Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13876.roa
File: AS13876.roa (raw, json)
Hash identifier: wc0nvYqqtKUjqRU1z/tgb3cLLgCp48gYIpbosncVNA0=
Subject key identifier: 57:14:A3:0F:49:EC:6A:50:68:36:6D:A5:5B:29:36:4D:5B:D9:CF:F5
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 67912B21299D1504F6D36E5752B72AD1CFE69663
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13876.roa
Signing time: Wed 10 Jan 2024 02:34:10 +0000
ROA not before: Wed 10 Jan 2024 02:29:10 +0000
ROA not after: Wed 08 Jan 2025 02:34:10 +0000
asID: 13876
IP address blocks: 179.61.227.0/24 maxlen: 24
181.214.56.0/24 maxlen: 24
181.214.246.0/24 maxlen: 24
181.215.39.0/24 maxlen: 24
181.215.56.0/24 maxlen: 24
181.215.57.0/24 maxlen: 24
181.215.58.0/24 maxlen: 24
181.215.59.0/24 maxlen: 24
181.215.60.0/24 maxlen: 24
191.96.14.0/24 maxlen: 24
191.96.27.0/24 maxlen: 24
191.96.39.0/24 maxlen: 24
191.96.75.0/24 maxlen: 24
191.96.76.0/24 maxlen: 24
191.96.104.0/24 maxlen: 24
191.96.105.0/24 maxlen: 24
191.96.136.0/24 maxlen: 24
191.96.176.0/24 maxlen: 24
191.96.182.0/24 maxlen: 24
191.96.235.0/24 maxlen: 24
191.96.254.0/24 maxlen: 24
191.101.26.0/24 maxlen: 24
191.101.120.0/24 maxlen: 24
191.101.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:91:2b:21:29:9d:15:04:f6:d3:6e:57:52:b7:2a:d1:cf:e6:96:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 10 02:29:10 2024 GMT
Not After : Jan 8 02:34:10 2025 GMT
Subject: CN=5714A30F49EC6A5068366DA55B29364D5BD9CFF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:39:c3:39:8f:ab:a5:19:5e:76:55:66:68:33:
88:80:24:5e:37:f2:26:67:f4:72:a8:3b:92:8b:c1:
7c:74:b1:2c:17:72:2f:3a:9f:b1:29:fc:d4:bb:5a:
1b:18:d3:fb:b1:6a:4e:07:b1:4f:10:1f:81:c1:59:
f6:72:3b:7f:93:6c:74:0c:f1:b5:70:f0:27:52:df:
1c:94:89:85:3b:1f:e3:c7:e3:25:ee:5d:c1:d3:ad:
87:46:bb:6a:43:d9:2a:89:c8:5d:dc:56:42:a1:4e:
4d:b8:ed:6a:08:9b:69:f9:9f:ba:ea:65:ab:7d:dd:
34:3e:80:f4:10:46:cd:43:f6:a4:ec:2c:54:44:35:
13:d2:0c:03:02:41:5e:41:46:72:d4:c6:6f:b7:3d:
4f:29:d2:95:86:74:b6:b1:b1:36:d1:11:d5:9c:42:
f6:6f:a7:57:b5:c9:b9:47:ee:f4:03:e6:e1:ac:41:
b8:20:8f:2e:89:6e:cf:ef:c2:d6:5d:fb:2e:60:2e:
8a:14:7d:8a:8b:ae:c3:1a:b4:ed:17:3f:dd:db:76:
35:1b:71:42:8d:d8:ab:9c:aa:3b:59:1e:ac:59:6a:
d7:38:de:3c:89:b3:42:0d:e5:86:52:49:42:98:f0:
0f:39:65:39:1b:e5:c8:db:66:62:00:50:ac:6a:46:
57:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:14:A3:0F:49:EC:6A:50:68:36:6D:A5:5B:29:36:4D:5B:D9:CF:F5
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13876.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.227.0/24
181.214.56.0/24
181.214.246.0/24
181.215.39.0/24
181.215.56.0-181.215.60.255
191.96.14.0/24
191.96.27.0/24
191.96.39.0/24
191.96.75.0-191.96.76.255
191.96.104.0/23
191.96.136.0/24
191.96.176.0/24
191.96.182.0/24
191.96.235.0/24
191.96.254.0/24
191.101.26.0/24
191.101.120.0/24
191.101.253.0/24
Signature Algorithm: sha256WithRSAEncryption
07:cf:8d:0f:ff:bc:bd:e4:2d:ea:be:85:bf:e7:2b:59:5b:e3:
f3:68:c0:a9:40:7e:32:40:2c:82:1f:96:0d:f2:84:5c:de:74:
8c:d8:92:c2:47:a5:25:c9:23:e4:34:0a:4e:3c:63:dd:96:60:
26:a1:9f:09:a5:38:6c:ac:a2:28:72:0d:f7:cc:bd:93:90:fc:
67:62:27:46:b3:d6:29:e2:ff:52:1f:79:6c:1f:d0:9b:08:fe:
42:90:bb:25:e5:2f:74:fe:39:c1:93:ac:c0:2e:b5:6d:99:7c:
0b:62:49:ba:fb:ab:de:98:dd:32:6b:e0:3e:ef:bf:fc:39:fc:
02:a0:99:61:1d:09:00:14:be:15:eb:8f:40:c1:b7:24:62:de:
6c:fe:23:af:7a:91:2d:f5:fd:f2:ef:ea:62:fa:3c:0c:b7:4f:
82:c9:f2:41:f4:d3:84:de:be:15:08:f1:db:88:88:b9:6b:de:
05:b6:d7:f9:5d:e4:99:43:d2:c0:7d:fa:40:c9:24:7e:52:89:
3d:19:a0:ed:93:5a:e6:18:c8:92:7b:3c:8d:93:0a:78:81:5d:
4b:72:3a:96:5a:6f:15:8d:a6:8e:3f:88:c2:26:68:88:a7:c9:
ec:26:a2:28:81:48:e9:b8:b2:21:a2:b3:24:a8:df:b4:81:f4:
50:2e:0d:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 02:42:18 2024 by rpki-client on console-fra.rpki-client.org