215.67.0/24
191.101.177.0/24
Signature Algorithm: sha256WithRSAEncryption
49:34:0c:f1:78:b2:77:8e:a6:88:dd:b2:f3:57:38:ac:e4:14:
f3:e6:aa:6a:a5:1d:ee:ae:4b:ea:da:f7:78:73:a0:3c:c8:bd:
47:1a:59:af:bc:86:83:b7:95:3c:c3:0a:68:c9:87:17:46:c9:
b0:4e:38:b2:8d:15:3a:a5:b4:e7:50:8d:00:60:27:e0:f5:6f:
92:5b:a6:4d:22:fd:33:75:a1:29:60:b9:9a:55:ea:17:9a:13:
0f:d4:c5:73:ee:b7:2e:f7:58:4a:d6:bb:65:e1:40:aa:24:fe:
dc:df:12:32:82:e1:a5:1a:a0:67:ed:99:59:15:50:63:68:ba:
b6:fb:42:34:54:4d:d1:7d:ad:5d:c7:27:1b:8c:1f:b8:82:a9:
a9:74:9d:d5:14:37:cb:10:f9:c4:ed:0e:b8:f5:6f:b2:a1:38:
39:7a:a3:e7:02:04:4b:4d:c1:e0:0d:b4:2d:70:44:97:ad:0e:
03:77:6c:d8:58:15:4d:7a:1b:69:5e:7b:4d:60:14:4d:b4:9c:
17:a3:04:1b:31:89:d6:9d:26:d1:c7:6a:75:4f:c3:f3:1b:f8:
ef:85:a7:0c:3d:37:77:13:7b:86:b0:f7:8b:a9:fb:02:79:21:
0f:f6:25:d2:64:b8:5d:a1:92:50:c2:42:77:a1:b8:ce:24:0c:
e8:9c:83:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 19:59:31 2024 by rpki-client on console-ams.rpki-client.org