Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS58061.roa
File: AS58061.roa (raw, json)
Hash identifier: j5QES1Yud7gycp0D+9vLcmxBgaCsaGiUXTZ3dxyj5j4=
Subject key identifier: BE:C8:33:E9:32:43:3E:48:1D:DA:DF:B4:EC:58:98:D7:A8:24:DC:C2
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 69039FD593DF2DCF4D8CA2C56F8A568490C6AF82
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS58061.roa
Signing time: Sat 16 Mar 2024 01:21:08 +0000
ROA not before: Sat 16 Mar 2024 01:16:08 +0000
ROA not after: Sat 15 Mar 2025 01:21:08 +0000
asID: 58061
IP address blocks: 91.124.18.0/24 maxlen: 24
91.124.29.0/24 maxlen: 24
91.124.35.0/24 maxlen: 24
91.124.49.0/24 maxlen: 24
91.124.54.0/24 maxlen: 24
91.124.60.0/24 maxlen: 24
91.124.66.0/24 maxlen: 24
91.124.81.0/24 maxlen: 24
91.124.127.0/24 maxlen: 24
91.124.128.0/24 maxlen: 24
91.124.147.0/24 maxlen: 24
91.124.148.0/24 maxlen: 24
91.124.173.0/24 maxlen: 24
91.124.177.0/24 maxlen: 24
91.124.186.0/24 maxlen: 24
91.124.200.0/24 maxlen: 24
91.124.217.0/24 maxlen: 24
91.124.221.0/24 maxlen: 24
91.124.236.0/24 maxlen: 24
91.124.241.0/24 maxlen: 24
91.124.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:03:9f:d5:93:df:2d:cf:4d:8c:a2:c5:6f:8a:56:84:90:c6:af:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 16 01:16:08 2024 GMT
Not After : Mar 15 01:21:08 2025 GMT
Subject: CN=BEC833E932433E481DDADFB4EC5898D7A824DCC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b1:a2:f7:27:9f:01:c6:85:bd:64:3a:5f:7c:
86:25:70:99:a3:99:e6:a9:16:6a:c8:fa:89:37:d1:
9d:18:94:9b:9d:69:43:60:8d:73:e8:10:05:e2:d5:
96:02:a8:0c:4d:2f:f3:25:6d:e6:64:68:6b:f5:50:
24:19:20:3e:2d:52:02:0b:e4:cb:e2:3d:22:5a:f5:
d4:92:e3:7e:89:77:76:67:89:85:2e:e5:8b:e0:f0:
cc:53:66:33:d0:c0:aa:b8:e4:86:d9:94:80:42:d9:
14:ab:ca:de:0a:43:59:5c:62:00:98:34:8d:14:c4:
6f:e0:6f:25:d1:98:f7:f5:04:3c:29:d5:e3:e9:50:
0c:82:be:59:42:66:0b:31:13:c1:15:d3:de:95:82:
09:ca:3e:3b:3b:6c:85:58:be:50:8a:39:bb:f0:dd:
ee:29:b2:3d:d9:51:27:47:58:d9:82:f5:82:b6:00:
bb:aa:99:3c:6a:43:bf:dd:04:b8:25:ea:4d:b3:c0:
39:5a:40:54:eb:e4:9e:31:23:f7:80:e9:78:98:27:
01:85:16:f2:c5:65:2a:d8:3a:11:24:89:93:f0:04:
36:16:49:df:43:6f:23:74:65:b7:0a:33:d5:97:e3:
43:cf:34:93:44:0c:49:60:07:42:20:03:72:21:03:
ea:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C8:33:E9:32:43:3E:48:1D:DA:DF:B4:EC:58:98:D7:A8:24:DC:C2
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS58061.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.18.0/24
91.124.29.0/24
91.124.35.0/24
91.124.49.0/24
91.124.54.0/24
91.124.60.0/24
91.124.66.0/24
91.124.81.0/24
91.124.127.0-91.124.128.255
91.124.147.0-91.124.148.255
91.124.173.0/24
91.124.177.0/24
91.124.186.0/24
91.124.200.0/24
91.124.217.0/24
91.124.221.0/24
91.124.236.0/24
91.124.241.0/24
91.124.255.0/24
Signature Algorithm: sha256WithRSAEncryption
26:7f:e2:ab:de:f6:47:a9:2e:7c:29:d6:30:7f:c6:df:2a:6a:
52:01:21:d2:a0:4e:16:c2:c4:9a:85:d4:86:6b:f7:34:4d:f8:
ee:ce:a7:68:0f:22:a6:e1:f9:a8:dd:ce:c5:ae:1b:5e:48:fd:
36:05:29:cb:c6:6b:3c:00:f9:9d:15:02:0d:fc:cd:bd:63:34:
c9:0b:4f:8f:a9:a6:e0:18:26:c5:37:82:0b:af:86:05:50:a6:
30:da:45:71:44:8f:2d:dc:0e:3e:5f:1b:74:be:2a:42:c4:0a:
08:5c:c8:fd:af:85:39:96:a3:7f:a6:e4:e3:ba:88:08:7d:c6:
7b:4d:c2:b7:9c:31:f5:1a:13:c6:57:02:58:d5:59:17:eb:b7:
40:30:40:03:cc:4c:2d:7e:d3:ea:11:44:4c:1b:42:7b:ad:45:
d5:1b:59:cf:c7:b4:db:e8:e1:8d:00:69:12:b8:4e:85:0f:a1:
ab:53:40:26:f2:a0:57:8d:74:74:52:20:94:12:67:6c:18:d9:
9f:73:8b:3f:90:00:75:92:a5:53:22:cc:34:cf:5a:03:4d:70:
b5:30:f1:00:e9:85:22:d4:f4:cf:90:a0:50:12:1d:3d:ae:08:
d4:41:1b:74:0b:c5:9d:2d:e9:21:86:ae:fd:42:80:4b:08:ef:
64:67:6e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 18:16:41 2024 by rpki-client on console-ams.rpki-client.org