Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS57511.roa
File: AS57511.roa (raw, json)
Hash identifier: 90NqC4AlkyB4/qFv8bAWzKvaTczr/ad98WkGgRH3WFo=
Subject key identifier: 43:17:8B:19:6C:2B:DB:F0:C6:6A:4E:C7:9F:2E:95:FB:0E:EE:3A:14
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 08BD536AA5BE4A26783CBBE86034D9ACE5DA0EF6
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS57511.roa
Signing time: Wed 13 Nov 2024 13:43:28 +0000
ROA not before: Wed 13 Nov 2024 13:38:28 +0000
ROA not after: Wed 12 Nov 2025 13:43:28 +0000
asID: 57511
IP address blocks: 181.41.216.0/24 maxlen: 24
181.214.115.0/24 maxlen: 24
185.135.156.0/24 maxlen: 24
194.110.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 13:48:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:bd:53:6a:a5:be:4a:26:78:3c:bb:e8:60:34:d9:ac:e5:da:0e:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Nov 13 13:38:28 2024 GMT
Not After : Nov 12 13:43:28 2025 GMT
Subject: CN=43178B196C2BDBF0C66A4EC79F2E95FB0EEE3A14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e5:cb:9a:08:e5:d7:c7:7c:58:23:18:52:00:
e8:4d:e3:dd:7e:09:f6:59:c0:df:af:56:29:03:1d:
ef:c4:42:2f:e8:11:9e:ad:96:3f:50:04:b4:79:52:
44:0c:3a:2e:ed:80:be:ec:38:d3:03:6e:58:7c:26:
5d:d2:78:02:bf:bf:2a:b1:3f:52:87:2a:07:8e:57:
da:cb:91:26:71:46:67:9d:b6:0f:58:84:67:65:63:
38:75:6a:56:94:46:a9:da:0d:33:56:79:a0:88:e5:
51:e9:e7:03:17:a7:14:9b:4d:6c:88:89:3b:86:20:
af:c9:66:26:aa:a5:68:15:1c:76:43:28:e3:37:50:
13:a8:cb:e9:c7:89:37:9f:20:72:fd:a8:5f:48:c5:
89:87:3b:f4:99:06:5e:48:ef:93:78:02:1e:02:b7:
06:ca:fd:76:ed:fe:5e:35:da:4b:c5:1e:b3:62:f4:
29:1f:89:0a:8d:36:4d:68:12:0f:e6:fb:b6:40:8d:
ef:1a:93:43:56:88:2f:6b:ea:d2:1a:0d:04:89:21:
26:34:f8:72:7b:30:93:f3:2a:56:eb:d0:58:05:5c:
27:f2:6e:a6:26:e9:35:d6:b7:0e:0a:8a:ee:4a:13:
d0:f8:df:c0:42:93:1a:7d:2c:8c:fa:3f:50:cd:ac:
1b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:17:8B:19:6C:2B:DB:F0:C6:6A:4E:C7:9F:2E:95:FB:0E:EE:3A:14
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS57511.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.216.0/24
181.214.115.0/24
185.135.156.0/24
194.110.242.0/24
Signature Algorithm: sha256WithRSAEncryption
14:c9:fb:69:0a:25:b4:c7:d6:a4:1e:b6:fd:f3:61:43:9b:3b:
ba:6e:12:45:d0:fb:ee:18:af:98:a6:08:09:ef:59:34:5d:7e:
52:6b:84:70:16:8d:2f:16:02:80:14:54:41:21:17:43:9b:90:
77:a2:e7:bf:c6:42:00:ad:49:0f:33:cb:88:a7:0a:78:af:9d:
3b:4d:72:61:29:46:3b:bf:c1:b2:59:3e:91:5d:27:38:59:27:
ea:0d:09:80:44:f0:42:55:f3:76:ea:e9:b2:b5:b2:eb:42:c3:
cd:86:79:0a:5b:8b:8d:57:93:dc:05:88:97:3a:3f:ca:c0:d7:
52:38:59:77:a8:ef:80:96:29:4d:ee:48:89:82:6f:27:6c:8a:
5b:0a:a2:e2:69:cf:03:1e:0c:fe:5b:cf:4a:c1:17:44:9f:6b:
d3:6f:91:55:34:08:73:dc:ae:db:09:aa:5e:2a:0b:6c:13:23:
f6:85:b4:2c:84:d7:d1:7b:7b:79:80:4a:77:32:0f:84:0a:bc:
9f:8a:99:5d:b6:3a:63:37:80:d1:67:5d:0a:40:30:83:f7:5d:
7e:b9:c6:27:26:97:4b:58:06:aa:86:5c:33:8d:62:e5:33:3b:
ba:9a:71:64:87:53:5a:87:1e:17:cf:06:22:d5:fb:a0:6f:92:
9a:0b:81:49
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUCL1TaqW+SiZ4PLvoYDTZrOXaDvYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDExMTMxMzM4MjhaFw0yNTExMTIxMzQzMjhaMDMxMTAvBgNV
BAMTKDQzMTc4QjE5NkMyQkRCRjBDNjZBNEVDNzlGMkU5NUZCMEVFRTNBMTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCE5cuaCOXXx3xYIxhSAOhN491+
CfZZwN+vVikDHe/EQi/oEZ6tlj9QBLR5UkQMOi7tgL7sONMDblh8Jl3SeAK/vyqx
P1KHKgeOV9rLkSZxRmedtg9YhGdlYzh1alaURqnaDTNWeaCI5VHp5wMXpxSbTWyI
iTuGIK/JZiaqpWgVHHZDKOM3UBOoy+nHiTefIHL9qF9IxYmHO/SZBl5I75N4Ah4C
twbK/Xbt/l412kvFHrNi9CkfiQqNNk1oEg/m+7ZAje8ak0NWiC9r6tIaDQSJISY0
+HJ7MJPzKlbr0FgFXCfybqYm6TXWtw4Kiu5KE9D438BCkxp9LIz6P1DNrBsvAgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQUQxeLGWwr2/DGak7Hny6V+w7uOhQwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTNTc1MTEucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBAC1KdgD
BAC11nMDBAC5h5wDBADCbvIwDQYJKoZIhvcNAQELBQADggEBABTJ+2kKJbTH1qQe
tv3zYUObO7puEkXQ++4Yr5imCAnvWTRdflJrhHAWjS8WAoAUVEEhF0ObkHei57/G
QgCtSQ8zy4inCnivnTtNcmEpRju/wbJZPpFdJzhZJ+oNCYBE8EJV83bq6bK1sutC
w82GeQpbi41Xk9wFiJc6P8rA11I4WXeo74CWKU3uSImCbydsilsKouJpzwMeDP5b
z0rBF0Sfa9NvkVU0CHPcrtsJql4qC2wTI/aFtCyE19F7e3mASncyD4QKvJ+KmV22
OmM3gNFnXQpAMIP3XX65xicml0tYBqqGXDONYuUzO7qacWSHU1qHHhfPBiLV+6Bv
kpoLgUk=
-----END CERTIFICATE-----
Generated at Mon Nov 25 17:14:39 2024 by rpki-client on console-ams.rpki-client.org