![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS10753.roa
File: AS10753.roa (raw, json)
Hash identifier: G09w98bhcKniimwpNkzv7mMBLwj/wdoy36tiYRdG7a8=
Subject key identifier: B1:A5:FF:5D:8C:AC:B7:9D:3F:CB:6D:28:87:89:1C:58:52:ED:EE:CE
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 02FD06111BF3344947FF70C07E2DA81BBD9A8E36
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS10753.roa
Signing time: Sun 26 May 2024 00:02:15 +0000
ROA not before: Sat 25 May 2024 23:57:15 +0000
ROA not after: Sun 25 May 2025 00:02:15 +0000
asID: 10753
IP address blocks: 91.124.145.0/24 maxlen: 24
91.124.178.0/24 maxlen: 24
91.124.179.0/24 maxlen: 24
91.124.216.0/24 maxlen: 24
91.124.219.0/24 maxlen: 24
91.124.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 15 Jun 2024 20:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:fd:06:11:1b:f3:34:49:47:ff:70:c0:7e:2d:a8:1b:bd:9a:8e:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 25 23:57:15 2024 GMT
Not After : May 25 00:02:15 2025 GMT
Subject: CN=B1A5FF5D8CACB79D3FCB6D2887891C5852EDEECE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ab:77:a7:3f:f2:95:a5:1f:c1:ee:f5:8b:db:
57:19:5c:31:c4:95:d9:b3:1a:79:45:15:98:73:2e:
12:61:e0:ec:75:2c:81:37:9e:6a:e2:4c:a1:d6:fb:
54:14:7c:84:99:30:bc:16:a2:5b:d2:e0:fb:13:e9:
ec:a6:36:1c:22:87:97:37:17:3b:9f:b4:f2:18:73:
f1:4b:24:21:a1:08:46:b9:8b:40:e9:e6:ce:6c:2a:
10:08:4a:9f:d4:91:b6:b0:51:82:a3:b3:f2:ed:1f:
e9:69:0f:c6:44:9f:ac:b1:e6:a7:3b:df:a8:d1:c4:
b4:65:7a:e9:80:48:a6:07:1c:84:3b:a1:60:ed:90:
13:8c:1f:f2:be:db:cc:f3:01:37:9f:e0:2b:7f:35:
04:4a:29:f3:3b:09:3e:01:f9:0e:7a:f1:ba:9a:2b:
1a:99:53:4b:22:00:cd:54:73:78:f2:47:15:19:cf:
24:4c:0c:ff:43:89:1a:3f:5f:c9:d1:98:bb:e5:c6:
af:14:66:4b:91:0b:6e:6c:ff:56:10:f5:95:f5:06:
f5:f6:d5:5a:8d:e0:c6:81:cc:f7:c3:33:4b:41:89:
60:7a:13:4c:b2:cd:91:c7:7b:72:83:cc:fa:67:6c:
22:f3:f1:21:ba:32:13:f1:85:11:45:cd:8a:20:9e:
a1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A5:FF:5D:8C:AC:B7:9D:3F:CB:6D:28:87:89:1C:58:52:ED:EE:CE
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS10753.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.145.0/24
91.124.178.0/23
91.124.216.0/24
91.124.219.0/24
91.124.237.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:20:36:85:7a:24:64:14:c6:b1:78:51:fc:9e:dd:c5:04:ca:
ed:29:83:35:6d:ba:ff:7d:e7:04:f0:d5:33:42:a4:88:20:43:
dc:43:6d:5e:d1:d7:bd:54:39:c4:b8:a3:75:39:9c:65:0d:67:
bb:6a:e9:80:8a:f3:12:ad:e8:44:23:41:81:08:9b:52:8e:b1:
eb:e4:98:03:cd:a7:8c:fd:14:56:ec:b1:9b:7c:f9:b1:61:b0:
3a:43:fc:d2:94:5c:2c:37:db:b5:cc:ce:53:c2:74:d7:cc:2a:
e2:f3:f0:36:83:a0:45:dc:bf:0f:a8:b6:7c:89:6a:48:98:fb:
d7:34:f3:7e:39:7d:99:42:72:32:39:a2:db:47:d7:6d:f3:7c:
8c:c7:97:fc:64:c0:03:6d:e6:33:77:a8:39:f1:ae:6d:b8:19:
40:9c:e5:54:53:c5:4c:88:7b:b0:10:72:89:7c:e3:04:94:2d:
c6:5c:49:96:3a:13:03:03:d3:8c:9e:3a:65:f7:71:af:3a:40:
e8:1e:45:a2:08:11:e1:f4:74:22:a3:0b:41:04:7a:e7:24:31:
fa:1f:5b:96:43:b8:ab:28:18:43:07:64:da:56:e0:1c:40:c3:
5a:81:f0:c8:b0:eb:f1:8f:79:68:2f:10:c5:1e:5c:fe:5f:47:
88:d5:a2:88
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgIUAv0GERvzNElH/3DAfi2oG72ajjYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNDA1MjUyMzU3MTVaFw0yNTA1MjUwMDAyMTVaMDMxMTAvBgNV
BAMTKEIxQTVGRjVEOENBQ0I3OUQzRkNCNkQyODg3ODkxQzU4NTJFREVFQ0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSq3enP/KVpR/B7vWL21cZXDHE
ldmzGnlFFZhzLhJh4Ox1LIE3nmriTKHW+1QUfISZMLwWolvS4PsT6eymNhwih5c3
FzuftPIYc/FLJCGhCEa5i0Dp5s5sKhAISp/UkbawUYKjs/LtH+lpD8ZEn6yx5qc7
36jRxLRleumASKYHHIQ7oWDtkBOMH/K+28zzATef4Ct/NQRKKfM7CT4B+Q568bqa
KxqZU0siAM1Uc3jyRxUZzyRMDP9DiRo/X8nRmLvlxq8UZkuRC25s/1YQ9ZX1BvX2
1VqN4MaBzPfDM0tBiWB6E0yyzZHHe3KDzPpnbCLz8SG6MhPxhRFFzYognqHDAgMB
AAGjggIhMIICHTAdBgNVHQ4EFgQUsaX/XYyst50/y20oh4kcWFLt7s4wHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMTA3NTMucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwNwYIKwYBBQUHAQcBAf8EKDAmMCQEAgABMB4DBABbfJED
BAFbfLIDBABbfNgDBABbfNsDBABbfO0wDQYJKoZIhvcNAQELBQADggEBABsgNoV6
JGQUxrF4Ufye3cUEyu0pgzVtuv995wTw1TNCpIggQ9xDbV7R171UOcS4o3U5nGUN
Z7tq6YCK8xKt6EQjQYEIm1KOsevkmAPNp4z9FFbssZt8+bFhsDpD/NKUXCw327XM
zlPCdNfMKuLz8DaDoEXcvw+otnyJakiY+9c08345fZlCcjI5ottH123zfIzHl/xk
wANt5jN3qDnxrm24GUCc5VRTxUyIe7AQcol84wSULcZcSZY6EwMD04yeOmX3ca86
QOgeRaIIEeH0dCKjC0EEeuckMfofW5ZDuKsoGEMHZNpW4BxAw1qB8Miw6/GPeWgv
EMUeXP5fR4jVoog=
-----END CERTIFICATE-----
Generated at Sat Jun 15 05:39:13 2024 by rpki-client on console-ams.rpki-client.org