Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS58212.roa
File: AS58212.roa (raw, json)
Hash identifier: l4ZC4bEFMgTq+NLOu5fsxtQqTTp5fZ/VavR7MomoedQ=
Subject key identifier: 08:BA:9E:8F:2E:22:E9:8D:AC:05:75:A6:6C:6A:FA:60:BD:33:41:BE
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 2F3E2E59DBB791955F9F8E8D3D2F16769327523D
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS58212.roa
Signing time: Wed 25 Sep 2024 22:11:24 +0000
ROA not before: Wed 25 Sep 2024 22:06:24 +0000
ROA not after: Wed 24 Sep 2025 22:11:24 +0000
asID: 58212
IP address blocks: 45.93.44.0/24 maxlen: 24
92.118.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 13:48:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:3e:2e:59:db:b7:91:95:5f:9f:8e:8d:3d:2f:16:76:93:27:52:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Sep 25 22:06:24 2024 GMT
Not After : Sep 24 22:11:24 2025 GMT
Subject: CN=08BA9E8F2E22E98DAC0575A66C6AFA60BD3341BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:45:89:b8:e7:c2:5b:e9:56:41:81:1f:f4:f3:
de:ff:54:fb:93:44:2b:58:b2:54:4d:f2:93:da:6d:
42:41:cf:8a:2a:67:01:f6:a1:84:5a:6d:53:02:f2:
82:09:69:2a:da:d7:39:ef:07:d0:7f:c0:a8:22:e7:
20:b2:64:fe:cb:9b:eb:ea:27:c2:97:3d:a1:03:d9:
a4:7f:90:af:db:04:38:6e:30:f8:c4:f6:72:ee:f8:
56:2d:54:70:e0:b5:cf:ae:47:91:6b:cc:f9:68:a9:
aa:8f:4d:ed:b5:dc:9e:4b:b1:11:6b:ad:19:87:a0:
cb:55:b2:1d:43:8c:70:6c:51:6b:53:0b:a7:3d:d9:
78:37:6c:92:7c:45:d3:57:2c:86:df:c1:0e:ac:6a:
64:1e:25:c1:90:ea:ed:de:a9:49:b3:06:84:e5:18:
47:d6:dc:aa:49:0a:12:a8:ef:da:01:a0:61:78:cb:
58:b3:f1:76:ca:5f:69:41:21:ab:89:53:c9:0e:fe:
65:c4:51:ff:d1:03:49:c2:4e:7a:31:fd:f1:2d:11:
4d:d6:af:9b:b3:67:bd:c6:ba:d4:0b:d7:15:4c:8c:
ba:4a:f7:71:c0:7b:b1:51:c1:b9:5e:de:3d:cc:b7:
30:e8:50:4a:83:3a:ff:43:ab:7e:56:09:bb:83:c4:
fe:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:BA:9E:8F:2E:22:E9:8D:AC:05:75:A6:6C:6A:FA:60:BD:33:41:BE
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS58212.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.44.0/24
92.118.160.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:b9:4c:6d:28:fe:f3:7f:1a:9b:35:ad:6c:b1:5c:b8:4d:01:
d2:1f:83:c1:0f:ad:7b:f3:c2:e7:59:09:d4:ec:4e:a4:4d:f0:
45:53:1a:78:88:aa:da:a2:d7:ca:c0:2d:cc:04:11:88:e2:3d:
86:fd:c4:01:8d:45:16:13:b4:78:a2:98:a7:1e:bd:ef:a6:52:
36:c5:bc:e4:2e:62:c6:fb:93:da:db:76:79:ab:d7:68:f2:f3:
5c:53:20:7c:62:b4:50:36:25:56:c4:4b:50:38:5c:ff:cb:26:
eb:ec:57:6e:34:2b:45:ef:ed:29:85:78:fd:0f:58:0f:b0:04:
b1:18:f6:f2:ff:a4:e9:13:33:37:d8:53:18:14:cf:c5:01:42:
ea:aa:86:e6:fa:15:7f:5e:2a:53:a2:d8:e9:9e:3a:ce:a0:f9:
3f:51:fc:c1:70:47:0e:5c:8c:78:30:cb:d4:c5:65:43:14:7d:
3f:08:7b:a0:b5:22:82:88:ce:50:8e:93:41:07:44:5f:f5:f2:
29:60:a9:7c:77:8a:cd:1d:98:85:f9:aa:43:ac:bf:77:a3:c7:
22:10:ed:58:f9:9b:76:1b:3c:a0:a0:1a:5b:f9:b0:fc:61:49:
5c:d2:47:97:a5:bc:cf:86:fd:f3:f8:b8:67:5a:41:2f:5d:b1:
fa:ae:c7:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:14:39 2024 by rpki-client on console-ams.rpki-client.org