Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: UgrOOdg+8jLgOUKGwWALE/QaXDT8mUeKMfcuIee+lXs=
Subject key identifier: DC:0A:59:90:E0:48:87:44:C3:5E:17:37:08:14:83:E5:30:DB:82:AD
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 52FCFA4C23D52DF4389E4350DC9CB0B84D950894
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS16276.roa
Signing time: Mon 18 Nov 2024 09:29:34 +0000
ROA not before: Mon 18 Nov 2024 09:24:34 +0000
ROA not after: Mon 17 Nov 2025 09:29:34 +0000
asID: 16276
IP address blocks: 2.57.18.0/24 maxlen: 24
89.19.44.0/24 maxlen: 24
92.118.162.0/24 maxlen: 24
92.242.186.0/24 maxlen: 24
103.141.69.0/24 maxlen: 24
191.96.153.0/24 maxlen: 24
191.101.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:fc:fa:4c:23:d5:2d:f4:38:9e:43:50:dc:9c:b0:b8:4d:95:08:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Nov 18 09:24:34 2024 GMT
Not After : Nov 17 09:29:34 2025 GMT
Subject: CN=DC0A5990E0488744C35E1737081483E530DB82AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ea:41:8a:3d:84:0b:a8:79:1c:fc:1f:63:38:
bc:4a:74:fa:d0:12:2f:69:19:53:c2:d8:54:9c:64:
1c:4d:5d:91:b8:92:b8:ab:04:e3:bb:bf:6b:0c:6b:
a1:0b:40:54:b0:d2:22:2c:6e:8b:1b:3a:bb:9a:89:
b8:5e:68:3b:03:02:5e:22:f3:ff:df:34:cd:da:28:
9c:19:30:85:ae:bc:a4:71:52:c0:f8:62:65:7b:78:
d4:2b:a5:82:ec:8c:fd:26:17:55:53:7d:a9:44:28:
3f:a2:dc:0a:2a:6d:25:c0:b5:36:cb:72:be:04:87:
93:60:85:21:32:c9:90:54:4a:bb:c4:78:26:e2:e8:
99:a1:21:2b:82:68:36:44:96:65:72:3e:82:a2:dc:
4f:d7:42:d8:bc:57:d1:0e:e4:82:de:94:d2:81:40:
0d:a4:f9:67:95:ee:39:64:fd:79:9b:50:2e:63:5b:
7f:40:ee:00:76:b8:76:6c:9e:dc:6f:08:b1:55:8c:
63:8b:ad:ce:22:13:db:77:51:e4:f1:34:e9:14:e1:
9c:cf:98:79:28:dc:f1:7a:87:3a:c2:a1:45:bd:9e:
83:06:6c:ed:7d:70:56:04:28:94:ad:a9:ad:40:b8:
58:12:cb:27:6d:da:f5:b5:88:a0:5a:98:97:a4:af:
fe:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:0A:59:90:E0:48:87:44:C3:5E:17:37:08:14:83:E5:30:DB:82:AD
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.18.0/24
89.19.44.0/24
92.118.162.0/24
92.242.186.0/24
103.141.69.0/24
191.96.153.0/24
191.101.177.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:ad:19:1f:1e:30:ed:a1:20:5a:d1:96:ee:39:36:ce:a7:33:
9e:d4:55:4a:d0:3c:3d:b8:31:2f:23:16:76:6b:a2:29:d1:46:
27:4b:fd:c5:d3:2f:c6:39:49:78:77:e5:bf:99:55:1a:0c:55:
9e:30:3e:c5:25:fc:bf:22:c5:35:2b:ea:1e:6b:f6:7d:02:aa:
bf:0b:22:a0:a7:17:17:e0:80:91:b8:df:ae:35:41:ea:23:4d:
6a:9f:af:d9:52:3b:c3:df:ad:44:a1:e5:8e:30:40:49:11:07:
a4:b2:17:7b:0f:8b:b7:96:ab:ef:a9:64:9d:56:72:2e:7b:4e:
b5:fd:66:ea:b0:db:f9:35:20:bf:7c:31:e7:cc:b2:10:91:98:
86:6e:29:44:b7:8c:a7:8f:40:cb:84:54:24:e8:63:cf:1b:72:
4f:a3:79:c8:71:b0:ac:6a:2b:34:f6:e6:65:55:a3:8b:9a:e8:
bb:bf:a1:84:fa:c0:10:01:c3:8b:09:f5:f6:44:08:1f:03:0f:
01:4c:b3:bd:78:91:67:00:d4:ea:b3:ac:3e:0d:24:1a:4a:a1:
fa:4b:26:9f:25:5f:2f:27:60:4c:a1:fb:31:d5:5b:0a:7b:e4:
d9:c1:de:3d:c3:95:4c:49:9d:12:e4:c9:43:84:72:55:a1:dc:
ec:de:da:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:39:57 2024 by rpki-client on console-ams.rpki-client.org