Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206092.roa
File: AS206092.roa (raw, json)
Hash identifier: 0UmDxGKPp61RjirlCazuEPgKOA3BKrSUzpQc2GbBJ3s=
Subject key identifier: 78:78:18:34:C7:E5:A2:7A:90:59:0A:5B:D3:96:1C:C6:0F:3C:21:B7
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 3323D7AF098B000D8E73B35157D27B1111530AD3
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206092.roa
Signing time: Mon 01 Apr 2024 00:00:36 +0000
ROA not before: Sun 31 Mar 2024 23:55:36 +0000
ROA not after: Mon 31 Mar 2025 00:00:36 +0000
asID: 206092
IP address blocks: 45.133.176.0/24 maxlen: 24
45.137.124.0/24 maxlen: 24
181.214.175.0/24 maxlen: 24
181.215.67.0/24 maxlen: 24
191.101.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:23:d7:af:09:8b:00:0d:8e:73:b3:51:57:d2:7b:11:11:53:0a:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 31 23:55:36 2024 GMT
Not After : Mar 31 00:00:36 2025 GMT
Subject: CN=78781834C7E5A27A90590A5BD3961CC60F3C21B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f3:f1:dd:87:2b:0b:bf:59:ec:72:c0:84:87:
a2:78:27:0d:9a:3e:a1:2b:96:6b:6f:a9:f9:ee:b5:
f9:fc:e6:26:a6:40:06:2d:64:cd:dc:82:7b:e5:d4:
62:b0:4b:e4:d2:a3:da:c0:2c:9d:77:0e:c1:54:82:
f0:72:99:85:ab:e4:95:76:eb:0a:75:fe:48:07:44:
52:94:fd:91:24:0f:e6:99:96:c5:d0:d3:19:cd:99:
4c:8c:c5:91:9d:dd:10:8e:35:39:16:b1:24:8b:5c:
ca:55:88:5d:a7:53:3f:a6:ee:c7:e9:ee:d7:df:73:
34:89:47:71:23:d8:8c:e6:87:cb:13:21:f6:20:ea:
77:78:59:8d:3f:13:36:88:6a:9a:3b:0f:ad:a7:3d:
2f:75:da:83:04:6a:a2:07:b2:0e:79:5e:8a:e9:9b:
75:59:b3:29:e9:a2:10:23:0e:4b:e9:fa:1e:b6:13:
04:50:3e:2e:b5:29:a9:5d:7f:b9:89:16:02:0e:0e:
51:e2:e4:70:1d:5f:27:3e:39:9d:0c:2d:26:67:85:
1d:44:1a:dc:76:6c:4d:d5:d9:08:d2:51:85:e6:f7:
92:27:b3:21:7a:e0:ab:9d:ee:ad:da:5f:68:76:01:
76:5e:ad:3b:4e:23:ea:5d:76:86:09:45:c9:0e:6e:
51:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:78:18:34:C7:E5:A2:7A:90:59:0A:5B:D3:96:1C:C6:0F:3C:21:B7
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206092.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.176.0/24
45.137.124.0/24
181.214.175.0/24
181.215.67.0/24
191.101.177.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:08:d4:04:ea:7e:ef:83:b8:03:35:12:a3:5b:b0:24:9c:cf:
c4:51:b9:53:00:28:db:1a:c8:f1:09:02:97:f1:43:36:3a:47:
97:65:bf:23:f3:71:26:c1:8d:87:3a:0f:02:39:b0:37:ee:4b:
cc:15:38:9f:ce:5d:02:86:c5:79:e0:11:80:be:44:e1:d7:99:
6f:da:fe:58:e0:38:61:20:ad:f7:ce:40:28:8f:39:68:fd:6c:
b5:b9:b1:0c:b2:2c:bf:aa:d9:41:95:8b:5b:ac:d6:77:ad:f2:
96:db:3d:b9:b3:2f:27:8a:65:15:88:70:de:88:64:e8:34:88:
33:f6:5f:86:d6:36:5a:bb:37:42:5c:a0:87:df:22:63:39:89:
22:96:22:68:25:53:16:cb:30:85:03:15:71:9a:32:7f:de:f8:
3c:93:64:17:69:f0:40:de:aa:14:3f:80:bd:ad:53:04:1e:e9:
44:07:ae:cd:ae:ef:eb:d6:6c:af:9d:8e:dd:93:58:25:61:1e:
d6:52:bd:5a:5e:29:0d:64:22:85:51:45:46:c5:f2:a6:bd:94:
14:f5:b3:6f:d6:60:fc:bc:ee:34:56:b0:ab:5b:44:c4:2f:fd:
92:09:b2:b4:09:ef:66:81:20:88:d9:ba:d8:fb:90:75:86:3a:
88:27:24:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 17:32:35 2024 by rpki-client on console-fra.rpki-client.org