Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS47583.roa
File: AS47583.roa (raw, json)
Hash identifier: DnragttlTot5Bp7iB1hpm0y+L0CQK/fcr0eVnUzs/yg=
Subject key identifier: 09:34:B4:14:45:A3:E0:B5:67:6E:C0:D6:1B:1A:02:F0:63:FC:4E:A3
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 1C719C3F9BEB7B64D1CC0C5EF7B7B1E0BCC56F6B
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS47583.roa
Signing time: Fri 20 Sep 2024 06:48:45 +0000
ROA not before: Fri 20 Sep 2024 06:43:45 +0000
ROA not after: Fri 19 Sep 2025 06:48:45 +0000
asID: 47583
IP address blocks: 145.223.16.0/21 maxlen: 24
145.223.24.0/21 maxlen: 24
145.223.32.0/21 maxlen: 24
145.223.72.0/21 maxlen: 24
145.223.80.0/21 maxlen: 24
145.223.88.0/21 maxlen: 24
145.223.96.0/21 maxlen: 24
145.223.104.0/21 maxlen: 24
145.223.112.0/21 maxlen: 24
145.223.120.0/21 maxlen: 24
147.79.64.0/21 maxlen: 24
147.79.72.0/21 maxlen: 24
147.79.80.0/21 maxlen: 24
147.79.88.0/21 maxlen: 24
147.79.96.0/21 maxlen: 24
147.79.104.0/21 maxlen: 24
147.79.112.0/21 maxlen: 24
147.79.120.0/21 maxlen: 24
148.135.128.0/21 maxlen: 24
148.135.136.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:71:9c:3f:9b:eb:7b:64:d1:cc:0c:5e:f7:b7:b1:e0:bc:c5:6f:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Sep 20 06:43:45 2024 GMT
Not After : Sep 19 06:48:45 2025 GMT
Subject: CN=0934B41445A3E0B5676EC0D61B1A02F063FC4EA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8a:e4:a8:a8:ee:99:24:73:f8:7b:7e:fa:43:
80:84:6c:9c:8e:0e:e0:44:f8:43:e1:48:96:62:c7:
4e:d0:05:aa:c8:0e:46:a0:49:80:3e:d3:41:59:fc:
2e:dd:eb:f0:0d:18:fd:6f:15:67:f6:8b:63:ae:0f:
4f:48:4d:bf:5c:47:2e:23:01:0d:5b:46:b6:20:9a:
c3:be:d8:3c:e7:89:c0:41:65:7c:dd:8e:bb:19:2a:
46:1f:77:4c:1b:4d:e7:78:8d:a9:88:bc:e5:d7:46:
e1:84:21:3b:02:e8:87:87:7f:1e:0b:6d:77:62:31:
c1:15:a6:b3:52:b4:22:dd:d9:a3:15:3b:73:c3:18:
3c:5b:21:6e:3a:65:0f:af:ef:1e:9e:3d:b3:20:ba:
10:79:c9:b8:df:13:03:6c:d7:e4:9d:99:49:8e:ee:
81:12:69:ef:8e:38:cd:98:5a:c3:d3:1b:b1:8a:18:
81:63:1d:f9:21:76:75:c3:9b:3f:3f:3a:02:37:97:
ba:3b:61:d0:b0:d4:a4:21:0b:31:95:24:34:2d:7f:
f4:92:1d:7d:42:f1:db:44:3f:a3:cd:b4:5a:77:f0:
c4:70:e1:82:b6:a6:a6:41:9b:69:d9:cf:ea:7e:ef:
ad:c6:af:d9:52:8d:28:1d:66:70:7d:8f:63:bd:12:
f3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:34:B4:14:45:A3:E0:B5:67:6E:C0:D6:1B:1A:02:F0:63:FC:4E:A3
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS47583.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.223.16.0-145.223.39.255
145.223.72.0-145.223.127.255
147.79.64.0/18
148.135.128.0/20
Signature Algorithm: sha256WithRSAEncryption
b6:40:cf:83:c7:e8:fe:fb:da:b7:10:0f:53:1c:6f:e8:26:ca:
ba:b3:55:54:79:a6:05:a2:0a:65:e0:da:3b:d1:e0:8c:43:53:
f1:a8:f8:ff:ba:15:a0:0d:a2:ef:11:a1:17:52:9e:35:f1:d5:
a6:e9:2f:82:14:69:fa:7e:d0:0c:f8:d5:6f:88:e0:09:57:4f:
41:00:33:09:e6:db:5e:be:72:72:e7:89:03:f5:c2:8e:97:40:
9f:e7:87:f4:d5:5c:34:ee:6f:42:9f:78:d2:fa:28:49:03:70:
8a:4a:cb:1f:6d:46:e3:85:08:e2:76:37:05:11:a9:9c:ce:78:
eb:45:93:c0:c7:7b:8d:0d:0d:cd:41:0c:c6:71:21:9e:e9:9b:
9f:e5:86:a8:5a:87:ab:6b:c1:c3:c0:c2:8b:7c:76:6a:7f:55:
f2:90:1e:7e:22:89:01:8e:1a:67:b5:81:07:7a:c3:8f:03:dd:
be:5b:4a:69:54:56:de:42:a5:6c:2c:19:02:0d:29:8e:87:b4:
a9:ce:35:e9:48:34:65:55:0b:c8:71:58:37:b6:f1:d2:f6:2b:
0a:23:47:f5:ea:3e:9a:ba:49:32:54:bf:5e:46:3f:0a:0b:83:
e5:66:4f:e6:54:54:41:b7:65:96:c0:54:29:52:83:14:dd:c5:
a6:3a:59:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:19 2024 by rpki-client on console-ams.rpki-client.org