Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6079.roa
File: AS6079.roa (raw, json)
Hash identifier: Yy6bWyhEJpqERRjEJf/3EbwOkubmPAoR3b0txinHens=
Subject key identifier: 67:80:69:DD:59:90:B2:FC:3F:D0:19:B3:62:21:D7:87:F6:1B:89:31
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 5324A31279F49EA9272F26307F3905658FED86C7
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6079.roa
Signing time: Tue 07 Jan 2025 11:02:31 +0000
ROA not before: Tue 07 Jan 2025 10:57:31 +0000
ROA not after: Tue 06 Jan 2026 11:02:31 +0000
asID: 6079
IP address blocks: 96.62.227.0/24 maxlen: 24
96.62.248.0/24 maxlen: 24
96.62.249.0/24 maxlen: 24
140.150.160.0/21 maxlen: 24
140.150.168.0/21 maxlen: 24
140.233.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 08:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:24:a3:12:79:f4:9e:a9:27:2f:26:30:7f:39:05:65:8f:ed:86:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jan 7 10:57:31 2025 GMT
Not After : Jan 6 11:02:31 2026 GMT
Subject: CN=678069DD5990B2FC3FD019B36221D787F61B8931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2d:1b:18:1c:3e:8a:88:04:b1:78:3d:3d:eb:
be:99:13:60:4c:fc:84:6d:30:5a:6b:96:c6:26:b7:
fe:f2:9b:b1:0f:64:dc:2c:8f:72:cc:da:b3:8f:c7:
c1:75:79:6f:c4:6f:e6:27:8b:58:00:18:d8:a0:52:
de:9d:79:4d:16:66:10:a5:de:c6:95:c6:ed:76:0b:
0f:44:3b:90:d0:37:b0:e8:fa:1a:22:e3:2f:70:54:
1a:81:72:9d:a6:e3:44:e4:ab:88:10:25:5b:b6:87:
78:aa:59:ee:bb:a1:34:dc:85:82:95:64:69:7b:86:
7e:c6:1d:c4:56:84:eb:25:60:3f:9a:0f:d3:1c:07:
98:88:19:87:9e:73:dd:29:ea:ea:21:f7:e9:f6:3e:
90:19:67:fd:f9:f0:b4:90:fd:29:71:9b:ee:6b:4b:
a2:71:10:89:d9:56:85:82:47:69:2d:6f:4d:20:d4:
d6:7d:25:86:2d:e7:d8:6b:2b:25:79:1b:d9:d0:86:
54:9b:8c:2c:1a:fe:c4:79:38:6d:7c:4c:b6:5e:f2:
95:87:bf:08:48:38:dd:16:e9:5f:0f:1c:f2:9e:5e:
2b:e1:75:db:8a:3d:2b:4e:db:90:21:1d:12:0f:c3:
d5:75:09:30:fb:65:51:82:a0:d2:9a:8b:af:8e:f8:
fd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:80:69:DD:59:90:B2:FC:3F:D0:19:B3:62:21:D7:87:F6:1B:89:31
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6079.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.227.0/24
96.62.248.0/23
140.150.160.0/20
140.233.192.0/18
Signature Algorithm: sha256WithRSAEncryption
b8:d1:33:98:5b:e7:6c:67:2f:b5:f2:e3:ad:37:82:a1:41:b5:
31:98:74:25:91:ab:b3:9b:04:7d:cd:44:4a:fb:8b:97:68:99:
2f:66:82:44:22:e5:e6:e2:0b:ee:d5:97:74:2c:b1:ce:ce:3e:
1b:25:b3:5e:9f:2d:04:09:c9:aa:ca:c3:c2:28:60:67:23:0a:
44:35:b8:b3:dc:03:2f:20:f9:38:ce:4a:65:db:d1:41:bf:19:
0c:03:5e:c5:93:b7:ad:ea:59:25:8f:62:b1:2f:df:a6:42:05:
74:7c:06:04:4c:e7:c7:13:bc:52:41:19:0d:e2:14:9b:43:62:
b4:d1:1e:25:da:a1:11:4d:18:ac:6a:a5:d8:45:f6:ed:b7:5c:
d9:e2:d9:c7:7a:ea:25:a9:21:77:c6:2c:ba:4d:27:c4:ee:af:
7d:73:06:51:58:66:89:55:7a:82:48:cf:26:0c:58:88:cf:5d:
ec:8a:97:85:ef:19:73:ff:a2:e9:a3:d2:d2:57:08:29:47:76:
b3:8f:7b:b0:17:73:1a:80:5b:a0:09:9a:c5:8a:c1:a7:73:1d:
4f:53:57:e0:ed:6f:27:f5:b3:ff:41:df:16:77:e0:58:d6:d6:
26:16:ed:a2:6b:17:5c:3d:02:0e:ed:5f:74:59:5c:73:69:53:
6e:b0:b0:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:53:38 2025 by rpki-client