Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14445.roa
File: AS14445.roa (raw, json)
Hash identifier: nLeT9/+iwUCKOLMlr5LlMP9Q3Ku+LH8Ux3FKlknZjEs=
Subject key identifier: 12:49:9C:FD:13:71:76:08:E2:91:B8:25:E2:92:D8:CD:99:14:76:96
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 455A9F9420360413A48578A9975648EF0C3F5575
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14445.roa
Signing time: Thu 13 Jun 2024 00:00:10 +0000
ROA not before: Wed 12 Jun 2024 23:55:10 +0000
ROA not after: Thu 12 Jun 2025 00:00:10 +0000
asID: 14445
IP address blocks: 92.242.184.0/24 maxlen: 24
179.61.129.0/24 maxlen: 24
179.61.170.0/24 maxlen: 24
179.61.212.0/24 maxlen: 24
181.214.0.0/24 maxlen: 24
181.214.14.0/24 maxlen: 24
181.214.101.0/24 maxlen: 24
181.214.177.0/24 maxlen: 24
181.215.3.0/24 maxlen: 24
181.215.29.0/24 maxlen: 24
181.215.41.0/24 maxlen: 24
181.215.65.0/24 maxlen: 24
181.215.255.0/24 maxlen: 24
191.96.12.0/24 maxlen: 24
191.96.117.0/24 maxlen: 24
191.96.157.0/24 maxlen: 24
191.96.174.0/24 maxlen: 24
191.96.245.0/24 maxlen: 24
191.101.56.0/24 maxlen: 24
191.101.176.0/24 maxlen: 24
191.101.188.0/24 maxlen: 24
191.101.239.0/24 maxlen: 24
193.58.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jul 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:5a:9f:94:20:36:04:13:a4:85:78:a9:97:56:48:ef:0c:3f:55:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 12 23:55:10 2024 GMT
Not After : Jun 12 00:00:10 2025 GMT
Subject: CN=12499CFD13717608E291B825E292D8CD99147696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:96:55:40:ab:3a:9f:df:8f:20:b3:19:92:86:
40:f5:79:53:b0:9c:e1:00:93:c0:0b:bf:cf:2a:36:
e8:9f:92:89:23:64:8b:ba:13:0e:92:9f:47:e8:bf:
c3:91:a8:19:c8:c5:ed:a9:3d:4d:86:56:aa:55:86:
c1:9f:e7:97:d5:11:7d:3e:87:4f:72:cc:17:4e:72:
bf:f5:b9:03:d9:48:36:2e:18:6a:9e:91:83:c1:22:
71:0c:58:df:05:15:d2:5d:ac:5d:70:cd:ee:5e:37:
72:96:0b:8f:0b:dc:a9:4e:a6:14:2b:15:7a:0c:a6:
88:56:0f:8b:21:82:b0:de:fd:1a:4a:08:a3:84:da:
bb:29:54:9a:dc:2f:28:70:42:2b:fb:5d:7d:6f:79:
f9:07:bf:f8:1b:f6:61:47:3b:24:70:38:b2:b8:5f:
2b:2e:80:91:b3:02:b7:3e:5e:0a:20:fd:a3:21:39:
1d:f7:68:08:14:bf:c8:68:c9:a1:93:6f:65:dd:c9:
24:43:2b:05:cc:a9:f9:35:a2:03:ad:64:89:e7:5b:
7c:15:9d:b9:28:a8:9b:cd:d4:b5:4f:e2:27:c0:52:
d2:17:05:d9:ce:ce:a1:44:a8:6b:7a:b3:ff:16:19:
09:d0:70:6e:09:94:b4:8e:d6:06:83:17:2f:21:f2:
88:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:49:9C:FD:13:71:76:08:E2:91:B8:25:E2:92:D8:CD:99:14:76:96
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14445.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.242.184.0/24
179.61.129.0/24
179.61.170.0/24
179.61.212.0/24
181.214.0.0/24
181.214.14.0/24
181.214.101.0/24
181.214.177.0/24
181.215.3.0/24
181.215.29.0/24
181.215.41.0/24
181.215.65.0/24
181.215.255.0/24
191.96.12.0/24
191.96.117.0/24
191.96.157.0/24
191.96.174.0/24
191.96.245.0/24
191.101.56.0/24
191.101.176.0/24
191.101.188.0/24
191.101.239.0/24
193.58.106.0/24
Signature Algorithm: sha256WithRSAEncryption
10:25:24:d5:72:de:90:30:02:0a:4b:e7:6b:e4:b9:85:92:21:
e7:a8:dc:66:30:43:aa:b5:db:98:2e:24:a0:a1:e5:30:0d:a8:
22:43:1a:43:4d:e3:cb:ba:1d:32:32:b1:21:d7:80:19:51:a9:
79:ea:11:70:cd:af:c7:5d:83:74:ea:2f:81:2a:2b:45:a0:02:
bc:42:9b:c8:90:d5:9a:44:a6:fd:66:95:77:e3:bc:ef:3a:a1:
3b:f7:a1:06:6b:d7:47:7a:b1:e7:08:d7:b7:d8:6e:69:4e:2a:
b2:74:5c:11:b7:73:9f:7d:db:7d:bf:2a:ad:0a:ce:58:10:3a:
7e:37:d9:c0:41:ea:59:a2:ce:9d:9c:c4:75:e9:4e:a0:cc:38:
99:e6:41:0f:20:37:46:61:c5:9b:c6:fe:6a:e7:3b:76:e4:a4:
02:c7:2f:55:bb:c2:80:9c:c8:36:86:38:e8:32:12:36:6c:05:
8a:f9:0e:6f:34:e2:61:a6:68:c7:3b:46:6a:f7:4e:1b:a9:92:
46:a5:bd:79:8f:31:1e:15:4e:49:f5:c0:9f:da:61:bc:72:a0:
5b:6f:9c:28:24:9e:a3:a0:ea:5a:87:d4:57:b7:e9:8b:1d:fb:
11:db:00:1c:34:59:31:af:c5:06:bc:7c:f0:cd:20:0c:83:91:
da:3b:62:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 12:45:32 2024 by rpki-client on console-ams.rpki-client.org