Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS32181.roa
File: AS32181.roa (raw, json)
Hash identifier: l7IidvDinL7ik6yuIZBq74uOoEAgQOSyP++Lh4/ga5I=
Subject key identifier: AF:75:53:14:51:88:E2:FA:98:D7:61:D2:2C:DC:38:B1:98:AA:12:38
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5FDD443F6D48D0D4C8DC13E4D8D91B5404F43B2B
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS32181.roa
Signing time: Sun 01 Sep 2024 00:02:10 +0000
ROA not before: Sat 31 Aug 2024 23:57:10 +0000
ROA not after: Sun 31 Aug 2025 00:02:10 +0000
asID: 32181
IP address blocks: 5.252.163.0/24 maxlen: 24
181.214.77.0/24 maxlen: 24
181.214.146.0/24 maxlen: 24
181.214.157.0/24 maxlen: 24
191.96.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:dd:44:3f:6d:48:d0:d4:c8:dc:13:e4:d8:d9:1b:54:04:f4:3b:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 31 23:57:10 2024 GMT
Not After : Aug 31 00:02:10 2025 GMT
Subject: CN=AF7553145188E2FA98D761D22CDC38B198AA1238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8e:8b:97:72:a7:ee:5c:73:8d:6f:f4:02:65:
b2:b6:49:e4:70:85:3e:05:26:93:9e:46:ac:73:a6:
1c:85:a9:56:67:f6:31:89:e8:bf:bd:1d:a3:a9:09:
c7:98:f0:a0:b0:69:c1:f5:d0:34:d2:b0:16:da:fd:
c5:05:fe:4c:be:f6:1e:52:85:4e:f5:6b:4d:46:d3:
7a:be:34:50:6d:ed:09:85:2d:f9:8a:c6:7c:80:c9:
dc:2b:a5:08:7c:48:84:f8:52:24:f8:cb:94:7e:c1:
a0:80:06:36:98:25:26:c8:3f:5d:4a:0f:f8:d9:dc:
6c:14:85:7e:16:e7:75:41:cb:50:f8:6c:dd:dc:22:
8e:74:da:f7:d6:5b:d0:65:c3:a2:fb:38:a3:48:07:
a7:66:0d:ba:3f:1d:39:59:4b:08:3b:db:65:72:16:
cc:62:bf:33:ce:37:63:7e:d3:51:59:ec:13:ef:5a:
9f:77:7e:57:88:d5:32:c0:e9:bd:0b:bc:c6:9d:73:
ea:dc:e0:eb:d4:e4:7a:64:60:bc:8f:81:3f:3b:95:
e1:3a:8c:e4:1b:98:f6:ce:07:c8:8d:da:03:18:23:
64:cf:fc:65:28:85:fe:42:93:eb:7e:b9:c2:61:73:
ba:56:3a:f8:78:d4:16:30:31:ba:3b:9a:10:45:40:
b0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:75:53:14:51:88:E2:FA:98:D7:61:D2:2C:DC:38:B1:98:AA:12:38
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS32181.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.163.0/24
181.214.77.0/24
181.214.146.0/24
181.214.157.0/24
191.96.62.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:2a:f9:24:21:cf:6f:cf:ea:7e:b6:71:ca:01:8d:51:79:aa:
18:a0:0f:cc:16:54:71:cb:d4:c1:b1:62:71:f2:53:f1:15:6d:
b8:78:93:a9:72:91:03:78:e2:fa:61:c0:1c:f8:3e:26:7b:a8:
c7:c7:3b:cd:c6:81:e9:8c:00:d1:80:fd:72:e1:eb:37:fb:d1:
91:ee:75:18:81:8f:55:25:25:d6:fe:e8:2e:24:02:5f:50:7c:
22:3d:ec:8b:66:a0:29:eb:43:e3:f3:93:23:0b:24:d9:bf:49:
39:5f:ee:79:76:b0:a5:72:88:22:d1:97:8f:9c:f0:3f:eb:c9:
8e:ec:be:14:25:de:fc:25:14:15:5c:95:b1:f7:6b:05:c5:77:
eb:16:ec:3d:f9:97:cf:5e:c0:50:0d:bb:4f:95:62:9c:a0:2b:
81:34:cf:5f:50:33:be:d4:79:d8:b1:33:d7:07:c4:a9:ed:2b:
72:71:15:05:fd:88:6a:dd:1b:91:ee:45:cc:c3:29:36:87:8c:
7e:28:d9:4b:33:d3:d3:f3:ca:f7:83:66:6b:36:46:76:c7:7f:
65:3e:6d:98:5f:95:e9:9a:6b:0d:5f:5a:f2:6c:fe:02:e5:1b:
15:8b:5d:b0:6c:be:f2:a3:26:7c:ad:9b:58:a6:6b:fc:47:b2:
50:22:d9:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:18 2024 by rpki-client on console-ams.rpki-client.org