Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa
File: AS13213.roa (raw, json)
Hash identifier: 2C7YpbYDu00yhv1aJ1MLFrN7fgUjGQl8XEaxNkKfdqY=
Subject key identifier: EC:46:C9:0F:A1:DD:CC:8B:52:53:97:47:43:F1:70:0D:CC:A1:F9:02
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 572DCBE0F2A53CA5B1149C953DCCCD1A9F4D0B6E
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa
Signing time: Mon 08 Jul 2024 08:18:35 +0000
ROA not before: Mon 08 Jul 2024 08:13:35 +0000
ROA not after: Mon 07 Jul 2025 08:18:35 +0000
asID: 13213
IP address blocks: 2.58.29.0/24 maxlen: 24
5.181.133.0/24 maxlen: 24
45.81.2.0/24 maxlen: 24
45.89.251.0/24 maxlen: 24
45.137.31.0/24 maxlen: 24
45.139.181.0/24 maxlen: 24
92.119.33.0/24 maxlen: 24
109.106.2.0/24 maxlen: 24
109.106.3.0/24 maxlen: 24
130.185.125.0/24 maxlen: 24
179.61.167.0/24 maxlen: 24
179.61.175.0/24 maxlen: 24
179.61.178.0/24 maxlen: 24
179.61.179.0/24 maxlen: 24
179.61.218.0/24 maxlen: 24
179.61.233.0/24 maxlen: 24
181.41.204.0/24 maxlen: 24
181.41.208.0/24 maxlen: 24
181.214.60.0/24 maxlen: 24
181.214.61.0/24 maxlen: 24
181.214.64.0/24 maxlen: 24
181.214.65.0/24 maxlen: 24
181.214.66.0/24 maxlen: 24
181.214.67.0/24 maxlen: 24
181.214.68.0/24 maxlen: 24
181.214.69.0/24 maxlen: 24
181.214.86.0/24 maxlen: 24
181.214.97.0/24 maxlen: 24
181.214.100.0/24 maxlen: 24
181.214.103.0/24 maxlen: 24
181.214.108.0/24 maxlen: 24
181.214.109.0/24 maxlen: 24
181.214.110.0/24 maxlen: 24
181.214.111.0/24 maxlen: 24
181.214.113.0/24 maxlen: 24
181.214.114.0/24 maxlen: 24
181.214.116.0/24 maxlen: 24
181.214.120.0/24 maxlen: 24
181.214.124.0/24 maxlen: 24
181.214.125.0/24 maxlen: 24
181.214.126.0/24 maxlen: 24
181.214.148.0/24 maxlen: 24
181.214.200.0/24 maxlen: 24
181.214.201.0/24 maxlen: 24
181.214.202.0/24 maxlen: 24
181.214.203.0/24 maxlen: 24
181.214.225.0/24 maxlen: 24
181.215.19.0/24 maxlen: 24
181.215.80.0/24 maxlen: 24
181.215.81.0/24 maxlen: 24
181.215.82.0/24 maxlen: 24
181.215.83.0/24 maxlen: 24
181.215.84.0/24 maxlen: 24
181.215.85.0/24 maxlen: 24
181.215.86.0/24 maxlen: 24
181.215.96.0/24 maxlen: 24
181.215.98.0/24 maxlen: 24
181.215.100.0/24 maxlen: 24
181.215.103.0/24 maxlen: 24
181.215.105.0/24 maxlen: 24
181.215.106.0/24 maxlen: 24
181.215.117.0/24 maxlen: 24
181.215.118.0/24 maxlen: 24
181.215.126.0/24 maxlen: 24
181.215.129.0/24 maxlen: 24
181.215.131.0/24 maxlen: 24
181.215.150.0/24 maxlen: 24
181.215.155.0/24 maxlen: 24
181.215.158.0/24 maxlen: 24
181.215.217.0/24 maxlen: 24
181.215.240.0/24 maxlen: 24
185.34.43.0/24 maxlen: 24
185.135.159.0/24 maxlen: 24
185.137.12.0/24 maxlen: 24
185.137.13.0/24 maxlen: 24
185.142.24.0/24 maxlen: 24
185.143.229.0/24 maxlen: 24
185.151.59.0/24 maxlen: 24
185.158.100.0/24 maxlen: 24
185.158.101.0/24 maxlen: 24
185.158.102.0/24 maxlen: 24
185.158.103.0/24 maxlen: 24
185.158.133.0/24 maxlen: 24
185.158.134.0/24 maxlen: 24
191.96.35.0/24 maxlen: 24
191.96.46.0/24 maxlen: 24
191.96.88.0/24 maxlen: 24
191.96.89.0/24 maxlen: 24
191.96.91.0/24 maxlen: 24
191.96.160.0/24 maxlen: 24
191.96.161.0/24 maxlen: 24
191.96.162.0/24 maxlen: 24
191.96.163.0/24 maxlen: 24
191.96.239.0/24 maxlen: 24
191.101.4.0/24 maxlen: 24
191.101.5.0/24 maxlen: 24
191.101.10.0/24 maxlen: 24
191.101.29.0/24 maxlen: 24
191.101.43.0/24 maxlen: 24
191.101.99.0/24 maxlen: 24
191.101.119.0/24 maxlen: 24
191.101.159.0/24 maxlen: 24
191.101.167.0/24 maxlen: 24
191.101.225.0/24 maxlen: 24
191.101.255.0/24 maxlen: 24
213.109.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:2d:cb:e0:f2:a5:3c:a5:b1:14:9c:95:3d:cc:cd:1a:9f:4d:0b:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jul 8 08:13:35 2024 GMT
Not After : Jul 7 08:18:35 2025 GMT
Subject: CN=EC46C90FA1DDCC8B5253974743F1700DCCA1F902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:86:2a:9b:7a:0a:1f:f1:6e:43:40:3a:b5:be:
61:08:fd:11:ff:2b:9b:d4:3a:73:b8:96:85:09:7b:
03:ee:2f:06:0e:91:dd:cb:41:4c:7b:13:cf:d9:f7:
52:bb:73:6b:b0:e1:83:4c:5d:93:f3:02:45:21:fa:
aa:a9:06:ca:ba:aa:52:4a:1f:72:2f:7b:1c:d8:a5:
f3:56:00:e8:72:35:e6:15:f9:70:71:0f:58:5c:29:
a5:e5:e7:62:9d:23:97:cd:58:16:74:08:63:7a:06:
7f:ff:91:dd:1d:16:96:5f:07:be:c8:3c:6f:5c:dd:
f9:3d:58:2b:1a:52:06:a8:d6:56:db:b8:29:ec:ca:
62:aa:49:21:e3:10:49:2b:c5:83:05:50:0c:77:3c:
1b:c6:cc:cd:5b:d4:49:83:0a:bb:f7:07:15:77:e5:
94:34:9e:d8:57:94:3c:f0:e8:35:c4:f6:07:be:dd:
d1:7f:6d:b3:ec:e1:e4:88:eb:cd:87:3a:92:0d:8f:
0f:30:40:d4:72:87:7e:6b:68:53:ea:56:df:7e:c0:
ec:ab:0d:7f:96:da:56:ee:c9:dc:fb:59:10:8f:1f:
b0:bb:9a:af:fa:65:47:fb:fc:eb:9e:27:a7:7a:8e:
1f:38:55:20:41:c9:1a:b5:eb:c7:ef:f4:70:68:71:
c4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:46:C9:0F:A1:DD:CC:8B:52:53:97:47:43:F1:70:0D:CC:A1:F9:02
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.29.0/24
5.181.133.0/24
45.81.2.0/24
45.89.251.0/24
45.137.31.0/24
45.139.181.0/24
92.119.33.0/24
109.106.2.0/23
130.185.125.0/24
179.61.167.0/24
179.61.175.0/24
179.61.178.0/23
179.61.218.0/24
179.61.233.0/24
181.41.204.0/24
181.41.208.0/24
181.214.60.0/23
181.214.64.0-181.214.69.255
181.214.86.0/24
181.214.97.0/24
181.214.100.0/24
181.214.103.0/24
181.214.108.0/22
181.214.113.0-181.214.114.255
181.214.116.0/24
181.214.120.0/24
181.214.124.0-181.214.126.255
181.214.148.0/24
181.214.200.0/22
181.214.225.0/24
181.215.19.0/24
181.215.80.0-181.215.86.255
181.215.96.0/24
181.215.98.0/24
181.215.100.0/24
181.215.103.0/24
181.215.105.0-181.215.106.255
181.215.117.0-181.215.118.255
181.215.126.0/24
181.215.129.0/24
181.215.131.0/24
181.215.150.0/24
181.215.155.0/24
181.215.158.0/24
181.215.217.0/24
181.215.240.0/24
185.34.43.0/24
185.135.159.0/24
185.137.12.0/23
185.142.24.0/24
185.143.229.0/24
185.151.59.0/24
185.158.100.0/22
185.158.133.0-185.158.134.255
191.96.35.0/24
191.96.46.0/24
191.96.88.0/23
191.96.91.0/24
191.96.160.0/22
191.96.239.0/24
191.101.4.0/23
191.101.10.0/24
191.101.29.0/24
191.101.43.0/24
191.101.99.0/24
191.101.119.0/24
191.101.159.0/24
191.101.167.0/24
191.101.225.0/24
191.101.255.0/24
213.109.171.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:89:e8:ed:91:8a:85:21:0a:67:c2:e4:48:77:1d:21:d2:ad:
b8:54:00:50:48:e9:d0:4e:9f:f2:41:df:3c:be:66:1b:a7:1d:
79:97:e6:35:91:33:55:b1:e0:26:2d:d9:66:cd:50:30:87:f7:
48:40:3e:0e:25:c5:26:d6:99:c0:3f:72:97:47:8a:f8:a0:f9:
6a:7f:0e:b6:dd:84:ea:cb:4b:74:e1:a4:e8:f0:3a:a8:64:d6:
fd:49:28:d4:c5:2e:60:83:11:a4:92:60:e3:33:69:82:74:f3:
c6:e6:41:07:5e:90:1b:59:6e:51:2b:e4:3c:bf:c6:a5:a5:f9:
fc:e3:e3:34:f9:3e:3f:55:8d:13:4d:70:b6:7c:b4:fd:3c:30:
df:70:e9:50:bf:00:0a:12:27:ec:d2:85:16:d0:0a:a9:0e:f3:
0a:3c:d5:ba:69:f4:ae:6d:6d:e3:1f:12:80:1d:73:d0:c6:3e:
eb:f8:11:23:ac:5c:e5:a0:40:79:57:11:d4:37:b5:a6:50:dc:
b8:04:fd:9a:cb:00:26:c0:6e:4b:32:2e:ed:18:40:1b:99:32:
18:5c:b7:39:63:a9:35:bf:be:5d:63:aa:1e:cd:ea:37:bf:80:
ff:2c:ca:4a:ef:52:df:92:0a:15:dd:75:53:e3:d3:7c:f7:02:
0d:8b:e1:7f
-----BEGIN CERTIFICATE-----
MIIG5TCCBc2gAwIBAgIUVy3L4PKlPKWxFJyVPczNGp9NC24wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDA3MDgwODEzMzVaFw0yNTA3MDcwODE4MzVaMDMxMTAvBgNV
BAMTKEVDNDZDOTBGQTFERENDOEI1MjUzOTc0NzQzRjE3MDBEQ0NBMUY5MDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUhiqbegof8W5DQDq1vmEI/RH/
K5vUOnO4loUJewPuLwYOkd3LQUx7E8/Z91K7c2uw4YNMXZPzAkUh+qqpBsq6qlJK
H3IvexzYpfNWAOhyNeYV+XBxD1hcKaXl52KdI5fNWBZ0CGN6Bn//kd0dFpZfB77I
PG9c3fk9WCsaUgao1lbbuCnsymKqSSHjEEkrxYMFUAx3PBvGzM1b1EmDCrv3BxV3
5ZQ0nthXlDzw6DXE9ge+3dF/bbPs4eSI682HOpINjw8wQNRyh35raFPqVt9+wOyr
DX+W2lbuydz7WRCPH7C7mq/6ZUf7/OueJ6d6jh84VSBByRq168fv9HBoccR1AgMB
AAGjggPvMIID6zAdBgNVHQ4EFgQU7EbJD6HdzItSU5dHQ/FwDcyh+QIwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTMyMTMucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwggIDBggrBgEFBQcBBwEB/wSCAfIwggHuMIIB6gQCAAEw
ggHiAwQAAjodAwQABbWFAwQALVECAwQALVn7AwQALYkfAwQALYu1AwQAXHchAwQB
bWoCAwQAgrl9AwQAsz2nAwQAsz2vAwQBsz2yAwQAsz3aAwQAsz3pAwQAtSnMAwQA
tSnQAwQBtdY8MAwDBAa11kADBAG11kQDBAC11lYDBAC11mEDBAC11mQDBAC11mcD
BAK11mwwDAMEALXWcQMEALXWcgMEALXWdAMEALXWeDAMAwQCtdZ8AwQAtdZ+AwQA
tdaUAwQCtdbIAwQAtdbhAwQAtdcTMAwDBAS111ADBAC111YDBAC112ADBAC112ID
BAC112QDBAC112cwDAMEALXXaQMEALXXajAMAwQAtdd1AwQAtdd2AwQAtdd+AwQA
tdeBAwQAtdeDAwQAtdeWAwQAtdebAwQAtdeeAwQAtdfZAwQAtdfwAwQAuSIrAwQA
uYefAwQBuYkMAwQAuY4YAwQAuY/lAwQAuZc7AwQCuZ5kMAwDBAC5noUDBAC5noYD
BAC/YCMDBAC/YC4DBAG/YFgDBAC/YFsDBAK/YKADBAC/YO8DBAG/ZQQDBAC/ZQoD
BAC/ZR0DBAC/ZSsDBAC/ZWMDBAC/ZXcDBAC/ZZ8DBAC/ZacDBAC/ZeEDBAC/Zf8D
BADVbaswDQYJKoZIhvcNAQELBQADggEBAKKJ6O2RioUhCmfC5Eh3HSHSrbhUAFBI
6dBOn/JB3zy+ZhunHXmX5jWRM1Wx4CYt2WbNUDCH90hAPg4lxSbWmcA/cpdHivig
+Wp/DrbdhOrLS3ThpOjwOqhk1v1JKNTFLmCDEaSSYOMzaYJ088bmQQdekBtZblEr
5Dy/xqWl+fzj4zT5Pj9VjRNNcLZ8tP08MN9w6VC/AAoSJ+zShRbQCqkO8wo81bpp
9K5tbeMfEoAdc9DGPuv4ESOsXOWgQHlXEdQ3taZQ3LgE/ZrLACbAbksyLu0YQBuZ
MhhctzljqTW/vl1jqh7N6je/gP8sykrvUt+SChXddVPj03z3Ag2L4X8=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:44:43 2024 by rpki-client on console-fra.rpki-client.org