Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206446.roa
File: AS206446.roa (raw, json)
Hash identifier: yiH2zuBa9mQh/xlmzieD8+2PuVa0kCIoSYZhjgfnUjU=
Subject key identifier: A6:2C:1A:8E:2D:A3:39:88:FE:33:DA:E9:93:D9:14:AD:9D:40:60:8D
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 3BFDEFA9202DE4AEC056E13C4219CD316F01D3E3
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206446.roa
Signing time: Sun 05 May 2024 08:03:52 +0000
ROA not before: Sun 05 May 2024 07:58:52 +0000
ROA not after: Sun 04 May 2025 08:03:52 +0000
asID: 206446
IP address blocks: 45.93.46.0/24 maxlen: 24
181.214.135.0/24 maxlen: 24
181.214.197.0/24 maxlen: 24
181.215.141.0/24 maxlen: 24
181.215.204.0/24 maxlen: 24
191.96.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:fd:ef:a9:20:2d:e4:ae:c0:56:e1:3c:42:19:cd:31:6f:01:d3:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 5 07:58:52 2024 GMT
Not After : May 4 08:03:52 2025 GMT
Subject: CN=A62C1A8E2DA33988FE33DAE993D914AD9D40608D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2c:86:15:e9:1f:69:d9:8a:37:9b:a8:a8:f8:
ac:8e:6c:ff:85:72:f7:aa:2f:cf:78:8c:0a:75:a1:
32:85:a2:77:a6:3f:9b:4a:35:4a:73:ae:77:d2:8b:
a0:67:57:c0:ba:1c:5e:3d:6a:49:b9:4c:34:4f:fb:
8d:f2:cc:f1:77:8c:f2:37:f3:1d:31:b2:5b:0f:56:
84:57:9e:b6:12:1e:ac:26:8a:06:e8:46:c4:3b:89:
93:d9:e5:79:1b:43:97:e6:a5:30:1e:1c:64:18:95:
81:29:f1:b1:e8:8b:c1:58:7f:3a:1c:43:bc:f0:ef:
95:63:70:ec:92:68:58:07:bb:f4:05:74:5e:17:d0:
e3:ee:a9:fe:91:6f:37:3e:63:b3:78:af:f6:8f:dc:
db:42:7b:b4:aa:97:6d:7a:6d:e7:44:db:34:cd:93:
7b:82:78:55:39:b9:a5:c3:8f:76:8d:b4:af:24:a7:
b9:17:26:60:1f:b5:25:e5:ca:91:fe:48:4c:12:e6:
31:f9:ef:7c:fa:76:ce:2b:b0:f9:6f:33:b1:fb:2b:
5e:45:de:62:6f:b7:77:f7:a5:c4:24:f4:e5:ec:4e:
e3:d8:43:86:12:3d:81:5f:5f:70:e7:83:91:15:d1:
ae:2d:d9:b8:a5:76:90:59:52:7a:3f:c3:d8:1b:39:
f7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:2C:1A:8E:2D:A3:39:88:FE:33:DA:E9:93:D9:14:AD:9D:40:60:8D
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206446.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.46.0/24
181.214.135.0/24
181.214.197.0/24
181.215.141.0/24
181.215.204.0/24
191.96.229.0/24
Signature Algorithm: sha256WithRSAEncryption
24:e2:6e:ef:15:41:f9:7f:cf:7e:fe:40:a4:18:d4:df:39:67:
2b:32:a6:3f:f0:51:eb:84:5d:2f:5a:4e:6a:62:48:89:41:35:
a9:0e:6a:55:ba:a8:2f:26:31:3a:56:fb:2e:2d:00:05:d9:12:
1d:92:2a:eb:8c:a0:ef:73:2f:86:27:fe:a8:af:de:08:5c:0c:
29:c6:ce:f7:23:15:d6:26:ad:71:07:c7:47:d4:ce:76:ad:6c:
cb:08:8e:d6:e9:4f:52:5b:be:ce:fb:f8:06:a1:46:0e:fc:3f:
c2:c4:71:c4:6e:c4:f6:98:13:38:ae:46:e0:6a:2d:41:c4:c4:
79:2c:87:35:03:06:3f:fc:93:32:6b:d1:42:e3:0e:5c:02:1b:
fe:0a:d0:c1:2a:9c:7c:ee:16:24:51:a8:a8:5d:58:1c:36:3b:
c5:50:f1:43:1c:9f:d1:f9:f4:d2:dd:a2:ef:2a:7b:c4:90:bd:
6a:5e:5b:20:82:d9:48:c0:9e:e9:2a:35:e4:b1:45:2e:23:4b:
c2:18:8d:f7:0e:d6:17:c5:04:dd:ed:ba:58:77:c4:1f:4d:c7:
22:c8:09:a0:c4:11:6f:13:52:4b:a4:c0:19:5c:b1:b1:23:b7:
d8:5b:48:12:47:88:dc:1b:d9:77:53:f3:a1:53:dd:ea:08:42:
18:5d:c7:af
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgIUO/3vqSAt5K7AVuE8QhnNMW8B0+MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDA1MDUwNzU4NTJaFw0yNTA1MDQwODAzNTJaMDMxMTAvBgNV
BAMTKEE2MkMxQThFMkRBMzM5ODhGRTMzREFFOTkzRDkxNEFEOUQ0MDYwOEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiLIYV6R9p2Yo3m6io+KyObP+F
cveqL894jAp1oTKFonemP5tKNUpzrnfSi6BnV8C6HF49akm5TDRP+43yzPF3jPI3
8x0xslsPVoRXnrYSHqwmigboRsQ7iZPZ5XkbQ5fmpTAeHGQYlYEp8bHoi8FYfzoc
Q7zw75VjcOySaFgHu/QFdF4X0OPuqf6Rbzc+Y7N4r/aP3NtCe7Sql216bedE2zTN
k3uCeFU5uaXDj3aNtK8kp7kXJmAftSXlypH+SEwS5jH573z6ds4rsPlvM7H7K15F
3mJvt3f3pcQk9OXsTuPYQ4YSPYFfX3Dng5EV0a4t2bildpBZUno/w9gbOfc3AgMB
AAGjggIoMIICJDAdBgNVHQ4EFgQUpiwaji2jOYj+M9rpk9kUrZ1AYI0wHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjA2NDQ2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQALV0u
AwQAtdaHAwQAtdbFAwQAtdeNAwQAtdfMAwQAv2DlMA0GCSqGSIb3DQEBCwUAA4IB
AQAk4m7vFUH5f89+/kCkGNTfOWcrMqY/8FHrhF0vWk5qYkiJQTWpDmpVuqgvJjE6
VvsuLQAF2RIdkirrjKDvcy+GJ/6or94IXAwpxs73IxXWJq1xB8dH1M52rWzLCI7W
6U9SW77O+/gGoUYO/D/CxHHEbsT2mBM4rkbgai1BxMR5LIc1AwY//JMya9FC4w5c
Ahv+CtDBKpx87hYkUaioXVgcNjvFUPFDHJ/R+fTS3aLvKnvEkL1qXlsggtlIwJ7p
KjXksUUuI0vCGI33DtYXxQTd7bpYd8QfTcciyAmgxBFvE1JLpMAZXLGxI7fYW0gS
R4jcG9l3U/OhU93qCEIYXcev
-----END CERTIFICATE-----
Generated at Fri May 10 02:42:19 2024 by rpki-client on console-fra.rpki-client.org