Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213690.roa
File: AS213690.roa (raw, json)
Hash identifier: dRn2v1MA33ZYYMg2dI8/kwwYEiTfwQAs0j7LcuGmgMM=
Subject key identifier: AB:E4:DA:60:0F:E8:E4:0D:EB:30:FB:EA:66:2F:F7:69:46:25:5B:AF
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 25C948196397A235544F56BB906C61DCE5152BCA
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213690.roa
Signing time: Tue 24 Dec 2024 14:51:52 +0000
ROA not before: Tue 24 Dec 2024 14:46:52 +0000
ROA not after: Tue 23 Dec 2025 14:51:52 +0000
asID: 213690
IP address blocks: 181.215.0.0/24 maxlen: 24
181.215.28.0/24 maxlen: 24
181.215.34.0/24 maxlen: 24
181.215.48.0/24 maxlen: 24
181.215.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Feb 2025 19:35:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:c9:48:19:63:97:a2:35:54:4f:56:bb:90:6c:61:dc:e5:15:2b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Dec 24 14:46:52 2024 GMT
Not After : Dec 23 14:51:52 2025 GMT
Subject: CN=ABE4DA600FE8E40DEB30FBEA662FF76946255BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:51:4b:49:76:00:6f:3b:5f:4a:af:55:4f:1e:
50:d8:0d:99:95:22:d9:90:f2:e8:6e:9d:21:6a:bf:
21:40:51:82:bc:24:d6:0a:1b:64:49:1c:d4:75:20:
7b:62:91:df:37:8e:6b:e2:69:5f:a1:57:5e:1c:e3:
1d:47:f2:89:ab:1b:fb:35:11:5b:d8:c8:46:16:73:
cb:44:91:19:81:31:c2:2d:03:81:c8:55:7b:48:ee:
39:55:b3:3c:2b:d8:b9:1e:51:fe:a0:f2:d7:55:9d:
0f:20:3a:df:5c:da:35:9d:58:b7:f3:b4:e8:c8:55:
14:52:f3:ed:71:20:be:45:a8:e8:24:6e:fd:83:c0:
88:7b:b6:27:c2:d5:a3:82:51:24:17:16:51:d1:fb:
dd:a0:97:38:c5:f2:5f:4d:28:b9:96:66:3e:ca:94:
c1:44:c0:62:e1:80:c0:ed:2e:46:a7:de:08:83:48:
bb:53:19:52:80:1f:35:c2:b1:ea:36:41:49:68:80:
86:e7:1b:dc:46:fd:36:a3:1a:ad:0f:47:20:f3:14:
f1:0b:de:40:e9:a7:10:d1:c9:b0:98:58:93:17:87:
da:f0:8d:a4:84:6c:11:00:d2:d8:56:84:dd:ba:cd:
7c:17:59:38:89:52:d0:65:10:b1:ce:5f:e1:b2:55:
d4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E4:DA:60:0F:E8:E4:0D:EB:30:FB:EA:66:2F:F7:69:46:25:5B:AF
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213690.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.0.0/24
181.215.28.0/24
181.215.34.0/24
181.215.48.0/24
181.215.180.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:a4:3e:fa:33:b2:f4:df:94:89:03:35:74:9f:90:45:d1:27:
c5:ce:ed:6c:2c:a8:ad:e6:78:e2:58:ca:62:a7:67:06:f8:3b:
5f:a7:35:c6:a9:24:19:93:38:ec:f2:f9:89:66:ab:47:d7:bc:
9e:65:5e:21:00:f3:de:ca:e8:0d:e6:48:f8:c7:9a:14:29:56:
af:eb:3f:b3:a7:29:2e:23:3b:9c:78:f4:5c:89:76:2c:99:00:
e5:c8:f7:61:54:af:6b:30:a1:e9:47:9f:ee:33:e3:d8:9e:09:
c2:7f:64:98:8a:3b:d2:5e:f0:12:d9:a4:47:3b:e3:77:0c:56:
85:c4:ac:b7:0e:91:49:1e:cc:51:5e:0c:1a:90:47:c8:39:58:
65:69:a4:45:bf:08:b6:75:be:97:bf:fc:89:f4:80:00:2b:cc:
9d:4e:7f:da:f5:18:78:82:fe:f2:c0:8a:80:23:04:ef:54:a6:
5d:a8:53:06:d1:98:55:ab:f5:81:aa:e1:ab:c3:60:59:fd:0a:
84:52:bd:c8:45:ca:01:9f:d3:0c:1c:db:39:45:d1:78:b8:bb:
fe:74:51:e8:89:5f:d7:2e:cd:cf:6f:13:10:87:ac:4f:cb:7c:
2b:06:28:ca:81:ac:2b:55:7a:8e:13:14:7e:32:80:37:68:26:
74:39:30:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 08:58:22 2025 by rpki-client