Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS271978.roa
File: AS271978.roa (raw, json)
Hash identifier: sOEuOHPPvM5KF9MsX8TpA5KVsBIhxF6AZtBx/2ZYd7g=
Subject key identifier: AE:87:ED:02:3A:C3:FB:E3:9E:F9:F8:7E:98:0B:BD:10:B2:1F:22:51
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6DF794D223A38D5F89CE62EA9D69C89844E36D59
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS271978.roa
Signing time: Wed 31 Jan 2024 08:05:09 +0000
ROA not before: Wed 31 Jan 2024 08:00:09 +0000
ROA not after: Wed 29 Jan 2025 08:05:09 +0000
asID: 271978
IP address blocks: 181.215.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:f7:94:d2:23:a3:8d:5f:89:ce:62:ea:9d:69:c8:98:44:e3:6d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 31 08:00:09 2024 GMT
Not After : Jan 29 08:05:09 2025 GMT
Subject: CN=AE87ED023AC3FBE39EF9F87E980BBD10B21F2251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:42:1e:5d:39:4c:7c:81:ab:fc:4c:5e:45:1e:
56:18:34:cf:70:cc:8c:23:fe:8f:d9:53:4a:01:6d:
ad:48:71:63:2e:cb:be:52:87:60:f4:01:2f:ba:13:
2e:23:f9:66:e1:44:84:73:5b:82:32:85:11:af:e6:
19:f7:99:a2:b2:cb:b6:06:a8:b4:8d:98:b0:7a:47:
55:fb:99:3a:13:99:a6:a3:61:b8:73:b1:49:23:b7:
1e:73:f5:f0:a8:c7:7d:ae:ea:64:65:19:e9:c2:d6:
ed:11:50:75:58:41:49:f4:c0:68:22:d9:7e:4b:f3:
9b:62:01:cb:b0:c0:be:9b:94:21:2a:43:77:cb:da:
9e:bb:98:53:b4:4d:2b:3f:44:79:ef:47:b8:8f:e2:
97:8e:07:d3:66:67:31:e5:6c:50:0f:54:0c:88:91:
af:30:c6:78:ad:72:66:88:80:6f:53:5a:ed:78:f2:
fd:32:6f:6c:9b:39:72:37:a5:7d:cd:81:65:a0:04:
d3:e1:05:b7:9c:85:31:27:27:ae:96:7d:e6:25:56:
d3:41:ad:f4:d7:fd:ec:95:7e:91:aa:70:85:a6:38:
d2:49:e6:db:b9:6d:f8:ed:94:20:8b:49:48:2f:7d:
8a:28:93:54:d7:54:df:c3:63:02:e5:bb:02:92:a6:
6e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:87:ED:02:3A:C3:FB:E3:9E:F9:F8:7E:98:0B:BD:10:B2:1F:22:51
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS271978.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.241.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:68:8d:d7:f5:97:2a:5e:c1:72:a2:bf:66:ee:cb:66:41:de:
37:d9:ad:b5:4e:f1:a4:d5:69:88:d1:5f:ff:d2:b9:9b:bf:9e:
f4:07:7a:1d:86:a9:00:3c:a5:46:dd:8f:2c:1f:1d:7f:4b:ed:
b0:49:f1:f2:8d:68:88:04:38:60:2b:cb:aa:d8:a2:e4:50:83:
9e:86:77:0c:f1:3f:ca:7b:bc:f6:62:b2:32:f6:25:ac:94:a5:
6f:06:75:66:1b:f2:5c:cd:02:46:11:c0:75:1f:9a:44:3e:fa:
7c:46:9d:a1:3a:7d:ec:e9:63:21:19:42:eb:30:af:ae:07:a7:
ce:54:c5:76:70:93:30:88:c7:44:c4:11:bc:82:a5:bb:f9:c2:
f1:c8:96:f7:51:bb:e6:25:b3:da:7b:06:88:08:77:84:db:82:
7e:3e:b0:74:5e:34:a4:a4:3a:96:39:e0:09:93:b6:06:22:d5:
32:58:78:72:85:dc:39:c9:4c:92:82:ca:5f:22:0b:ec:59:bf:
58:9c:21:10:2e:93:82:b9:f5:b3:c3:34:01:e7:71:e2:1a:b0:
0e:d8:92:39:09:bb:3b:9f:84:48:84:dd:37:f7:d3:10:7d:9e:
32:d0:d1:df:d0:fa:d7:30:8d:eb:77:64:27:2a:ee:86:2d:04:
22:72:fb:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 02:42:21 2024 by rpki-client on console-fra.rpki-client.org