Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS62240.roa
File: AS62240.roa (raw, json)
Hash identifier: K5ID9Fgkq6AAHT2lUoQrB6JXJUW0zO8mk7Qj4C/0Whg=
Subject key identifier: E7:F6:07:F9:B1:64:A8:B5:EB:B5:D9:65:32:51:C3:33:1D:70:0C:4D
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 4BDC3C684E72583EFE0A81DC58524FC86A448243
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS62240.roa
Signing time: Sat 06 Apr 2024 11:09:31 +0000
ROA not before: Sat 06 Apr 2024 11:04:31 +0000
ROA not after: Sat 05 Apr 2025 11:09:31 +0000
asID: 62240
IP address blocks: 140.150.236.0/22 maxlen: 22
146.103.28.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:dc:3c:68:4e:72:58:3e:fe:0a:81:dc:58:52:4f:c8:6a:44:82:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 6 11:04:31 2024 GMT
Not After : Apr 5 11:09:31 2025 GMT
Subject: CN=E7F607F9B164A8B5EBB5D9653251C3331D700C4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:12:83:c3:04:a1:7e:c1:bd:33:48:2b:bf:a9:
81:f8:94:db:83:7c:0a:87:38:fa:47:fb:cf:ad:2e:
0e:5a:64:d1:4d:6b:1c:22:80:36:10:c6:77:45:e6:
3c:b5:b7:a7:f1:8f:8c:1a:4d:20:9f:66:cc:fe:c5:
80:c5:70:de:29:00:81:40:ed:4a:23:3d:1d:cb:80:
53:cd:9e:59:4b:00:58:48:a1:83:53:2b:10:e8:26:
5e:08:56:e1:f2:78:5a:c5:22:4b:6b:55:80:e0:aa:
b1:17:9a:87:13:63:e4:2a:56:67:0c:7a:83:11:fa:
03:86:86:f0:cf:35:b0:34:39:13:17:20:55:fd:6c:
76:fc:f7:5a:54:7e:b5:c4:a9:b8:48:8d:72:6d:be:
05:88:16:04:26:68:0f:bb:80:2f:7d:6c:0e:86:34:
ed:b5:e2:c0:fb:6b:8b:69:b3:40:d8:7b:e6:43:f4:
b3:89:61:7e:d3:72:f4:77:e9:13:60:c3:34:2d:1e:
74:dd:bb:e5:34:43:2e:5b:3b:d2:9b:d9:be:50:ba:
ad:d7:08:76:aa:3c:57:5d:b0:fd:db:ba:54:f4:b6:
28:fa:ad:d4:80:bc:17:18:ba:64:53:dd:39:75:c6:
33:49:7c:46:1f:4a:bb:fa:b7:12:30:db:93:9a:d1:
5e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F6:07:F9:B1:64:A8:B5:EB:B5:D9:65:32:51:C3:33:1D:70:0C:4D
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS62240.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.236.0/22
146.103.28.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:68:7e:22:3e:9f:18:da:95:07:83:2f:3e:85:3a:f4:0c:35:
7f:64:f5:f9:57:fd:67:86:ad:91:5e:88:5e:f2:41:fb:91:ac:
7c:1e:e8:07:da:d1:77:0a:fc:78:c8:a5:d0:2e:3c:d9:50:6d:
b3:12:ea:a9:d5:27:77:1f:13:6c:b2:b0:39:4b:9a:e0:21:f1:
a5:d2:65:ae:e1:95:a7:a3:93:aa:9a:b8:07:2e:cd:cb:e4:c5:
99:a3:a5:e2:f9:a6:14:b0:79:b8:78:fa:a6:b4:58:68:e6:46:
46:b2:0e:8b:e1:16:a8:e8:30:08:2a:b3:ba:6b:d0:48:77:85:
22:ba:81:fc:c3:99:67:43:ae:56:fd:2a:39:66:60:34:df:53:
49:08:e2:2c:44:58:15:2e:13:5b:e7:25:63:fe:98:97:6a:4d:
d5:43:4e:69:4e:7b:e8:92:de:d6:ab:e5:26:bc:c8:7a:9b:38:
c9:00:45:11:ba:40:49:08:b5:86:e0:06:f8:f3:20:2b:24:32:
74:5b:15:a4:c7:0e:8d:6c:5d:eb:57:77:33:f7:5b:27:45:88:
e1:c6:fc:18:51:e7:aa:27:7a:ac:77:66:e7:b9:c8:a1:c6:79:
24:90:20:94:a1:0e:8b:ce:a4:7d:08:d0:ae:a0:1c:01:d9:b7:
65:32:d3:3f
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIUS9w8aE5yWD7+CoHcWFJPyGpEgkMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNDA0MDYxMTA0MzFaFw0yNTA0MDUxMTA5MzFaMDMxMTAvBgNV
BAMTKEU3RjYwN0Y5QjE2NEE4QjVFQkI1RDk2NTMyNTFDMzMzMUQ3MDBDNEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAEoPDBKF+wb0zSCu/qYH4lNuD
fAqHOPpH+8+tLg5aZNFNaxwigDYQxndF5jy1t6fxj4waTSCfZsz+xYDFcN4pAIFA
7UojPR3LgFPNnllLAFhIoYNTKxDoJl4IVuHyeFrFIktrVYDgqrEXmocTY+QqVmcM
eoMR+gOGhvDPNbA0ORMXIFX9bHb891pUfrXEqbhIjXJtvgWIFgQmaA+7gC99bA6G
NO214sD7a4tps0DYe+ZD9LOJYX7TcvR36RNgwzQtHnTdu+U0Qy5bO9Kb2b5Quq3X
CHaqPFddsP3bulT0tij6rdSAvBcYumRT3Tl1xjNJfEYfSrv6txIw25Oa0V4tAgMB
AAGjggIPMIICCzAdBgNVHQ4EFgQU5/YH+bFkqLXrtdllMlHDMx1wDE0wHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNjIyNDAucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAKMluwD
BAKSZxwwDQYJKoZIhvcNAQELBQADggEBAI1ofiI+nxjalQeDLz6FOvQMNX9k9flX
/WeGrZFeiF7yQfuRrHwe6Afa0XcK/HjIpdAuPNlQbbMS6qnVJ3cfE2yysDlLmuAh
8aXSZa7hlaejk6qauAcuzcvkxZmjpeL5phSwebh4+qa0WGjmRkayDovhFqjoMAgq
s7pr0Eh3hSK6gfzDmWdDrlb9KjlmYDTfU0kI4ixEWBUuE1vnJWP+mJdqTdVDTmlO
e+iS3tar5Sa8yHqbOMkARRG6QEkItYbgBvjzICskMnRbFaTHDo1sXetXdzP3WydF
iOHG/BhR56oneqx3Zue5yKHGeSSQIJShDovOpH0I0K6gHAHZt2Uy0z8=
-----END CERTIFICATE-----
Generated at Sun May 5 22:48:03 2024 by rpki-client on console-ams.rpki-client.org