Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS209181.roa
File: AS209181.roa (raw, json)
Hash identifier: 7T4RB1qx8u4E6YZOeI34iQ1n/Ivkh3c0MYdzgqzsnCo=
Subject key identifier: 6B:82:18:AE:1D:D7:10:34:00:B1:6F:FC:A8:EC:6B:EA:65:6A:CF:19
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 027305E5C4D4ADDDBECAFC2E55E76B25FAACAEBC
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS209181.roa
Signing time: Tue 20 Jun 2023 00:00:22 +0000
ROA not before: Mon 19 Jun 2023 23:55:22 +0000
ROA not after: Tue 18 Jun 2024 00:00:22 +0000
asID: 209181
IP address blocks: 5.252.160.0/24 maxlen: 24
85.208.73.0/24 maxlen: 24
181.214.53.0/24 maxlen: 24
191.96.72.0/24 maxlen: 24
191.96.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:73:05:e5:c4:d4:ad:dd:be:ca:fc:2e:55:e7:6b:25:fa:ac:ae:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 19 23:55:22 2023 GMT
Not After : Jun 18 00:00:22 2024 GMT
Subject: CN=6B8218AE1DD7103400B16FFCA8EC6BEA656ACF19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d8:f0:52:d5:3f:7e:ab:06:2f:77:f7:a6:2e:
48:4c:94:8d:76:2d:44:4b:f4:5a:f5:b6:96:a5:55:
2a:db:5f:61:95:52:3b:6a:91:0b:d3:e6:48:df:12:
28:ab:ff:89:99:e6:b6:32:61:31:7b:63:4c:14:75:
b7:c7:9d:67:d9:ec:30:b9:68:6e:22:d3:a6:51:28:
dc:c1:a4:6d:da:65:35:7b:f4:a4:d5:db:2a:08:dd:
cf:02:8f:44:25:f3:d3:96:c1:d6:20:3b:95:a6:d1:
45:c6:3a:1b:ae:9a:92:13:81:26:50:7b:01:ed:58:
56:2c:05:4f:51:c1:b8:3f:47:cc:e2:da:a3:75:04:
a5:b6:7a:ed:3a:e4:ea:95:3d:9c:c8:b3:4b:a0:69:
50:2a:75:1f:72:e5:73:47:f9:90:03:a6:47:37:ee:
44:cc:92:65:07:75:07:ce:0a:dc:94:00:0e:13:74:
c1:ce:a1:c5:6e:9e:28:c7:6f:5a:8f:43:1a:29:3d:
97:78:99:29:78:85:11:24:3a:9a:f0:b4:db:96:9c:
e4:cd:b6:7d:76:30:5d:14:04:df:f9:10:34:d2:6e:
f9:32:c7:1f:97:ec:e5:4d:79:13:47:25:91:a1:fd:
1e:66:f0:42:b7:ca:08:35:24:05:a1:6c:da:7a:43:
34:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:82:18:AE:1D:D7:10:34:00:B1:6F:FC:A8:EC:6B:EA:65:6A:CF:19
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS209181.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.160.0/24
85.208.73.0/24
181.214.53.0/24
191.96.72.0/24
191.96.158.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:43:44:5c:2e:6a:bc:35:1e:2a:4f:5b:95:38:92:72:b0:ce:
ec:61:4f:ad:8b:36:fa:66:0d:07:db:41:3c:d2:1e:4a:83:7e:
e7:b8:67:32:48:a3:1a:47:f0:54:f2:c4:1c:a2:9e:59:09:bc:
6e:5e:b6:12:fe:2b:e8:a7:56:47:2d:a0:72:ab:03:9a:ee:b1:
16:30:44:cf:50:60:44:dd:8d:bd:bb:c3:80:0e:e1:ad:b1:d2:
6a:4e:c2:93:f4:80:af:d2:a4:3a:0a:66:79:a2:c1:14:eb:1a:
94:d0:df:21:58:a8:b1:3e:56:ca:4d:f5:b1:15:84:19:d5:07:
6d:3f:b4:41:78:04:35:94:42:3f:c0:81:f5:c3:8a:42:61:77:
4d:5c:dd:22:2f:b0:8d:1b:a0:02:18:76:c4:78:06:af:44:a1:
a5:42:c9:86:2b:70:89:96:8e:2d:aa:80:92:29:ff:80:44:83:
3c:08:61:58:9c:00:21:12:50:37:cb:e7:b6:70:c6:c0:e8:47:
9f:61:e0:15:2d:71:2b:82:22:8c:0c:2f:c1:f1:fb:1a:01:91:
7c:a1:8a:e4:f0:ce:b6:6c:b0:b2:fd:cc:53:be:e8:b3:ec:5a:
79:1a:f9:7f:6d:a0:a4:65:54:c8:f1:c4:db:22:c1:60:df:6e:
1c:0f:03:67
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgIUAnMF5cTUrd2+yvwuVedrJfqsrrwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yMzA2MTkyMzU1MjJaFw0yNDA2MTgwMDAwMjJaMDMxMTAvBgNV
BAMTKDZCODIxOEFFMURENzEwMzQwMEIxNkZGQ0E4RUM2QkVBNjU2QUNGMTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA2PBS1T9+qwYvd/emLkhMlI12
LURL9Fr1tpalVSrbX2GVUjtqkQvT5kjfEiir/4mZ5rYyYTF7Y0wUdbfHnWfZ7DC5
aG4i06ZRKNzBpG3aZTV79KTV2yoI3c8Cj0Ql89OWwdYgO5Wm0UXGOhuumpITgSZQ
ewHtWFYsBU9Rwbg/R8zi2qN1BKW2eu065OqVPZzIs0ugaVAqdR9y5XNH+ZADpkc3
7kTMkmUHdQfOCtyUAA4TdMHOocVunijHb1qPQxopPZd4mSl4hREkOprwtNuWnOTN
tn12MF0UBN/5EDTSbvkyxx+X7OVNeRNHJZGh/R5m8EK3ygg1JAWhbNp6QzRfAgMB
AAGjggIiMIICHjAdBgNVHQ4EFgQUa4IYrh3XEDQAsW/8qOxr6mVqzxkwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjA5MTgxLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQABfyg
AwQAVdBJAwQAtdY1AwQAv2BIAwQAv2CeMA0GCSqGSIb3DQEBCwUAA4IBAQAuQ0Rc
Lmq8NR4qT1uVOJJysM7sYU+tizb6Zg0H20E80h5Kg37nuGcySKMaR/BU8sQcop5Z
CbxuXrYS/ivop1ZHLaByqwOa7rEWMETPUGBE3Y29u8OADuGtsdJqTsKT9ICv0qQ6
CmZ5osEU6xqU0N8hWKixPlbKTfWxFYQZ1QdtP7RBeAQ1lEI/wIH1w4pCYXdNXN0i
L7CNG6ACGHbEeAavRKGlQsmGK3CJlo4tqoCSKf+ARIM8CGFYnAAhElA3y+e2cMbA
6EefYeAVLXErgiKMDC/B8fsaAZF8oYrk8M62bLCy/cxTvuiz7Fp5Gvl/baCkZVTI
8cTbIsFg324cDwNn
-----END CERTIFICATE-----
Generated at Wed May 1 21:27:14 2024 by rpki-client on console-fra.rpki-client.org