Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS30823.roa
File: AS30823.roa (raw, json)
Hash identifier: cbLkz4pq7wZL9AErikcx+EweBIXRWfVkIOlagNdEOxM=
Subject key identifier: D8:87:CF:8D:46:E2:B0:CE:EE:86:AD:7A:BF:72:6E:4C:68:CD:38:05
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 31B7534E1246F2696F6E685341832CF054D0BC62
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS30823.roa
Signing time: Thu 04 Jul 2024 15:05:18 +0000
ROA not before: Thu 04 Jul 2024 15:00:18 +0000
ROA not after: Thu 03 Jul 2025 15:05:18 +0000
asID: 30823
IP address blocks: 45.137.116.0/24 maxlen: 24
45.137.117.0/24 maxlen: 24
45.137.118.0/24 maxlen: 24
179.61.237.0/24 maxlen: 24
181.214.240.0/24 maxlen: 24
191.101.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:b7:53:4e:12:46:f2:69:6f:6e:68:53:41:83:2c:f0:54:d0:bc:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jul 4 15:00:18 2024 GMT
Not After : Jul 3 15:05:18 2025 GMT
Subject: CN=D887CF8D46E2B0CEEE86AD7ABF726E4C68CD3805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:20:6b:68:78:3a:1e:19:07:4f:10:f3:e8:a2:
e9:8b:f5:04:81:9d:f8:80:1d:4a:c3:0f:8f:96:d7:
be:bd:10:a8:04:50:7e:e2:46:f5:9b:53:7a:6a:9e:
a0:73:7d:77:a6:03:70:48:40:cf:a3:c1:a4:7c:c9:
52:a4:9a:a2:a0:76:a8:43:84:4b:dd:45:09:bd:08:
46:44:8b:ef:cd:05:dc:8d:18:ba:99:5f:8b:56:81:
06:06:e0:b5:a5:26:3e:1c:48:65:f7:0a:8a:a6:f0:
05:4a:e1:d9:0d:6b:e9:6e:15:63:44:44:ef:aa:eb:
43:ff:1f:84:8c:0a:0c:59:fd:57:12:82:02:7f:6c:
a8:88:61:b3:be:8f:0b:6e:d5:3a:e5:a7:eb:36:a3:
c2:0b:6f:76:ad:66:0e:c0:09:3c:2f:bc:dc:b8:eb:
c2:57:5d:96:f6:ec:75:82:5a:7f:6c:8a:c4:60:e6:
94:23:c9:56:54:ad:40:e0:7f:62:56:83:51:d2:ba:
f6:67:e8:c1:2a:a4:4f:5e:78:2e:60:ac:a5:39:b5:
c7:0a:08:f1:8a:ca:df:d5:ea:6f:8a:24:80:69:88:
88:b1:b7:a7:c8:8c:0e:6f:6c:c4:96:d2:c5:bb:46:
1b:44:9c:9a:18:d9:eb:0a:cb:a2:63:39:e1:b8:d6:
61:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:87:CF:8D:46:E2:B0:CE:EE:86:AD:7A:BF:72:6E:4C:68:CD:38:05
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS30823.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.116.0-45.137.118.255
179.61.237.0/24
181.214.240.0/24
191.101.206.0/24
Signature Algorithm: sha256WithRSAEncryption
39:81:23:c1:9c:02:cd:a4:db:9d:a3:5e:b0:3b:33:14:d9:6a:
aa:0f:2c:dc:7e:0c:bc:e9:32:aa:7c:8e:62:a3:50:aa:c9:4b:
33:9b:c5:7b:6b:06:5e:af:56:83:79:4e:0d:91:34:b6:69:d7:
ce:a2:07:6d:dc:ee:2d:d6:d8:e4:a6:d6:7f:e1:c3:89:73:b8:
50:02:14:f6:da:48:09:08:99:59:af:cd:e9:b7:19:c4:68:74:
5a:31:55:16:83:b9:f4:1b:bb:e1:56:73:ac:1e:df:ff:e2:1d:
26:32:19:2e:ea:58:f5:d4:fc:0c:34:1e:e4:f8:b6:f7:90:51:
5b:57:03:41:80:b3:99:c7:fb:72:e6:6f:94:bf:37:b2:12:52:
03:4d:43:b9:c3:78:ec:98:db:a0:98:4a:c2:11:7c:f1:24:ea:
72:ec:79:b8:30:3d:5b:88:38:be:08:40:0d:a2:e3:a1:2a:65:
0b:a9:80:70:78:ad:34:32:2c:b9:c2:ab:8a:b3:93:e0:72:8a:
d2:89:11:55:57:3a:5d:5a:5d:f6:5c:7b:33:bb:c1:be:d5:bb:
5c:bd:e9:d2:3d:3e:d9:15:d9:02:46:a6:b8:4f:5e:10:7a:79:
85:83:35:2d:4d:db:af:c7:5a:d9:62:6c:f0:88:39:29:c5:7a:
82:a2:6e:08
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgIUMbdTThJG8mlvbmhTQYMs8FTQvGIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDA3MDQxNTAwMThaFw0yNTA3MDMxNTA1MThaMDMxMTAvBgNV
BAMTKEQ4ODdDRjhENDZFMkIwQ0VFRTg2QUQ3QUJGNzI2RTRDNjhDRDM4MDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1IGtoeDoeGQdPEPPooumL9QSB
nfiAHUrDD4+W1769EKgEUH7iRvWbU3pqnqBzfXemA3BIQM+jwaR8yVKkmqKgdqhD
hEvdRQm9CEZEi+/NBdyNGLqZX4tWgQYG4LWlJj4cSGX3Coqm8AVK4dkNa+luFWNE
RO+q60P/H4SMCgxZ/VcSggJ/bKiIYbO+jwtu1Trlp+s2o8ILb3atZg7ACTwvvNy4
68JXXZb27HWCWn9sisRg5pQjyVZUrUDgf2JWg1HSuvZn6MEqpE9eeC5grKU5tccK
CPGKyt/V6m+KJIBpiIixt6fIjA5vbMSW0sW7RhtEnJoY2esKy6JjOeG41mErAgMB
AAGjggIjMIICHzAdBgNVHQ4EFgQU2IfPjUbisM7uhq16v3JuTGjNOAUwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMzA4MjMucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwOQYIKwYBBQUHAQcBAf8EKjAoMCYEAgABMCAwDAMEAi2J
dAMEAC2JdgMEALM97QMEALXW8AMEAL9lzjANBgkqhkiG9w0BAQsFAAOCAQEAOYEj
wZwCzaTbnaNesDszFNlqqg8s3H4MvOkyqnyOYqNQqslLM5vFe2sGXq9Wg3lODZE0
tmnXzqIHbdzuLdbY5KbWf+HDiXO4UAIU9tpICQiZWa/N6bcZxGh0WjFVFoO59Bu7
4VZzrB7f/+IdJjIZLupY9dT8DDQe5Pi295BRW1cDQYCzmcf7cuZvlL83shJSA01D
ucN47JjboJhKwhF88STqcux5uDA9W4g4vghADaLjoSplC6mAcHitNDIsucKrirOT
4HKK0okRVVc6XVpd9lx7M7vBvtW7XL3p0j0+2RXZAkamuE9eEHp5hYM1LU3br8da
2WJs8Ig5KcV6gqJuCA==
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:44:47 2024 by rpki-client on console-fra.rpki-client.org