Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS32181.roa
File: AS32181.roa (raw, json)
Hash identifier: x8hWluhOi3EsyxFjp1yhyieXznLNHruBW01+YEGJo8U=
Subject key identifier: 50:2E:E0:BB:C6:02:56:DC:74:E6:AD:C1:92:B9:D1:A4:4E:AC:FC:D2
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 4C47C62213214332D5A6AE65DA6DD6459656369C
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS32181.roa
Signing time: Mon 11 Sep 2023 07:30:09 +0000
ROA not before: Mon 11 Sep 2023 07:25:09 +0000
ROA not after: Mon 09 Sep 2024 07:30:09 +0000
asID: 32181
IP address blocks: 5.252.163.0/24 maxlen: 24
181.214.77.0/24 maxlen: 24
181.214.146.0/24 maxlen: 24
181.214.157.0/24 maxlen: 24
181.214.161.0/24 maxlen: 24
191.96.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:47:c6:22:13:21:43:32:d5:a6:ae:65:da:6d:d6:45:96:56:36:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Sep 11 07:25:09 2023 GMT
Not After : Sep 9 07:30:09 2024 GMT
Subject: CN=502EE0BBC60256DC74E6ADC192B9D1A44EACFCD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:af:59:08:65:ed:eb:5b:75:7a:77:58:74:02:
66:ea:da:a1:fe:70:86:53:b4:07:4f:b6:ad:4e:3e:
78:5d:d4:ce:22:01:ab:90:17:4e:0f:f6:9f:19:47:
7e:c3:df:f4:8d:49:66:15:da:97:f4:2d:b0:bd:63:
02:f4:36:05:a2:b4:4c:74:36:a2:a0:dc:dd:c3:c3:
0f:bc:73:d6:2d:ab:61:bd:dc:81:a4:06:c9:70:ff:
5c:14:6a:ba:b7:9b:3c:26:ec:da:45:d4:4e:f0:ab:
e3:b0:8c:f5:61:cf:a5:b2:53:dd:ea:f0:a6:91:82:
78:5e:80:83:74:7b:41:ca:da:bf:1a:77:96:0d:83:
a4:76:bd:37:70:05:23:f7:04:1d:75:8e:3f:e2:47:
5c:da:31:5b:6b:83:d5:df:02:bd:b3:31:5f:1f:8f:
24:ae:dc:bf:2e:c4:b7:fc:37:bb:b2:c2:ab:54:5b:
74:1a:27:5f:6c:23:f4:3e:76:e6:ea:43:c6:75:e5:
70:c1:1f:5f:fb:76:3c:3c:15:04:9f:8e:e2:d2:2f:
c9:c7:f9:90:2c:b2:4d:a1:d4:27:7e:e5:28:e2:3f:
62:10:3f:f6:a9:5d:7f:52:cd:b6:c6:0a:ad:df:ab:
a9:e6:68:81:1e:18:c2:90:d6:a7:64:f9:5f:b8:76:
76:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:2E:E0:BB:C6:02:56:DC:74:E6:AD:C1:92:B9:D1:A4:4E:AC:FC:D2
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS32181.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.163.0/24
181.214.77.0/24
181.214.146.0/24
181.214.157.0/24
181.214.161.0/24
191.96.62.0/24
Signature Algorithm: sha256WithRSAEncryption
36:0d:0a:ca:1f:81:97:c1:d9:f6:4b:73:58:39:71:fc:a7:34:
c5:0b:d5:6d:78:f4:31:7f:9e:b1:37:34:b0:e2:0a:ea:35:00:
b3:80:15:de:d0:dc:a5:58:f3:c8:cb:7d:a4:a8:fb:e6:52:99:
c8:64:89:c7:2a:a1:e8:88:3e:70:d7:10:22:90:99:e4:ea:e2:
59:d2:17:b7:b0:49:bd:84:63:22:49:b3:b5:e4:8f:7c:b8:1a:
13:71:ef:af:ee:d4:ed:b3:5b:d7:96:6f:b8:f8:db:f8:c2:57:
e1:2f:4f:b0:b8:9a:a9:81:47:6d:52:32:89:74:bc:81:52:81:
c5:03:67:9c:e4:90:d5:a7:10:48:14:48:cc:5e:5e:f3:98:13:
f7:4f:6a:5f:89:07:ad:ca:67:80:77:db:bb:f8:0e:b3:a3:68:
2d:83:69:1e:76:38:c6:63:99:70:2c:10:a7:3c:f8:0a:94:8a:
c0:22:3e:96:25:ce:f5:13:6c:c7:25:08:e5:70:a0:b2:0c:1c:
dd:88:81:bf:21:c5:03:ba:1a:5e:80:d9:a2:bb:1b:bb:95:fc:
60:3b:7c:c3:6a:53:05:0e:2f:7f:7c:ee:90:91:ca:18:08:13:
11:53:13:db:69:6a:18:93:ba:30:97:45:ff:d7:19:77:f3:c5:
3d:82:e9:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 16:27:11 2024 by rpki-client on console-fra.rpki-client.org