Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206446.roa
File: AS206446.roa (raw, json)
Hash identifier: b4SLzFKZrQNMxAfNFGH7PdCaVNQO/H2Tk0UYVq5MUHM=
Subject key identifier: DE:01:27:6A:F4:AC:B3:20:60:2A:0B:61:70:76:08:13:76:C7:F6:2D
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 47734C6CEDCF4B1C4D27C10EFBCE2F71307B4EE8
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206446.roa
Signing time: Tue 05 Nov 2024 10:52:33 +0000
ROA not before: Tue 05 Nov 2024 10:47:33 +0000
ROA not after: Tue 04 Nov 2025 10:52:33 +0000
asID: 206446
IP address blocks: 45.93.46.0/24 maxlen: 24
181.214.135.0/24 maxlen: 24
181.214.197.0/24 maxlen: 24
181.215.141.0/24 maxlen: 24
191.96.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:73:4c:6c:ed:cf:4b:1c:4d:27:c1:0e:fb:ce:2f:71:30:7b:4e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Nov 5 10:47:33 2024 GMT
Not After : Nov 4 10:52:33 2025 GMT
Subject: CN=DE01276AF4ACB320602A0B617076081376C7F62D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:85:f8:d6:75:53:3a:8f:50:84:5d:21:46:9e:
41:07:56:14:8d:56:5b:67:96:bd:e3:36:08:f8:8d:
c6:b2:a1:f0:fd:d3:0d:9d:48:75:bb:55:4a:d2:54:
17:e5:6c:9b:5b:4c:c3:d3:5d:6b:84:ba:24:2c:c5:
99:7d:56:a4:be:ef:69:dc:23:3e:d4:5b:6b:77:4d:
69:ce:07:3d:a7:f6:fa:ec:88:11:04:25:84:06:b9:
ec:75:47:83:8d:85:02:52:4b:3e:eb:b1:5b:54:03:
82:8c:05:b7:c3:ce:8d:ba:be:77:9b:2e:68:f2:8a:
8b:4a:aa:cd:0c:ed:26:34:b1:7a:a0:6a:6d:49:05:
e4:d3:d0:35:6b:63:75:86:3d:45:df:dc:c1:fd:d1:
22:61:89:83:f8:86:93:c2:26:c5:c9:d8:9a:64:44:
54:77:38:6e:d6:81:bf:59:f5:7e:6c:59:56:ee:11:
14:46:4a:7d:62:d4:77:2a:58:5e:d7:a5:e7:7a:c2:
c1:92:fc:60:95:f8:2d:d8:13:89:8b:c9:6f:ea:83:
88:e2:6b:e2:83:f0:ea:9b:b4:88:8e:6b:5b:38:de:
f0:08:28:0e:fa:6d:1d:e2:01:4f:15:2d:5a:85:7f:
74:85:2b:15:63:a9:84:8c:01:5e:a9:90:06:9d:62:
c9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:01:27:6A:F4:AC:B3:20:60:2A:0B:61:70:76:08:13:76:C7:F6:2D
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206446.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.46.0/24
181.214.135.0/24
181.214.197.0/24
181.215.141.0/24
191.96.229.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:9d:40:54:96:15:b4:0d:ec:76:58:3c:44:e8:8a:78:12:c5:
a1:b4:60:76:a7:c4:23:9a:77:47:c6:a1:df:82:df:62:9e:9d:
ea:df:83:73:82:9f:40:eb:d0:13:69:f8:4d:a7:bb:d1:26:9d:
2b:7b:3f:03:d8:a8:c7:98:58:11:3c:36:f6:71:83:96:0d:66:
6d:b0:48:41:80:99:e0:ec:a7:84:5d:42:46:3c:b5:a4:c1:10:
3d:de:c5:a2:fd:71:5c:29:f4:15:1c:12:38:8b:e1:cb:bb:50:
ee:e0:5e:6c:42:06:8d:a9:cd:a0:c7:4e:64:8a:ec:50:b4:84:
94:3c:46:22:2c:b5:73:62:7f:16:b6:d0:75:99:a1:3e:a3:e4:
f0:27:27:06:ed:28:57:f6:9c:06:76:a9:e5:22:d1:a2:01:4d:
46:cc:e6:d5:ef:dc:40:9d:8a:54:ee:2f:7c:5d:39:24:41:32:
67:15:5c:4a:12:7f:9f:df:d9:64:eb:2d:00:cc:dd:a5:05:6b:
5a:b4:69:5f:74:4a:76:72:72:47:4c:0d:5a:44:a0:2a:72:01:
ec:e9:ac:42:b6:fe:59:da:6c:6b:79:ff:7d:7c:e8:46:51:e3:
e0:14:dd:16:94:73:bc:12:fc:b4:1f:c8:e3:56:0e:ce:c0:65:
05:d8:51:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:39:57 2024 by rpki-client on console-ams.rpki-client.org