Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60781.roa
File: AS60781.roa (raw, json)
Hash identifier: HM67bgHFd7W3m3fUT8djPkBGvIr7XpxrUaKZsdBioUM=
Subject key identifier: EF:96:B6:89:C3:77:D4:8D:36:37:CC:AA:AF:7B:E8:FD:D3:4D:57:F2
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 12B2D24AC68720EBD93D6D133D03039711508410
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60781.roa
Signing time: Mon 18 Nov 2024 15:55:05 +0000
ROA not before: Mon 18 Nov 2024 15:50:05 +0000
ROA not after: Mon 17 Nov 2025 15:55:05 +0000
asID: 60781
IP address blocks: 140.233.166.0/24 maxlen: 24
145.223.42.0/24 maxlen: 24
145.223.45.0/24 maxlen: 24
145.223.51.0/24 maxlen: 24
145.223.53.0/24 maxlen: 24
145.223.57.0/24 maxlen: 24
145.223.59.0/24 maxlen: 24
145.223.61.0/24 maxlen: 24
146.103.1.0/24 maxlen: 24
146.103.6.0/24 maxlen: 24
148.135.177.0/24 maxlen: 24
148.135.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:b2:d2:4a:c6:87:20:eb:d9:3d:6d:13:3d:03:03:97:11:50:84:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Nov 18 15:50:05 2024 GMT
Not After : Nov 17 15:55:05 2025 GMT
Subject: CN=EF96B689C377D48D3637CCAAAF7BE8FDD34D57F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0b:53:eb:14:c7:a6:de:ea:0f:f5:68:46:62:
e5:94:17:76:d6:1f:8a:85:75:40:c4:fe:69:1c:8f:
a7:70:bd:f2:e2:0e:3f:dd:81:cb:65:91:1d:a6:0e:
0c:c9:3a:7c:1d:7d:f8:57:e8:66:e3:e2:73:45:dd:
cb:ff:91:a0:f7:1c:e5:45:c7:87:76:f1:9e:60:73:
08:09:53:fc:cf:34:48:32:b8:c5:6f:9d:df:83:db:
79:1f:b3:f5:05:a5:7b:03:07:c4:28:14:92:d6:74:
23:1f:92:b9:a1:b9:d8:2a:84:2f:55:30:91:ce:04:
39:4a:13:e4:cf:26:9a:9d:42:57:8d:2b:8d:06:ea:
0f:16:aa:79:b2:a1:8e:ab:7e:d4:67:1f:b7:15:6b:
0f:6a:5c:4a:ff:9a:29:ef:36:75:73:4f:26:63:e5:
20:94:2f:b6:6a:fa:20:8b:d8:7b:7e:b6:f4:fd:54:
1e:a7:2b:e8:57:2a:bd:ed:53:b8:39:dd:b6:5e:3e:
9e:08:d6:5c:15:f0:1f:1a:02:e7:a5:29:00:3e:7b:
3b:67:34:4e:8a:0d:0e:ca:de:3d:a3:2b:e6:70:b5:
c4:08:d7:d0:e8:68:83:d2:2c:7d:03:93:bb:59:f5:
96:15:bb:35:1e:26:a4:da:6d:73:82:59:53:0b:fd:
95:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:96:B6:89:C3:77:D4:8D:36:37:CC:AA:AF:7B:E8:FD:D3:4D:57:F2
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60781.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.166.0/24
145.223.42.0/24
145.223.45.0/24
145.223.51.0/24
145.223.53.0/24
145.223.57.0/24
145.223.59.0/24
145.223.61.0/24
146.103.1.0/24
146.103.6.0/24
148.135.177.0/24
148.135.188.0/24
Signature Algorithm: sha256WithRSAEncryption
37:df:0f:6d:de:c7:58:00:5a:d6:3b:20:5f:f7:9a:5d:09:58:
b6:d6:bd:50:22:09:5c:45:89:4a:1c:0e:2f:0f:d1:d3:3a:6b:
56:4d:d2:e2:31:74:b2:df:e2:c2:58:12:a2:76:9e:b2:89:6a:
ba:00:a6:1c:19:d9:e0:fe:19:b7:22:e4:9a:37:32:59:6f:e0:
77:fa:e0:9b:61:77:7f:ba:d1:b2:e6:4b:ee:11:e4:32:e6:be:
b3:af:a1:68:e9:03:73:97:79:a2:c7:a3:e5:84:f7:ac:09:41:
36:5d:cf:f1:77:c9:9e:5d:c7:cd:94:b4:3b:7f:db:62:6e:59:
9e:0c:37:80:a4:c0:10:48:2e:83:76:75:87:c5:55:12:76:3f:
10:e8:4f:cc:6e:7e:13:7e:82:7d:b6:48:24:01:cc:6f:73:17:
4f:55:3e:43:c7:ee:68:51:89:27:f9:3d:9a:57:38:9e:2b:9a:
9b:44:14:00:a0:7c:98:cc:0e:88:d3:cb:e5:76:33:03:64:37:
39:cf:cc:6d:00:90:dc:5f:51:86:41:6d:7d:32:03:42:ea:17:
c6:20:5e:35:8c:01:fa:69:cd:3c:f8:94:1a:d4:45:bb:cd:1d:
cc:13:af:e0:d9:83:7e:e2:fb:a8:5f:2a:7f:e0:da:2b:4b:0f:
b7:82:8f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 14:22:16 2024 by rpki-client on console-ams.rpki-client.org