Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS264617.roa
File: AS264617.roa (raw, json)
Hash identifier: H3eFkX9lDFGgPDKExXmSkkWlwvLXYq9FXoIot64EKcY=
Subject key identifier: 74:85:59:D6:EE:A2:9E:6F:3E:6E:7B:CE:16:22:56:55:1A:CF:42:AD
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7C83184E91DEC856D70F8318DC158544A8DF4EB5
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS264617.roa
Signing time: Mon 07 Oct 2024 10:04:48 +0000
ROA not before: Mon 07 Oct 2024 09:59:48 +0000
ROA not after: Mon 06 Oct 2025 10:04:48 +0000
asID: 264617
IP address blocks: 191.96.170.0/24 maxlen: 24
191.101.94.0/24 maxlen: 24
191.101.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 13:48:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:83:18:4e:91:de:c8:56:d7:0f:83:18:dc:15:85:44:a8:df:4e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Oct 7 09:59:48 2024 GMT
Not After : Oct 6 10:04:48 2025 GMT
Subject: CN=748559D6EEA29E6F3E6E7BCE162256551ACF42AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e3:0a:2e:89:5c:41:b2:82:15:66:71:09:73:
48:c8:23:e5:b0:21:18:e3:d1:60:8a:1c:55:5c:30:
ea:7e:60:99:df:4f:19:32:ad:b7:d2:5c:09:53:3a:
09:d6:c9:2a:27:5f:f8:62:db:c8:0b:f0:d9:5b:4e:
6d:7d:30:be:a9:49:82:43:44:4d:d5:1d:3c:69:84:
77:34:61:5d:6e:bf:03:78:f3:47:82:88:25:4b:40:
0e:c6:70:15:42:65:ef:ec:9e:1e:ce:ff:f4:26:b1:
b9:60:62:77:18:16:a4:3c:6c:ad:9a:1e:e7:a4:fa:
2a:a3:89:b5:24:55:bf:6e:b7:a6:2d:1d:64:4b:00:
3a:48:78:59:5d:55:99:31:d7:df:34:f9:16:f6:02:
b1:ac:b4:ad:d4:5b:b8:5f:39:74:39:82:02:97:99:
b7:e4:0a:dc:40:f3:13:52:04:ff:85:f3:d4:9a:cc:
b3:c7:8b:ec:a6:f9:99:e5:3d:27:98:af:96:e5:6a:
77:7d:13:39:e0:48:15:c2:e9:fb:0e:f9:e0:07:be:
37:56:d6:a0:c3:e9:36:37:96:24:22:9a:86:6a:e7:
41:b1:80:3c:c2:e9:40:19:07:4c:a7:7d:22:63:f5:
bf:d0:4a:bf:7f:33:6f:aa:21:f9:ff:29:a4:15:70:
43:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:85:59:D6:EE:A2:9E:6F:3E:6E:7B:CE:16:22:56:55:1A:CF:42:AD
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS264617.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.170.0/24
191.101.94.0/24
191.101.121.0/24
Signature Algorithm: sha256WithRSAEncryption
38:25:77:a2:08:8e:07:2a:8d:02:e8:fe:d0:8b:87:ea:47:9c:
b4:12:d0:80:0a:43:c2:1e:e9:3b:e7:4a:a2:bd:6a:50:22:8c:
c7:1e:1b:64:1c:72:c9:76:cc:96:1b:53:fe:b4:92:a7:cd:ea:
81:f2:03:4f:91:67:c0:d4:ec:3c:8b:1c:d4:a2:6d:f1:5a:9e:
9b:b4:38:d6:42:c0:08:5f:32:54:91:c9:d7:e8:3d:40:ad:bf:
a4:d6:81:fb:97:4b:fd:da:21:3d:3c:eb:6e:8e:10:54:b8:2e:
f4:ca:79:3c:f2:6a:fe:f9:e6:83:75:df:16:ce:e7:38:29:55:
df:97:35:7c:0e:6b:ee:b1:41:31:a4:96:e0:a4:cc:a7:d0:b2:
e3:85:bb:46:94:e7:ee:0b:ea:ff:52:45:84:60:1d:4a:d9:6b:
bb:bf:25:fc:dd:b5:d5:46:d5:63:e6:a4:bc:0e:53:76:1f:d7:
88:11:1d:38:ca:56:d5:57:df:83:f6:79:0c:bc:c0:78:5f:59:
37:fb:b2:38:b7:8c:17:f2:e5:eb:62:09:30:97:85:84:c8:8e:
ff:1a:44:55:0f:fe:99:d7:0e:55:d4:b9:e2:c7:c0:55:fa:dd:
58:e5:9a:bc:8e:54:a4:82:91:24:ef:29:98:d8:a2:99:fd:2a:
ff:2b:48:dd
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIUfIMYTpHeyFbXD4MY3BWFRKjfTrUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDEwMDcwOTU5NDhaFw0yNTEwMDYxMDA0NDhaMDMxMTAvBgNV
BAMTKDc0ODU1OUQ2RUVBMjlFNkYzRTZFN0JDRTE2MjI1NjU1MUFDRjQyQUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB4wouiVxBsoIVZnEJc0jII+Ww
IRjj0WCKHFVcMOp+YJnfTxkyrbfSXAlTOgnWySonX/hi28gL8NlbTm19ML6pSYJD
RE3VHTxphHc0YV1uvwN480eCiCVLQA7GcBVCZe/snh7O//QmsblgYncYFqQ8bK2a
Huek+iqjibUkVb9ut6YtHWRLADpIeFldVZkx1980+Rb2ArGstK3UW7hfOXQ5ggKX
mbfkCtxA8xNSBP+F89SazLPHi+ym+ZnlPSeYr5bland9EzngSBXC6fsO+eAHvjdW
1qDD6TY3liQimoZq50GxgDzC6UAZB0ynfSJj9b/QSr9/M2+qIfn/KaQVcENZAgMB
AAGjggIWMIICEjAdBgNVHQ4EFgQUdIVZ1u6inm8+bnvOFiJWVRrPQq0wHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjY0NjE3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAv2Cq
AwQAv2VeAwQAv2V5MA0GCSqGSIb3DQEBCwUAA4IBAQA4JXeiCI4HKo0C6P7Qi4fq
R5y0EtCACkPCHuk750qivWpQIozHHhtkHHLJdsyWG1P+tJKnzeqB8gNPkWfA1Ow8
ixzUom3xWp6btDjWQsAIXzJUkcnX6D1Arb+k1oH7l0v92iE9POtujhBUuC70ynk8
8mr++eaDdd8Wzuc4KVXflzV8DmvusUExpJbgpMyn0LLjhbtGlOfuC+r/UkWEYB1K
2Wu7vyX83bXVRtVj5qS8DlN2H9eIER04ylbVV9+D9nkMvMB4X1k3+7I4t4wX8uXr
Ygkwl4WEyI7/GkRVD/6Z1w5V1Lnix8BV+t1Y5Zq8jlSkgpEk7ymY2KKZ/Sr/K0jd
-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:03 2024 by rpki-client on console-fra.rpki-client.org