Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS30823.roa
File: AS30823.roa (raw, json)
Hash identifier: r9LfAZhy8QShtBix03cHgT0kn8M+EHLD5DHFcUB5dbs=
Subject key identifier: BC:44:AD:06:D8:E4:4D:5B:D0:88:4D:6A:10:0A:E3:FF:BC:A2:9D:21
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 458BF0F92F00B5E6D31AE21123EB7B8175B995BA
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS30823.roa
Signing time: Thu 03 Aug 2023 15:00:09 +0000
ROA not before: Thu 03 Aug 2023 14:55:09 +0000
ROA not after: Thu 01 Aug 2024 15:00:09 +0000
asID: 30823
IP address blocks: 45.137.116.0/24 maxlen: 24
45.137.117.0/24 maxlen: 24
45.137.118.0/24 maxlen: 24
179.61.237.0/24 maxlen: 24
181.214.240.0/24 maxlen: 24
191.101.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:59:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:8b:f0:f9:2f:00:b5:e6:d3:1a:e2:11:23:eb:7b:81:75:b9:95:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 3 14:55:09 2023 GMT
Not After : Aug 1 15:00:09 2024 GMT
Subject: CN=BC44AD06D8E44D5BD0884D6A100AE3FFBCA29D21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e7:c4:c8:82:e7:13:40:0f:2a:50:fa:df:95:
af:88:a5:1d:c0:9c:7d:64:d1:9b:f1:44:8d:48:5d:
49:50:42:36:35:2f:b3:ec:2a:c2:bc:2b:9c:2f:f6:
49:9c:ac:f3:22:29:31:25:e2:e2:e5:10:97:1b:a6:
26:28:1f:13:58:25:24:e3:31:e8:97:23:24:44:5b:
5d:16:ba:1c:11:b4:a9:74:d8:c7:21:c6:b4:da:03:
c0:5f:76:31:0a:e7:39:42:32:2d:d7:25:01:af:35:
da:20:72:43:51:93:ed:19:0b:dc:54:4f:78:a1:c3:
0a:fc:0f:e5:ef:49:dd:39:c7:f0:17:a5:13:46:fb:
d6:bc:9d:57:e5:69:7e:c6:2a:e3:20:79:7d:b3:ba:
7d:4a:02:f0:fb:f7:8c:91:9f:72:f1:03:e6:1c:d1:
33:af:75:3d:50:0e:49:62:00:33:10:da:ef:eb:43:
08:21:5b:b5:62:64:45:d1:a1:43:5b:79:e6:e5:c0:
4e:f4:18:0a:95:a7:d5:df:03:e6:19:b7:be:de:fc:
5a:ed:e3:e8:a6:8d:58:57:de:49:1f:a4:d2:8d:b3:
78:93:f2:13:76:c3:1a:0a:32:3e:7c:20:f9:a2:a3:
cd:ac:86:08:c3:6e:b1:5d:47:ce:a2:f7:70:04:ac:
2a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:44:AD:06:D8:E4:4D:5B:D0:88:4D:6A:10:0A:E3:FF:BC:A2:9D:21
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS30823.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.116.0-45.137.118.255
179.61.237.0/24
181.214.240.0/24
191.101.206.0/24
Signature Algorithm: sha256WithRSAEncryption
08:5e:24:5e:6a:68:61:26:d2:14:1f:5a:59:c5:a2:a0:1e:fe:
ae:f3:fb:78:1d:6c:ac:78:d4:3e:d1:08:34:33:b3:1b:6f:1d:
c3:7f:04:b7:31:42:83:87:79:5c:ab:eb:2b:29:d4:5e:43:d3:
63:9d:b9:2a:de:39:82:51:69:68:bd:ea:d8:f2:ef:d1:a6:d7:
10:10:5c:8c:ae:7e:98:b5:2c:6a:1b:46:fd:39:3c:cd:ab:cd:
36:a2:cd:b3:c9:0a:c0:20:58:ad:53:27:aa:78:a8:bd:b1:9e:
d0:4f:08:06:5a:91:15:4e:55:2c:21:ac:9f:ff:75:af:65:87:
ef:2b:ee:1b:5c:43:d7:e5:d6:c4:44:64:a1:74:8c:d6:48:07:
5a:23:e0:f2:2f:1c:a0:5b:49:ce:27:09:6a:73:82:61:3c:21:
ec:fe:ff:c9:8a:b4:a8:51:63:47:fd:a1:82:87:cf:a1:08:0f:
98:a6:64:78:d1:78:a7:61:a8:27:c6:7c:54:f7:72:61:3c:99:
04:42:80:56:08:2f:81:1d:59:ce:bb:e3:86:c7:0a:c8:c5:51:
a0:d6:ff:91:fe:bb:8d:42:64:ff:d5:c2:0f:d5:46:13:19:47:
9c:f0:d7:94:f8:c3:2d:13:62:c6:51:a0:1f:ee:4f:38:26:e3:
7d:24:8a:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 00:49:06 2024 by rpki-client on console-fra.rpki-client.org