Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
File: AS269070.roa (raw, json)
Hash identifier: hHJCx6MRb0w+9h1+AD5wQiLGeSOaVDAh5hIrI50TVtk=
Subject key identifier: 69:50:51:E5:83:3A:E1:FD:16:90:30:74:72:92:A4:CE:35:EF:41:0E
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 0BB0B2419BC1713999E122361C9940848832AA49
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
Signing time: Mon 27 May 2024 00:19:23 +0000
ROA not before: Mon 27 May 2024 00:14:23 +0000
ROA not after: Mon 26 May 2025 00:19:23 +0000
asID: 269070
IP address blocks: 45.137.28.0/24 maxlen: 24
179.61.154.0/24 maxlen: 24
181.214.95.0/24 maxlen: 24
181.215.0.0/24 maxlen: 24
181.215.28.0/24 maxlen: 24
181.215.34.0/24 maxlen: 24
181.215.48.0/24 maxlen: 24
181.215.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:b0:b2:41:9b:c1:71:39:99:e1:22:36:1c:99:40:84:88:32:aa:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 27 00:14:23 2024 GMT
Not After : May 26 00:19:23 2025 GMT
Subject: CN=695051E5833AE1FD169030747292A4CE35EF410E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9d:5c:18:e5:24:64:cd:f1:d5:bd:98:c3:1e:
36:fc:65:b1:51:33:70:2d:b4:ed:e1:81:cd:ea:17:
b8:bd:0e:5a:8d:91:d8:b2:1d:75:c7:b5:f6:94:a7:
de:3e:2e:3c:fa:5b:7a:bf:b7:1b:33:91:be:38:21:
44:59:cf:dc:4f:07:0a:ac:2f:23:23:69:2a:c4:d8:
d5:a3:26:67:2f:ee:f1:a7:b8:11:72:b1:fa:eb:9c:
c3:42:e5:36:eb:5b:12:cf:28:41:f8:53:6a:cc:b9:
a4:88:fa:77:32:ed:6c:27:0e:3d:da:c4:90:3a:9d:
58:8a:7f:5c:38:b6:f8:84:ed:1d:3f:93:7b:b8:60:
5e:be:34:ce:d8:81:4c:5e:20:2c:3e:cc:8e:6f:a6:
e0:45:bd:72:99:0b:cb:6d:2c:7b:82:57:b2:85:75:
29:ef:52:46:35:6f:69:93:0b:45:21:47:39:a8:5e:
5c:bf:8c:94:36:9c:73:c6:8a:11:50:84:1b:ac:0e:
55:35:be:ed:30:ee:52:3f:9a:09:b5:15:07:d1:24:
93:13:24:7b:b8:b3:a6:30:e6:5f:60:28:55:07:09:
96:55:fb:e9:cd:2a:79:5a:f4:96:36:f8:5a:33:74:
1e:99:d4:91:e1:7f:ab:03:8c:b1:f2:bc:3f:f2:bc:
c6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:50:51:E5:83:3A:E1:FD:16:90:30:74:72:92:A4:CE:35:EF:41:0E
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.28.0/24
179.61.154.0/24
181.214.95.0/24
181.215.0.0/24
181.215.28.0/24
181.215.34.0/24
181.215.48.0/24
181.215.180.0/24
Signature Algorithm: sha256WithRSAEncryption
48:00:13:b1:8a:e5:d7:52:da:33:d1:79:cc:90:4d:ef:3b:b3:
38:e7:e4:4c:ce:f0:82:2b:07:61:7e:44:09:6f:8a:eb:3e:e2:
4f:46:d3:c1:35:ae:ef:a4:85:94:c7:ea:d5:19:c7:51:b7:69:
f8:c4:f2:11:f0:9a:a8:9d:fb:42:dd:cd:ff:5f:58:ce:ca:ff:
e7:27:bd:07:6f:65:b0:e0:e7:cc:a9:5d:5a:8c:df:ad:7f:d6:
6c:a7:10:aa:65:5f:4c:01:04:54:78:c3:99:bf:c1:1b:91:4e:
43:a1:d4:26:5e:64:cd:17:18:a2:00:59:97:1d:ed:a4:b0:4b:
64:89:8f:0a:4c:62:87:0a:bd:fa:76:9a:80:96:ef:5d:8a:07:
f5:c3:98:dc:07:f0:f1:81:01:01:93:3c:c2:4f:9b:8c:ca:4b:
2c:48:a5:97:6a:ba:61:c4:50:2e:16:d5:70:60:da:33:e2:ab:
e8:1a:0f:f3:b6:f7:aa:65:59:14:b2:35:71:7d:5e:59:9c:17:
98:3f:2a:bf:ad:59:df:67:da:8a:66:6a:4c:1b:0c:75:f7:8a:
cc:27:22:40:56:8a:5b:59:49:ed:33:76:85:5f:1c:79:31:b1:
3a:4e:61:b5:d7:65:22:a7:d7:e8:b8:b2:21:e5:74:be:57:d8:
0b:1f:6e:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 01:00:45 2024 by rpki-client on console-fra.rpki-client.org