Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS58061.roa
File: AS58061.roa (raw, json)
Hash identifier: R+SUNneIg714V7cQWwtH0OKKPPHbP8BtnuMMT/9LIjU=
Subject key identifier: C5:06:20:8D:AD:B6:C5:4C:C1:A6:E4:99:0E:B3:FA:BB:68:AD:79:5A
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 03D9C0E031837528A9062792D30DBF05D1CA6CE8
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS58061.roa
Signing time: Fri 16 Aug 2024 00:01:13 +0000
ROA not before: Thu 15 Aug 2024 23:56:13 +0000
ROA not after: Fri 15 Aug 2025 00:01:13 +0000
asID: 58061
IP address blocks: 181.214.180.0/24 maxlen: 24
181.214.216.0/24 maxlen: 24
185.139.3.0/24 maxlen: 24
185.158.105.0/24 maxlen: 24
191.101.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:d9:c0:e0:31:83:75:28:a9:06:27:92:d3:0d:bf:05:d1:ca:6c:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 15 23:56:13 2024 GMT
Not After : Aug 15 00:01:13 2025 GMT
Subject: CN=C506208DADB6C54CC1A6E4990EB3FABB68AD795A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ce:fe:85:de:15:70:b4:96:bc:ec:d0:ce:37:
79:c9:58:cd:c2:40:2b:2b:eb:7a:b4:af:e8:fb:18:
e6:ff:35:8a:f9:ab:cc:fe:e9:dd:f3:1d:42:78:5e:
4c:dd:86:d4:5a:82:fd:60:56:f6:db:95:db:83:f1:
32:e4:fc:c7:75:44:c4:9d:26:22:dd:89:c1:f2:df:
69:64:15:ba:6a:53:2c:e1:aa:14:b2:d7:10:de:e0:
01:44:1c:ec:3c:cc:0a:0a:44:f0:f0:a8:fa:e6:6c:
93:01:30:99:0e:87:e8:54:f8:42:95:15:2e:5b:cf:
f3:af:3c:70:b6:23:46:9f:2f:d8:48:54:6c:65:38:
fe:f0:9c:58:0d:ac:ab:14:5f:67:da:68:69:89:ba:
6b:e9:6b:45:d0:10:7f:4f:4e:39:ef:08:1b:b0:b8:
ce:65:a7:2b:07:3e:0f:c3:1a:87:4c:2d:13:9a:18:
52:d6:3e:7f:96:2d:8d:22:c7:d6:ef:d2:2f:23:11:
4f:8b:b8:42:d3:2c:c5:e7:55:16:0d:9a:89:ba:78:
ba:ee:6a:a8:fa:2a:20:90:e6:b4:f3:d0:b7:37:4b:
af:fa:79:e5:48:d2:fa:61:fc:85:a9:24:6d:c8:fb:
f0:16:c1:63:f8:c4:dc:96:47:88:33:54:55:fb:69:
3d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:06:20:8D:AD:B6:C5:4C:C1:A6:E4:99:0E:B3:FA:BB:68:AD:79:5A
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS58061.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.180.0/24
181.214.216.0/24
185.139.3.0/24
185.158.105.0/24
191.101.112.0/24
Signature Algorithm: sha256WithRSAEncryption
66:a7:bd:f1:85:3a:80:8d:9d:b6:a1:f8:fc:64:9f:a0:9d:fc:
06:bd:de:e7:66:26:f5:7b:5c:70:96:33:1b:7f:16:76:27:ef:
6c:dc:9a:56:2d:c9:1c:b1:31:d8:3a:e3:91:14:cb:0d:cd:89:
46:42:af:fb:11:ac:cb:97:bc:a4:97:33:f8:13:00:fb:ab:9c:
ee:91:32:e6:28:e3:93:93:bb:0e:97:bb:1c:59:01:4a:63:d6:
1f:6e:d3:db:93:a7:43:ae:51:e0:a8:a2:d3:a2:e1:c9:d2:e1:
b6:f0:20:68:d2:48:b5:24:0d:e7:1f:0d:b2:9b:db:9c:fb:ff:
c1:d8:7c:b8:2b:c4:4a:00:de:a7:c0:58:c9:ba:fe:3f:6e:04:
39:67:07:83:4f:4f:c5:61:14:88:27:55:ea:6c:20:ec:d4:2a:
04:91:f7:5b:68:b0:29:0d:ae:ef:18:1b:ce:71:75:79:60:a8:
d2:bf:64:7f:ed:72:99:11:e7:ba:f6:b9:39:f7:f2:10:e1:e1:
eb:54:b0:b1:4e:d8:db:dc:35:4f:13:63:21:0a:b9:60:01:9d:
fa:91:1d:36:cd:2f:4d:f6:34:36:8c:a1:a8:a7:da:bb:a6:84:
d4:99:05:af:ae:79:c5:0a:5d:b4:18:e2:44:3d:ba:59:d6:cd:
0e:2f:a0:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:44:49 2024 by rpki-client on console-fra.rpki-client.org