Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa
File: AS2914.roa (raw, json)
Hash identifier: Gb2ji7MuG/rDAVoHEF+qehQ9bJyuNzzp/j2HsWoA4XE=
Subject key identifier: 0C:55:29:25:4B:E8:4E:46:6D:10:22:D6:1F:C6:67:67:1E:DB:3A:E1
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 4A66652239835A549BAB5A00BECF71C21277C5D8
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa
Signing time: Thu 07 Nov 2024 03:09:34 +0000
ROA not before: Thu 07 Nov 2024 03:04:34 +0000
ROA not after: Thu 06 Nov 2025 03:09:34 +0000
asID: 2914
IP address blocks: 91.124.52.0/24 maxlen: 24
91.124.55.0/24 maxlen: 24
91.124.57.0/24 maxlen: 24
91.124.58.0/24 maxlen: 24
91.124.62.0/24 maxlen: 24
91.124.67.0/24 maxlen: 24
91.124.83.0/24 maxlen: 24
92.112.240.0/24 maxlen: 24
92.112.241.0/24 maxlen: 24
92.112.242.0/24 maxlen: 24
92.112.243.0/24 maxlen: 24
92.112.244.0/24 maxlen: 24
92.112.245.0/24 maxlen: 24
92.112.246.0/24 maxlen: 24
92.112.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:66:65:22:39:83:5a:54:9b:ab:5a:00:be:cf:71:c2:12:77:c5:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Nov 7 03:04:34 2024 GMT
Not After : Nov 6 03:09:34 2025 GMT
Subject: CN=0C5529254BE84E466D1022D61FC667671EDB3AE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f6:e7:fa:e7:4d:50:6a:bf:61:06:b4:7c:2c:
3b:c6:97:74:c8:5b:b2:db:9f:a9:79:69:8d:a4:3d:
86:2c:fa:89:64:d5:dd:00:fb:77:bb:04:12:dd:8c:
96:6b:db:8a:cc:e4:8d:ef:87:84:96:50:9c:a7:e0:
ae:8c:60:e6:e4:b6:03:b3:28:83:a3:7a:0f:bf:be:
d8:4b:96:4f:5d:4b:b9:1e:55:7d:fb:29:7e:9f:ba:
f2:94:32:92:ba:40:81:24:f1:c6:0e:e7:3d:e0:a7:
7a:e7:8e:e2:dd:5f:f6:00:ba:6e:6c:3a:0f:78:34:
60:18:e3:53:fa:89:70:a3:f8:ea:91:f9:ad:56:0b:
55:03:ec:7a:bc:9f:36:af:14:1e:8e:ac:92:2f:6b:
88:6a:58:02:7d:5d:d6:88:15:93:7f:21:64:2a:06:
04:bc:28:81:c0:32:dc:f9:92:f1:81:14:97:23:85:
2d:87:cb:42:64:23:4e:b0:4a:67:a7:4d:98:a5:87:
36:02:08:a6:05:d5:1c:b8:65:75:d3:bf:ab:6f:32:
f7:de:93:dd:2f:d7:3b:06:01:c2:ca:85:64:e3:6d:
8a:a1:cc:51:56:a6:f8:f9:13:44:cb:79:93:92:7f:
78:24:89:13:bb:a6:9c:5d:6e:90:21:45:fc:41:08:
dd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:55:29:25:4B:E8:4E:46:6D:10:22:D6:1F:C6:67:67:1E:DB:3A:E1
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.52.0/24
91.124.55.0/24
91.124.57.0-91.124.58.255
91.124.62.0/24
91.124.67.0/24
91.124.83.0/24
92.112.240.0/21
Signature Algorithm: sha256WithRSAEncryption
12:4c:9b:dc:fd:89:03:14:5b:8f:60:ba:55:c2:9f:ff:35:c7:
8a:cd:72:f1:0a:e4:8d:87:59:e7:38:a6:b7:5b:ee:77:e4:39:
6b:ec:cc:b4:fd:b2:90:48:a7:1d:98:f0:a6:46:44:73:d0:b7:
b3:68:cd:3a:22:c5:a0:16:fb:ef:6a:a0:fe:bf:2d:15:f4:05:
6a:b1:68:5b:18:c7:fa:66:93:10:42:b7:80:c9:77:b6:40:c0:
c2:4b:dd:49:94:65:6f:da:20:df:0a:d1:19:65:27:e8:6a:f3:
e8:33:db:11:a8:57:50:d3:35:80:15:c3:8f:1c:09:45:62:b5:
a8:25:03:c4:54:bd:5d:cb:7c:cf:0d:de:55:47:76:ab:b7:a9:
2b:e1:30:f5:a3:4e:e7:9c:4b:7b:33:66:4e:63:c1:72:0d:6e:
a2:a0:ef:f2:a7:4e:27:b0:c3:d9:7f:d5:e2:b4:da:6a:c6:17:
51:e9:4f:2d:de:cf:54:b4:52:2c:66:dc:0a:e6:73:68:93:91:
65:52:2c:74:78:3f:83:52:f5:5c:0d:f2:82:0e:d7:95:de:8c:
b0:8c:76:7b:ed:4d:ed:f2:2f:11:c5:c2:77:83:7b:1e:35:d7:
c6:24:4e:bc:2d:69:20:03:35:22:83:45:31:45:21:30:a6:b9:
a2:62:97:2c
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUSmZlIjmDWlSbq1oAvs9xwhJ3xdgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNDExMDcwMzA0MzRaFw0yNTExMDYwMzA5MzRaMDMxMTAvBgNV
BAMTKDBDNTUyOTI1NEJFODRFNDY2RDEwMjJENjFGQzY2NzY3MUVEQjNBRTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCO9uf6501Qar9hBrR8LDvGl3TI
W7Lbn6l5aY2kPYYs+olk1d0A+3e7BBLdjJZr24rM5I3vh4SWUJyn4K6MYObktgOz
KIOjeg+/vthLlk9dS7keVX37KX6fuvKUMpK6QIEk8cYO5z3gp3rnjuLdX/YAum5s
Og94NGAY41P6iXCj+OqR+a1WC1UD7Hq8nzavFB6OrJIva4hqWAJ9XdaIFZN/IWQq
BgS8KIHAMtz5kvGBFJcjhS2Hy0JkI06wSmenTZilhzYCCKYF1Ry4ZXXTv6tvMvfe
k90v1zsGAcLKhWTjbYqhzFFWpvj5E0TLeZOSf3gkiRO7ppxdbpAhRfxBCN35AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUDFUpJUvoTkZtECLWH8ZnZx7bOuEwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjkxNC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjBLBggrBgEFBQcBBwEB/wQ8MDowOAQCAAEwMgMEAFt8NAME
AFt8NzAMAwQAW3w5AwQAW3w6AwQAW3w+AwQAW3xDAwQAW3xTAwQDXHDwMA0GCSqG
SIb3DQEBCwUAA4IBAQASTJvc/YkDFFuPYLpVwp//NceKzXLxCuSNh1nnOKa3W+53
5Dlr7My0/bKQSKcdmPCmRkRz0LezaM06IsWgFvvvaqD+vy0V9AVqsWhbGMf6ZpMQ
QreAyXe2QMDCS91JlGVv2iDfCtEZZSfoavPoM9sRqFdQ0zWAFcOPHAlFYrWoJQPE
VL1dy3zPDd5VR3art6kr4TD1o07nnEt7M2ZOY8FyDW6ioO/yp04nsMPZf9XitNpq
xhdR6U8t3s9UtFIsZtwK5nNok5FlUix0eD+DUvVcDfKCDteV3oywjHZ77U3t8i8R
xcJ3g3seNdfGJE68LWkgAzUig0UxRSEwprmiYpcs
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org