Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS400866.roa
File: AS400866.roa (raw, json)
Hash identifier: zSDT/c4sKGgp13Rw0J6pu9INg7GHWA9uKkOce/GC+o8=
Subject key identifier: 77:10:DA:CE:DC:4F:E5:A4:15:9B:69:49:68:23:74:32:2F:6F:34:CA
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 281E43357891C9B6294CB2D7A4EBD0340C779858
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS400866.roa
Signing time: Thu 09 May 2024 00:02:02 +0000
ROA not before: Wed 08 May 2024 23:57:02 +0000
ROA not after: Thu 08 May 2025 00:02:02 +0000
asID: 400866
IP address blocks: 179.61.140.0/24 maxlen: 24
181.214.39.0/24 maxlen: 24
181.214.170.0/24 maxlen: 24
181.214.207.0/24 maxlen: 24
181.214.251.0/24 maxlen: 24
181.215.91.0/24 maxlen: 24
181.215.112.0/24 maxlen: 24
181.215.189.0/24 maxlen: 24
191.96.122.0/24 maxlen: 24
191.101.181.0/24 maxlen: 24
191.101.189.0/24 maxlen: 24
191.101.198.0/24 maxlen: 24
191.101.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:1e:43:35:78:91:c9:b6:29:4c:b2:d7:a4:eb:d0:34:0c:77:98:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 8 23:57:02 2024 GMT
Not After : May 8 00:02:02 2025 GMT
Subject: CN=7710DACEDC4FE5A4159B6949682374322F6F34CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e4:92:82:62:09:80:f3:ef:49:4b:f5:1d:c7:
83:17:3a:79:19:38:3c:77:86:07:5a:44:47:b7:23:
db:9f:43:d6:21:14:ee:1a:2a:26:16:43:a2:1f:2d:
06:c8:8a:19:ff:db:d8:f3:0e:6e:78:68:54:91:e0:
7e:45:04:10:1a:ae:f0:25:8b:8d:80:51:97:2d:a7:
75:37:c1:8b:17:50:69:b2:f1:69:4e:98:8b:09:f7:
e1:5a:52:b6:bb:22:83:62:05:28:48:e6:c6:ad:0d:
e9:02:5d:29:86:7c:b8:b1:b1:41:0d:b4:79:c8:04:
7f:36:00:9a:ac:1b:bf:a9:ae:16:fd:06:3f:e8:24:
fd:ea:2b:8c:0e:a4:67:67:52:cd:55:2a:e2:56:a6:
cb:f8:7b:53:87:40:8f:6a:51:6d:7c:84:fb:9f:c4:
aa:9b:d6:83:70:c1:1b:a7:03:9f:88:36:cd:af:1c:
1e:76:fe:79:6d:00:8b:c7:8f:6f:31:cd:fe:11:51:
ba:a7:67:7c:4d:c6:12:02:5d:f7:f6:8b:ae:65:14:
2c:33:ec:d1:64:bb:f6:29:20:cb:4e:89:4b:fc:76:
62:eb:ed:71:b1:ae:e2:c5:ff:c8:45:f2:04:7d:0a:
d7:8a:d6:22:cd:f7:fb:7d:02:63:47:8c:be:3c:fb:
36:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:10:DA:CE:DC:4F:E5:A4:15:9B:69:49:68:23:74:32:2F:6F:34:CA
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS400866.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.140.0/24
181.214.39.0/24
181.214.170.0/24
181.214.207.0/24
181.214.251.0/24
181.215.91.0/24
181.215.112.0/24
181.215.189.0/24
191.96.122.0/24
191.101.181.0/24
191.101.189.0/24
191.101.198.0/24
191.101.252.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:bf:9d:38:58:7c:a5:a6:b2:39:52:b5:d6:d3:76:8a:e9:cf:
36:0f:2a:a7:c4:05:af:22:90:0e:ab:37:d9:44:86:55:f2:83:
d6:97:09:bc:8f:8e:c1:2d:ea:0c:01:68:72:ed:bf:0f:84:3d:
4d:d2:78:35:eb:9e:7f:44:ea:03:57:4c:ff:1e:b3:30:19:72:
49:17:c3:e4:da:e9:04:71:c3:eb:74:ad:eb:c4:b1:b7:d8:23:
f0:c2:4e:38:81:76:98:57:41:28:eb:d7:f9:4c:49:4d:d7:9b:
c8:58:da:4c:da:d6:a4:1b:77:55:05:9a:a0:90:bd:62:51:a3:
36:73:0f:93:da:6c:0d:8c:7d:bc:d5:a4:12:4c:25:97:a5:4a:
61:4a:d8:c2:b9:af:82:24:0a:15:9a:5b:b3:4d:6a:05:80:c2:
d4:a3:89:9e:cd:4a:43:3d:e4:1b:5d:5f:f1:93:ef:f6:df:a9:
77:16:1f:a9:4c:5c:b3:02:3b:04:7f:fa:36:26:4f:c3:9d:82:
ce:6e:b4:d7:d7:f1:2b:81:74:72:34:90:5d:ed:30:36:a9:9c:
e8:d8:64:71:6a:bc:6e:e6:4a:ee:58:29:5d:91:7d:c7:c6:f5:
92:74:bb:4a:59:33:81:96:ab:b5:9c:e1:1c:49:cd:54:e9:8e:
77:a3:97:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 15:37:06 2024 by rpki-client on console-ams.rpki-client.org