Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
File: AS7018.roa (raw, json)
Hash identifier: t3zrrITDfZe1+FvU1RMPhYBh6Wnf6NrRJwUzTw5PkeU=
Subject key identifier: FE:07:17:D7:2B:AE:17:BC:6D:BC:2F:41:30:A8:82:35:BF:53:D0:96
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 5DA929408385EAA56639F7B84D7F55ADFCEEC0A0
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
Signing time: Tue 30 Apr 2024 17:55:32 +0000
ROA not before: Tue 30 Apr 2024 17:50:32 +0000
ROA not after: Tue 29 Apr 2025 17:55:32 +0000
asID: 7018
IP address blocks: 140.150.224.0/22 maxlen: 24
140.233.192.0/18 maxlen: 24
146.103.48.0/21 maxlen: 24
147.79.21.0/24 maxlen: 24
147.79.64.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:a9:29:40:83:85:ea:a5:66:39:f7:b8:4d:7f:55:ad:fc:ee:c0:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 30 17:50:32 2024 GMT
Not After : Apr 29 17:55:32 2025 GMT
Subject: CN=FE0717D72BAE17BC6DBC2F4130A88235BF53D096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0e:c0:08:d8:ae:d9:92:5a:1e:88:7e:22:66:
19:55:c4:cc:9b:57:23:0f:33:6f:ff:12:dc:5c:d5:
0e:4a:e8:74:d2:b1:65:db:ea:87:f9:af:a5:d8:e7:
c1:46:d1:ea:82:70:58:8a:79:6b:ee:9b:d7:34:a0:
01:83:bc:68:04:84:32:46:5f:7f:f3:38:32:0f:55:
61:a7:6d:3c:a0:15:fd:01:48:39:5c:8d:61:82:49:
3d:d9:c4:8f:38:b1:ca:cf:c9:ef:dd:8b:32:b0:17:
3c:5e:a1:1b:bb:a6:5b:be:12:d6:63:ae:ec:4a:26:
a2:db:3a:6d:de:69:1a:10:2d:db:fa:cc:a6:7b:a2:
3d:b1:c7:65:9c:84:bb:ec:3f:a2:36:12:21:4b:4c:
05:f1:80:8a:90:da:b9:74:d5:62:a5:a1:01:cb:b0:
e8:ac:e1:05:d5:99:ff:4a:5c:dc:b2:8f:bd:57:56:
97:08:3f:e0:45:8f:7f:90:2e:5b:02:35:d9:51:7b:
e5:9f:83:e6:92:c0:a0:0d:18:ec:da:f4:c0:cc:82:
c5:1a:6f:c6:e8:f7:cc:dd:ae:c8:f4:c5:f0:99:80:
f8:33:a8:f5:a1:85:e0:ed:f0:0c:64:e8:5b:6b:5a:
03:b4:49:df:e3:40:2a:97:6d:4e:ba:a5:87:55:9c:
f6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:07:17:D7:2B:AE:17:BC:6D:BC:2F:41:30:A8:82:35:BF:53:D0:96
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.224.0/22
140.233.192.0/18
146.103.48.0/21
147.79.21.0/24
147.79.64.0/20
Signature Algorithm: sha256WithRSAEncryption
7c:74:25:80:16:dd:75:5e:10:34:e9:44:e1:6e:a4:ee:c6:11:
53:7b:b7:bf:9b:0b:32:08:25:cb:f2:60:24:52:bd:19:84:f0:
a8:3b:ab:6b:1e:d2:b5:7f:8d:49:53:a2:6b:c9:df:7c:c3:d3:
21:f0:70:93:f0:31:66:cd:89:3f:cf:2c:e0:bf:51:e2:9e:a3:
9a:83:5f:be:dc:45:b7:37:21:6e:f1:99:2b:13:12:04:2c:38:
a8:68:b2:9c:f4:d9:1e:81:52:a5:a5:e1:d4:c3:99:55:50:07:
16:ba:9e:51:e2:92:dd:c0:28:56:5e:15:41:e7:05:ed:01:af:
58:57:a6:f8:07:2b:12:39:fc:25:d0:57:c5:11:98:6a:bc:a3:
99:a7:df:cd:c1:54:b2:29:74:f6:cc:b7:35:ad:14:28:77:ec:
cd:6c:58:64:3f:f2:ee:75:84:a7:5f:de:9a:30:83:d0:36:3e:
1e:51:03:a9:01:07:85:69:8b:15:e9:88:8f:48:0c:af:f2:a7:
61:b6:19:b0:16:cf:dd:67:76:62:20:3f:61:44:3c:b4:79:34:
e0:fa:12:dd:fb:f9:ac:d5:5c:94:a0:8c:03:9b:00:8e:cf:43:
7d:dc:5a:87:c6:3a:e7:80:83:fe:e9:5b:8f:d4:03:49:f1:a6:
a6:3f:c9:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 03:15:23 2024 by rpki-client on console-fra.rpki-client.org