Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS266400.roa
File: AS266400.roa (raw, json)
Hash identifier: UFMuQrWE6TkynHAnC7z6vGxmxn+ilqaOT8aR9DIsPfg=
Subject key identifier: 95:AA:49:B6:2F:22:E9:59:8D:0F:15:60:50:B7:00:69:30:D6:18:B8
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 56ABFC60E11F7906524760ECDD5D3009F2455729
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS266400.roa
Signing time: Tue 05 Dec 2023 06:59:55 +0000
ROA not before: Tue 05 Dec 2023 06:54:55 +0000
ROA not after: Tue 03 Dec 2024 06:59:55 +0000
asID: 266400
IP address blocks: 181.214.128.0/23 maxlen: 24
181.214.230.0/24 maxlen: 24
181.215.211.0/24 maxlen: 24
181.215.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:ab:fc:60:e1:1f:79:06:52:47:60:ec:dd:5d:30:09:f2:45:57:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Dec 5 06:54:55 2023 GMT
Not After : Dec 3 06:59:55 2024 GMT
Subject: CN=95AA49B62F22E9598D0F156050B7006930D618B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:37:8e:cb:13:d6:06:15:39:25:93:44:9b:bd:
02:d9:51:33:94:a0:62:a5:e4:e6:fd:d0:62:e7:ff:
ec:fb:18:41:59:d5:cf:38:43:1e:ab:32:7d:6c:23:
d1:fc:71:a9:ab:7d:32:44:3a:c2:56:2a:c6:d4:1f:
a3:39:4f:33:bf:af:ca:c2:8e:8e:a9:d5:98:3f:b6:
06:ae:ee:93:83:64:57:ab:9a:0c:5f:86:5e:13:15:
43:7c:6d:99:c6:cd:df:00:c3:9a:02:e8:58:e4:d8:
d1:eb:a6:3a:e5:02:15:82:fa:9f:39:d5:99:59:fe:
79:f9:eb:ed:76:03:00:45:46:7a:c9:49:02:c1:f0:
47:36:2b:2b:6b:2d:62:bd:c6:5f:dc:61:dc:e3:b8:
e8:e0:3e:f8:22:de:8e:2a:2a:45:47:1b:81:ea:63:
96:a4:9f:74:88:a9:f1:a0:fe:61:84:52:2a:65:37:
e4:ec:c4:67:be:3e:bd:ea:00:e8:f7:db:4b:25:89:
db:1b:5f:c4:1b:b8:4e:4f:08:8f:34:32:3f:2e:7b:
91:d7:d7:3b:03:70:b1:d9:2a:0d:90:4f:19:28:07:
bd:57:db:79:8e:24:d9:fc:0d:ac:7c:b0:34:af:4a:
ce:0b:28:a6:d1:66:c1:38:17:d5:ea:79:74:6c:83:
2c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:AA:49:B6:2F:22:E9:59:8D:0F:15:60:50:B7:00:69:30:D6:18:B8
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS266400.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.128.0/23
181.214.230.0/24
181.215.211.0/24
181.215.215.0/24
Signature Algorithm: sha256WithRSAEncryption
52:21:fa:ed:b3:c7:c4:b8:13:eb:3a:ba:c6:2c:52:ae:ad:92:
6f:82:9f:52:6d:4e:4d:f0:d5:04:9c:70:d0:7d:0b:6e:22:a6:
90:96:60:9b:0e:5b:23:5b:2b:1c:df:5c:11:cb:25:09:47:ca:
e6:63:fb:67:4d:ad:5c:c6:97:fc:19:b6:39:24:a3:6d:7d:bc:
4b:f8:f8:cb:be:40:c3:b6:db:42:7f:3b:8b:45:8f:d8:ed:8b:
24:16:46:b3:25:90:a6:e0:6d:de:e3:88:39:37:28:a3:60:17:
ca:79:3d:86:49:aa:1f:b8:9b:0a:5f:76:bd:ec:28:e6:2e:01:
54:cf:2f:b6:d1:a3:6c:21:03:94:b5:29:96:46:46:5b:51:89:
bc:af:41:d9:ad:3f:31:3b:6f:7e:7c:89:11:9f:59:fd:66:c6:
a4:4d:8f:dc:ff:89:05:01:15:b9:f2:ce:7d:8b:02:f8:cb:32:
2f:04:80:a0:33:87:c3:d2:43:ed:1c:20:91:13:b8:8b:4e:80:
da:0e:1d:b9:be:74:5a:f9:69:6b:55:3d:f6:46:da:f7:8c:ab:
cf:d7:58:dd:dd:e7:e6:4d:d8:c2:f5:98:ab:02:dd:da:34:4c:
6c:ca:69:24:12:09:3a:05:f2:38:4d:37:0e:4e:ee:ae:1c:10:
dc:8b:16:67
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgIUVqv8YOEfeQZSR2Ds3V0wCfJFVykwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yMzEyMDUwNjU0NTVaFw0yNDEyMDMwNjU5NTVaMDMxMTAvBgNV
BAMTKDk1QUE0OUI2MkYyMkU5NTk4RDBGMTU2MDUwQjcwMDY5MzBENjE4QjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXN47LE9YGFTklk0SbvQLZUTOU
oGKl5Ob90GLn/+z7GEFZ1c84Qx6rMn1sI9H8camrfTJEOsJWKsbUH6M5TzO/r8rC
jo6p1Zg/tgau7pODZFermgxfhl4TFUN8bZnGzd8Aw5oC6Fjk2NHrpjrlAhWC+p85
1ZlZ/nn56+12AwBFRnrJSQLB8Ec2KytrLWK9xl/cYdzjuOjgPvgi3o4qKkVHG4Hq
Y5akn3SIqfGg/mGEUiplN+TsxGe+Pr3qAOj320slidsbX8QbuE5PCI80Mj8ue5HX
1zsDcLHZKg2QTxkoB71X23mOJNn8Dax8sDSvSs4LKKbRZsE4F9XqeXRsgywTAgMB
AAGjggIcMIICGDAdBgNVHQ4EFgQUlapJti8i6VmNDxVgULcAaTDWGLgwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjY2NDAwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBtdaA
AwQAtdbmAwQAtdfTAwQAtdfXMA0GCSqGSIb3DQEBCwUAA4IBAQBSIfrts8fEuBPr
OrrGLFKurZJvgp9SbU5N8NUEnHDQfQtuIqaQlmCbDlsjWysc31wRyyUJR8rmY/tn
Ta1cxpf8GbY5JKNtfbxL+PjLvkDDtttCfzuLRY/Y7YskFkazJZCm4G3e44g5Nyij
YBfKeT2GSaofuJsKX3a97CjmLgFUzy+20aNsIQOUtSmWRkZbUYm8r0HZrT8xO29+
fIkRn1n9ZsakTY/c/4kFARW58s59iwL4yzIvBICgM4fD0kPtHCCRE7iLToDaDh25
vnRa+WlrVT32Rtr3jKvP11jd3efmTdjC9ZirAt3aNExsymkkEgk6BfI4TTcOTu6u
HBDcixZn
-----END CERTIFICATE-----
Generated at Fri May 10 02:42:21 2024 by rpki-client on console-fra.rpki-client.org