Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
File: AS269070.roa (raw, json)
Hash identifier: 1PMvc/++ietGRIIHNrxY7XI6iFFrJphqh2RbdnALo5I=
Subject key identifier: 5F:91:10:54:3F:53:E9:93:7B:42:25:5A:44:90:AC:8A:30:AF:4B:75
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 61B5EA5922A113C784F2D5D21F4B7803A5DAC361
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
Signing time: Wed 10 Apr 2024 00:00:23 +0000
ROA not before: Tue 09 Apr 2024 23:55:23 +0000
ROA not after: Wed 09 Apr 2025 00:00:23 +0000
asID: 269070
IP address blocks: 45.137.28.0/24 maxlen: 24
179.61.154.0/24 maxlen: 24
181.215.0.0/24 maxlen: 24
181.215.28.0/24 maxlen: 24
181.215.34.0/24 maxlen: 24
181.215.48.0/24 maxlen: 24
181.215.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:b5:ea:59:22:a1:13:c7:84:f2:d5:d2:1f:4b:78:03:a5:da:c3:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 9 23:55:23 2024 GMT
Not After : Apr 9 00:00:23 2025 GMT
Subject: CN=5F9110543F53E9937B42255A4490AC8A30AF4B75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6c:99:10:45:dd:1e:29:d0:dd:aa:f1:7f:18:
c2:05:89:88:b9:96:ed:c2:4e:dd:12:b5:3d:ed:29:
5e:a3:4f:ee:25:0d:b7:14:d3:7d:ff:cd:a2:f0:44:
a5:c8:d0:60:be:9e:02:13:72:82:85:21:23:b7:80:
16:ae:a5:77:1e:aa:60:a5:1b:b5:d8:14:f5:37:c3:
e7:e1:e6:68:b6:86:24:74:55:d8:19:ed:a4:48:43:
bd:9d:73:27:58:dc:d4:a0:2c:57:00:8d:b0:7f:cf:
f6:76:df:f2:e6:75:af:1d:c0:44:02:79:7a:56:bd:
8d:5a:97:b6:97:85:be:98:82:bb:14:50:5c:e4:fe:
28:10:73:88:cd:ec:4b:eb:22:ca:85:3c:7b:68:69:
78:79:72:b8:72:14:a5:4f:a4:00:9d:51:e4:fb:45:
31:a1:1b:23:38:a6:d4:d9:d9:8b:e9:1a:a2:2e:a1:
24:9e:2c:8d:82:15:cf:9d:8b:04:92:a4:13:c1:59:
82:09:e0:a1:1e:f1:19:41:13:7f:85:b3:91:a3:1f:
bc:1c:d4:b6:e6:2f:5e:14:33:fc:3b:6f:e0:0b:d7:
84:5e:b3:a2:00:31:96:f1:44:ba:c0:3b:79:ec:3e:
bf:37:51:9c:80:7d:10:e0:7f:82:2d:36:0e:79:43:
aa:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:91:10:54:3F:53:E9:93:7B:42:25:5A:44:90:AC:8A:30:AF:4B:75
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.28.0/24
179.61.154.0/24
181.215.0.0/24
181.215.28.0/24
181.215.34.0/24
181.215.48.0/24
181.215.180.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:49:17:df:ab:f6:84:bc:08:04:77:b6:0d:6a:2b:25:59:1c:
27:53:ba:c0:63:57:1b:6c:50:59:6f:7b:90:24:98:b6:8c:b5:
62:97:1c:9a:2d:65:c7:1b:fa:16:85:47:99:c7:1d:2b:5b:c7:
52:b5:a0:57:a5:36:56:3b:31:08:9c:af:fd:f7:0f:6d:d0:fe:
7f:97:73:43:7d:9e:2e:07:d8:68:bd:cf:51:bc:29:82:b4:50:
ff:d8:43:4c:fc:35:4f:ba:28:5a:f1:13:3c:87:de:ad:8a:94:
32:f0:f9:b5:3e:14:1b:ea:a0:70:65:54:e4:fe:b0:0e:c8:86:
70:e1:4b:87:fd:05:cb:88:71:1c:75:40:41:c8:12:75:a5:a0:
3c:1a:0e:02:4a:f4:93:a0:df:5d:34:07:63:f7:b0:5f:ac:17:
22:28:6b:70:f8:84:93:a2:8b:8e:25:93:96:c1:70:ad:bb:bf:
1a:4f:93:bb:84:8a:c9:45:cc:c4:a3:03:78:76:c6:a7:9a:c9:
19:b2:3e:98:6c:15:ab:63:cd:67:ce:57:f8:36:80:66:83:d0:
ec:79:20:15:33:6e:df:65:04:41:d9:57:aa:29:0d:42:95:ca:
56:73:a9:5a:55:75:5a:d3:f5:12:d4:c1:cb:63:23:43:d3:be:
19:33:aa:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 18:20:17 2024 by rpki-client on console-ams.rpki-client.org