Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14445.roa
File: AS14445.roa (raw, json)
Hash identifier: C56GL8dnpVUUP2Fn27jAxxOe64SmYIPczPzeuyLwcaY=
Subject key identifier: DB:E3:16:E8:EB:24:8F:86:CA:CA:A6:AD:1A:13:99:0B:D7:42:85:DF
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 4C75136D71109910EC970D5298A49EE09F655D50
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14445.roa
Signing time: Sun 01 Sep 2024 00:01:16 +0000
ROA not before: Sat 31 Aug 2024 23:56:16 +0000
ROA not after: Sun 31 Aug 2025 00:01:16 +0000
asID: 14445
IP address blocks: 92.242.184.0/24 maxlen: 24
181.214.14.0/24 maxlen: 24
181.214.101.0/24 maxlen: 24
191.101.239.0/24 maxlen: 24
193.58.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:75:13:6d:71:10:99:10:ec:97:0d:52:98:a4:9e:e0:9f:65:5d:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 31 23:56:16 2024 GMT
Not After : Aug 31 00:01:16 2025 GMT
Subject: CN=DBE316E8EB248F86CACAA6AD1A13990BD74285DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e8:68:02:da:ce:59:f6:da:5a:e5:06:4e:95:
f9:98:19:58:3b:6f:b1:c8:21:dd:38:5b:a2:9b:00:
68:84:a3:a9:1b:84:0d:9b:93:53:48:eb:e8:27:c5:
50:a3:08:8e:74:3f:28:27:b5:17:59:af:54:34:26:
0f:02:ae:fa:17:b6:af:4f:3a:0f:89:fe:15:d7:cf:
c1:20:a5:13:4f:ee:56:45:70:af:fa:3d:f8:84:61:
2a:43:6e:81:4e:be:09:e4:e3:09:4e:84:83:6b:64:
aa:a4:51:b1:bd:9e:63:d7:77:d2:04:e1:7c:26:1b:
49:66:50:c1:dc:54:5d:51:56:d5:3a:3a:9b:f8:b2:
8b:9a:7e:28:53:00:5e:43:cf:1c:31:17:42:65:c5:
ca:fd:2d:ff:c1:83:d2:43:1b:1b:26:03:ab:55:8f:
92:c4:11:c0:73:ff:75:b2:9a:67:ad:90:a2:ca:48:
cd:67:ba:f0:6e:7f:91:05:2c:b2:d8:ca:ff:8b:e4:
a2:d4:1e:5f:d4:c7:e1:6c:01:2b:eb:e6:ed:f7:cc:
85:4d:49:cf:76:fe:f5:56:b6:09:0d:51:6a:e6:04:
45:18:71:02:2c:5d:4d:00:76:9e:3b:7e:26:e0:98:
3d:d6:b8:05:64:2e:34:8f:c9:20:60:f7:ca:78:00:
2d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:E3:16:E8:EB:24:8F:86:CA:CA:A6:AD:1A:13:99:0B:D7:42:85:DF
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14445.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.242.184.0/24
181.214.14.0/24
181.214.101.0/24
191.101.239.0/24
193.58.106.0/24
Signature Algorithm: sha256WithRSAEncryption
56:ed:fa:39:ff:d1:21:75:b4:07:ba:93:e1:72:da:f3:67:8e:
9f:b6:25:bf:21:6f:f3:eb:1d:49:99:ea:20:4d:3e:3c:6c:ef:
9f:af:be:12:7d:e0:f4:a4:d8:86:29:c5:9c:8e:53:c6:83:75:
a7:84:77:55:14:86:01:4d:47:d9:64:00:62:37:f1:9c:36:80:
09:9b:db:28:3c:b6:1c:90:72:af:9c:34:97:16:d1:83:81:73:
17:02:34:40:3a:0b:f7:59:e4:33:b1:1a:9c:f5:be:92:80:d2:
4f:19:50:dd:be:e7:55:5d:eb:4d:c7:28:82:b1:a3:6e:27:78:
46:fd:91:17:c2:be:d4:27:e3:74:1c:05:93:56:b9:61:53:e9:
0f:30:cf:1a:b4:4d:21:5b:d7:67:b1:d7:9b:7a:10:06:86:93:
3c:3a:02:67:57:9f:50:97:33:c7:60:12:48:fc:57:84:4d:81:
1d:7d:fc:c9:03:4c:eb:72:a3:e7:0a:01:bd:f1:fb:e0:70:28:
b1:0b:c4:b6:9d:43:be:e2:dc:ad:25:b9:e4:14:6d:3d:38:72:
75:b6:15:2e:3e:c9:32:1e:6c:a8:81:a0:0f:93:b7:5c:95:49:
97:a8:b5:6a:a6:f8:50:f8:87:56:36:23:cc:0a:0a:5d:d4:13:
db:a2:da:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:16 2024 by rpki-client on console-ams.rpki-client.org