Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS265867.roa
File: AS265867.roa (raw, json)
Hash identifier: a+eeT5zN8LW31/X/+09kAf5X4d8k28iFFqLO2XwVuBg=
Subject key identifier: 59:B9:1B:21:A3:29:54:55:5C:7A:DB:2C:13:29:EA:5A:E0:80:EC:FD
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5483DDC791C9E0AAB0CDCE08C7406ABEE7F78666
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS265867.roa
Signing time: Mon 22 Apr 2024 15:16:35 +0000
ROA not before: Mon 22 Apr 2024 15:11:35 +0000
ROA not after: Mon 21 Apr 2025 15:16:35 +0000
asID: 265867
IP address blocks: 179.61.230.0/23 maxlen: 24
181.214.137.0/24 maxlen: 24
181.214.158.0/23 maxlen: 24
181.214.192.0/23 maxlen: 23
181.214.192.0/23 maxlen: 24
191.96.200.0/24 maxlen: 24
191.96.216.0/23 maxlen: 24
191.96.218.0/23 maxlen: 24
191.101.40.0/24 maxlen: 24
191.101.96.0/24 maxlen: 24
191.101.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:83:dd:c7:91:c9:e0:aa:b0:cd:ce:08:c7:40:6a:be:e7:f7:86:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 22 15:11:35 2024 GMT
Not After : Apr 21 15:16:35 2025 GMT
Subject: CN=59B91B21A32954555C7ADB2C1329EA5AE080ECFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:54:75:63:2a:bf:d5:f6:53:76:58:32:44:ab:
16:27:9a:3f:80:bc:46:73:c6:03:d5:df:e1:25:bd:
7c:36:f6:25:20:29:e6:87:fa:97:b6:67:24:63:b0:
16:5c:1b:73:a5:2f:9f:2e:dc:0c:25:c2:fc:6c:32:
c6:e1:3c:d4:93:98:73:f7:85:6a:75:b3:ae:d9:1a:
19:4a:4e:77:c8:15:05:81:f7:7f:9c:78:4c:00:db:
8e:11:13:c4:e0:57:7a:bb:e6:80:06:bd:fc:37:05:
1c:b6:5d:d0:c9:72:39:5f:df:b1:54:f1:f5:e4:3a:
f2:ce:1b:e4:3e:9b:1b:13:61:d7:d7:09:6d:83:86:
68:8d:f8:21:0e:3f:08:98:ba:1a:82:6d:65:f4:99:
a3:db:79:fe:5c:15:a8:5d:47:1b:f1:f0:8a:1a:10:
9d:02:40:a7:7e:45:75:44:77:2a:7f:7b:0b:2d:33:
06:a5:71:33:d9:57:3d:f8:c0:8a:f0:9c:f9:e1:8e:
a9:24:0d:b3:49:55:97:44:1f:74:e4:66:35:8a:1c:
c9:e0:6c:fe:bf:48:04:db:c5:a4:92:4e:7b:a6:83:
9e:dd:71:66:ab:f3:c2:e2:b0:cc:38:3c:41:73:26:
84:9d:5f:9e:39:52:53:5d:9b:3a:4c:be:66:4a:ab:
d4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B9:1B:21:A3:29:54:55:5C:7A:DB:2C:13:29:EA:5A:E0:80:EC:FD
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS265867.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.230.0/23
181.214.137.0/24
181.214.158.0/23
181.214.192.0/23
191.96.200.0/24
191.96.216.0/22
191.101.40.0/24
191.101.96.0/24
191.101.153.0/24
Signature Algorithm: sha256WithRSAEncryption
49:03:00:98:68:ae:4f:45:34:dd:23:26:36:44:92:4b:16:c8:
8c:45:cb:e0:64:4c:73:7e:9b:77:f1:72:10:06:de:81:ec:7a:
ad:82:0f:89:d1:e8:66:4b:66:19:42:7d:78:7e:b6:0c:74:8e:
9e:85:4f:7e:9e:5a:eb:be:8f:8f:80:cb:fc:f9:51:c8:3b:dd:
15:52:84:34:58:82:78:40:d9:e6:47:5b:cc:d4:a7:0c:cd:67:
e5:53:be:46:61:f0:ea:8a:96:76:e0:68:5b:49:03:97:b2:ee:
58:43:4f:ab:ea:63:04:35:0b:f7:a2:26:46:8a:52:d7:1c:54:
b5:76:a9:7e:3c:cb:e6:29:62:f4:48:19:3f:cc:9a:ed:7f:5d:
34:b3:e2:33:b8:c5:bc:22:9b:50:70:12:a8:62:24:3a:1a:9e:
5c:33:1f:51:ad:e7:7b:48:9b:f2:c1:6e:de:ef:4c:7e:b6:2b:
3d:39:b0:1c:05:3b:40:77:45:d6:5d:41:51:85:eb:18:b9:df:
ae:f5:1a:ec:84:40:b3:8e:43:09:4b:c9:f7:7c:15:38:51:cc:
d9:9d:04:97:b6:f9:9a:37:49:19:f7:a1:0a:9d:76:9b:97:6d:
bc:75:e7:0f:2f:e0:dd:26:fb:e9:ee:70:af:a1:cc:9d:a4:38:
02:ba:df:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 10:50:03 2024 by rpki-client on console-fra.rpki-client.org