Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS47272.roa
File: AS47272.roa (raw, json)
Hash identifier: 8e8JdKMjyfR1QC2sySJhaKfT9NE5kvhkR4F06h2jFaQ=
Subject key identifier: CC:C5:C7:DF:32:22:B5:D6:1B:C0:FE:FE:21:EB:3E:C4:29:13:43:2D
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 6223F71DEFF5FE56D80EE80A034120E7196AFC57
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS47272.roa
Signing time: Sun 10 Nov 2024 16:51:09 +0000
ROA not before: Sun 10 Nov 2024 16:46:09 +0000
ROA not after: Sun 09 Nov 2025 16:51:09 +0000
asID: 47272
IP address blocks: 118.91.184.0/24 maxlen: 32
118.91.185.0/24 maxlen: 32
195.184.247.0/24 maxlen: 32
2a06:1281:1000::/36 maxlen: 36
2a09:54c6::/36 maxlen: 36
2a09:54c6:f000::/36 maxlen: 36
2a09:54c7::/32 maxlen: 32
2a0a:6044::/48 maxlen: 48
2a0a:6044:1::/48 maxlen: 48
2a0a:6044:2::/48 maxlen: 48
2a0a:6044:3::/48 maxlen: 48
2a0a:6044:4::/48 maxlen: 48
2a0a:6044:5::/48 maxlen: 48
2a0a:6044:6::/48 maxlen: 48
2a0a:6044:7::/48 maxlen: 48
2a0a:6044:8::/48 maxlen: 48
2a0a:6044:9::/48 maxlen: 48
2a0a:6044:a::/48 maxlen: 48
2a0a:6044:b::/48 maxlen: 48
2a0a:6044:10::/48 maxlen: 48
2a0a:6044:100::/40 maxlen: 48
2a0a:6044:6000::/40 maxlen: 40
2a0a:6044:6100::/40 maxlen: 40
2a0a:6044:7200::/40 maxlen: 40
2a0a:6044:7300::/40 maxlen: 40
2a0a:6044:7500::/40 maxlen: 40
2a0a:6044:aa0a::/48 maxlen: 48
2a0a:6044:aa0b::/48 maxlen: 48
2a0a:6044:aa0c::/48 maxlen: 48
2a0a:6044:ace0::/44 maxlen: 44
2a0a:6044:acf0::/44 maxlen: 44
2a0a:6044:b600::/40 maxlen: 40
2a0a:6044:c140::/44 maxlen: 44
2a0a:6044:c150::/44 maxlen: 44
2a0a:6044:c160::/44 maxlen: 44
2a0a:6044:c170::/44 maxlen: 44
2a0a:6044:c180::/44 maxlen: 44
2a0a:6044:c190::/44 maxlen: 44
2a0a:6044:c1a0::/44 maxlen: 44
2a0a:6044:c1b0::/44 maxlen: 44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:23:f7:1d:ef:f5:fe:56:d8:0e:e8:0a:03:41:20:e7:19:6a:fc:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Nov 10 16:46:09 2024 GMT
Not After : Nov 9 16:51:09 2025 GMT
Subject: CN=CCC5C7DF3222B5D61BC0FEFE21EB3EC42913432D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:04:5b:3b:4e:2d:fb:34:95:d5:d2:d4:d0:79:
73:e0:da:68:b0:b6:ed:14:8e:11:70:70:6f:f8:da:
5c:b1:5b:45:73:fe:cf:ba:50:5f:d9:a1:2d:af:ac:
e7:22:b0:18:cb:15:e0:fc:df:98:e7:5d:81:a9:0c:
b0:a1:7a:42:f8:bf:b9:e8:68:f1:e9:40:5e:6c:9e:
b0:66:de:86:66:39:bd:c6:2b:2c:b0:5c:9c:fd:5b:
cf:19:e8:8f:ec:7f:d4:8a:28:6d:86:4b:6b:e6:84:
93:52:b2:cd:2f:04:ea:7f:56:4d:9b:b2:48:0c:67:
40:64:84:61:49:7f:f5:94:15:42:58:43:df:93:f9:
e9:55:47:88:72:0d:f3:75:e3:81:59:a8:3d:7f:cf:
65:11:83:b5:a8:77:91:91:d4:32:13:a5:dc:23:c0:
03:8f:b6:91:16:15:09:5c:91:ba:9b:c4:0d:54:dc:
e0:e0:13:88:3c:04:ae:92:fe:7a:93:f2:42:9d:dc:
6b:d3:aa:cd:57:ad:4c:f2:e1:9b:b2:6d:dc:d1:57:
78:87:cb:74:55:67:17:72:05:7f:9a:c9:c5:37:fd:
e7:2e:1c:10:45:17:46:a0:5d:2b:3c:05:0f:b4:aa:
33:b4:a9:28:1a:ca:2a:17:8a:4c:2a:04:a2:e3:12:
a8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:C5:C7:DF:32:22:B5:D6:1B:C0:FE:FE:21:EB:3E:C4:29:13:43:2D
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS47272.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.91.184.0/23
195.184.247.0/24
IPv6:
2a06:1281:1000::/36
2a09:54c6::/36
2a09:54c6:f000::-2a09:54c7:ffff:ffff:ffff:ffff:ffff:ffff
2a0a:6044::-2a0a:6044:b:ffff:ffff:ffff:ffff:ffff
2a0a:6044:10::/48
2a0a:6044:100::/40
2a0a:6044:6000::/39
2a0a:6044:7200::/39
2a0a:6044:7500::/40
2a0a:6044:aa0a::-2a0a:6044:aa0c:ffff:ffff:ffff:ffff:ffff
2a0a:6044:ace0::/43
2a0a:6044:b600::/40
2a0a:6044:c140::-2a0a:6044:c1bf:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
86:8f:8a:5d:49:b1:7b:d8:71:c9:15:d9:6b:f5:ab:32:8c:1a:
57:de:60:29:f9:c3:70:8c:fb:0f:e6:79:b8:3a:f0:61:cb:9e:
04:94:32:88:e2:e5:e6:d3:78:82:84:51:a6:70:65:63:7e:6b:
7a:61:9f:40:d8:ce:37:70:2c:c0:75:27:a2:b9:f9:cb:06:da:
32:f7:5b:e2:b8:32:a1:e8:fd:53:50:05:27:14:01:5b:82:9a:
d4:ae:7f:d9:4a:d9:01:b8:fe:aa:b4:c0:4f:5a:6d:81:9a:d2:
fe:5f:d4:23:02:64:ae:29:81:89:b2:81:21:00:73:2e:64:26:
5a:55:6e:c5:a8:b0:ff:70:57:cb:0a:17:5f:7a:22:73:2e:27:
51:6c:76:e8:21:a4:2e:62:ce:1d:41:6d:c9:ee:a9:8d:86:90:
2e:8c:d6:4d:84:cf:9f:60:62:93:23:2b:f7:cb:e5:c7:3c:2f:
67:8b:14:ff:df:1c:1e:9f:4e:f4:7c:11:23:c7:24:aa:41:a1:
fd:75:ec:70:73:79:55:cc:7d:08:9c:81:7e:d9:cc:ad:98:9c:
3f:62:8d:d6:be:2f:b6:3f:5d:f7:31:b6:b8:e0:6a:e7:10:1f:
3d:e7:5f:b9:b5:4b:02:5f:c5:16:04:65:c4:54:e2:d5:65:e8:
d9:25:8e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:49:01 2024 by rpki-client on console-ams.rpki-client.org