Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS266400.roa
File: AS266400.roa (raw, json)
Hash identifier: Pv7L+qWy0AYDof/kpu422A6yZqugVApZE8TOmte/CpE=
Subject key identifier: 66:1E:0A:2F:A7:EA:43:50:3F:ED:53:F3:B6:31:2B:64:7F:E2:D5:08
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6B03AEFB85A52EBE93566A0C7A38353704EE62E9
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS266400.roa
Signing time: Tue 05 Nov 2024 07:43:27 +0000
ROA not before: Tue 05 Nov 2024 07:38:27 +0000
ROA not after: Tue 04 Nov 2025 07:43:27 +0000
asID: 266400
IP address blocks: 181.214.128.0/23 maxlen: 24
181.214.230.0/24 maxlen: 24
181.215.211.0/24 maxlen: 24
181.215.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:03:ae:fb:85:a5:2e:be:93:56:6a:0c:7a:38:35:37:04:ee:62:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Nov 5 07:38:27 2024 GMT
Not After : Nov 4 07:43:27 2025 GMT
Subject: CN=661E0A2FA7EA43503FED53F3B6312B647FE2D508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e9:ab:ea:00:82:ec:b9:a9:4a:f4:7f:c1:78:
75:ff:44:49:85:f4:b3:f2:6d:8c:92:55:48:8e:8c:
14:48:b3:9b:96:f0:b8:e8:21:77:0d:4b:49:e6:8a:
7f:75:98:c7:e1:7a:c3:bd:66:28:30:bd:6a:37:13:
b3:00:8b:b7:38:c3:00:f3:5c:6b:c5:46:14:70:ba:
1d:d6:77:76:18:a2:4e:c4:10:f9:31:c2:7b:4b:2f:
b7:00:9e:f2:08:00:97:84:b7:35:8d:21:de:aa:d3:
28:f6:0a:7f:15:0f:9e:4e:d9:a5:97:3e:25:c1:fc:
c8:d3:27:79:c0:15:16:de:28:c0:08:96:06:1b:70:
b3:6f:e9:60:2d:ba:04:66:d7:63:0b:f4:7d:98:cc:
27:bc:89:e9:07:0b:f2:74:96:7f:97:8a:8c:32:c6:
10:22:97:fd:65:79:95:20:f1:0a:8f:b4:fb:0d:9b:
87:02:28:c9:e2:43:40:a5:b8:1a:a8:de:58:e4:f3:
83:4d:87:a3:d3:ed:b6:8f:9b:08:2a:ed:20:64:25:
6f:30:d4:6c:9c:05:a3:66:79:62:49:69:7f:7d:24:
05:3a:f0:bf:40:1d:8c:53:a6:df:fc:6e:8e:de:dd:
71:c8:28:39:76:dd:93:d6:a6:67:79:ee:6f:c1:1a:
7b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:1E:0A:2F:A7:EA:43:50:3F:ED:53:F3:B6:31:2B:64:7F:E2:D5:08
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS266400.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.128.0/23
181.214.230.0/24
181.215.211.0/24
181.215.215.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:40:70:04:82:58:2d:0f:49:b4:da:77:28:40:02:b4:f8:ce:
0f:ef:e8:b3:ad:4a:11:61:c4:28:4f:0e:22:9a:09:5f:56:1d:
97:26:ee:b2:c3:92:6b:e2:79:17:7d:e7:4f:65:29:fc:58:72:
17:9e:e7:7a:e5:9c:c9:bb:0d:3a:20:b5:48:27:9c:59:44:3c:
d0:59:c4:52:e8:ae:b6:af:d3:da:46:98:73:d3:49:b2:3e:40:
56:d6:cd:ba:59:19:88:9d:b5:ac:b5:47:58:5c:dd:2f:18:a9:
88:2b:a8:32:6e:d1:c2:3d:61:d0:df:9c:80:a0:29:cd:49:99:
67:07:b0:cb:42:93:56:36:5c:82:7d:80:b9:0a:a8:0b:93:94:
5f:79:b7:3b:9f:a9:9f:68:7c:e5:bd:be:99:7d:1f:1c:f0:cf:
1e:46:09:8f:19:d5:30:c1:7d:fe:ef:a6:d9:0a:92:0e:c0:88:
b1:b7:f9:ae:5d:e8:97:fb:7b:f6:ce:7c:72:6b:63:cc:04:68:
1d:7c:0a:7d:ed:6c:92:d8:13:dd:74:b4:74:ca:c3:b2:2d:8c:
5f:f5:de:cb:36:cc:70:4f:fd:7d:08:f9:90:fc:a1:5b:56:93:
2f:10:1f:d3:91:8b:a6:e4:4e:44:07:b1:5f:ba:ca:06:cf:c6:
b4:6d:39:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:44:47 2024 by rpki-client on console-fra.rpki-client.org