Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS46337.roa
File: AS46337.roa (raw, json)
Hash identifier: cuscuyLVrR8WDJp5owxdGu+EA4UrxW9HA7iw78XCQgY=
Subject key identifier: 43:BE:21:59:03:D5:2E:F1:96:8E:AC:26:E0:06:FC:CE:EC:44:EB:28
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 58B31E6357117C7908D41AD721EDB0AAE6471489
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS46337.roa
Signing time: Tue 31 Dec 2024 12:53:49 +0000
ROA not before: Tue 31 Dec 2024 12:48:49 +0000
ROA not after: Tue 30 Dec 2025 12:53:49 +0000
asID: 46337
IP address blocks: 179.61.137.0/24 maxlen: 24
179.61.232.0/24 maxlen: 24
181.214.31.0/24 maxlen: 24
181.214.83.0/24 maxlen: 24
181.214.142.0/24 maxlen: 24
181.214.156.0/24 maxlen: 24
191.96.133.0/24 maxlen: 24
191.96.151.0/24 maxlen: 24
191.96.165.0/24 maxlen: 24
191.101.33.0/24 maxlen: 24
191.101.50.0/24 maxlen: 24
191.101.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 15:12:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:b3:1e:63:57:11:7c:79:08:d4:1a:d7:21:ed:b0:aa:e6:47:14:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Dec 31 12:48:49 2024 GMT
Not After : Dec 30 12:53:49 2025 GMT
Subject: CN=43BE215903D52EF1968EAC26E006FCCEEC44EB28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e2:b3:ee:ae:10:4a:96:4a:6e:ba:48:f5:7c:
a6:b5:d8:54:a5:ff:51:4f:96:14:3f:57:5f:92:4a:
a1:f0:67:da:3d:3c:7b:e0:70:2d:cc:12:53:a5:b0:
e4:0a:aa:c7:c1:ae:ca:bc:3b:11:79:ed:1b:57:e8:
83:4c:7b:fd:fd:6f:9a:87:16:72:ac:7f:ad:9d:09:
a9:95:84:b9:11:18:77:fe:09:ba:a2:8a:ca:e4:5f:
ff:d8:18:76:0e:0a:65:ae:89:ea:25:ae:5b:37:d3:
43:72:68:39:f7:ba:87:93:78:13:21:9d:c9:47:0f:
e6:5d:16:02:f8:b7:46:0b:3d:37:78:d8:a1:6a:af:
3f:b6:6c:87:0f:52:80:13:3c:99:e2:a1:33:ae:8b:
2e:e2:d7:8d:0b:8f:f9:4b:4a:95:3e:47:40:84:b6:
91:c7:9a:12:f9:19:fc:f9:eb:98:de:11:d1:d7:49:
58:f8:b7:f1:2e:51:af:17:b9:d6:1d:86:15:17:86:
59:fa:30:a1:19:b9:7c:d6:75:31:fb:ba:cc:80:2e:
f1:67:ed:0d:f5:df:2a:b9:fc:af:48:c0:fc:52:3f:
19:6b:44:33:7f:71:c3:60:9a:a6:53:95:a0:81:7a:
af:91:83:5f:4e:f8:2d:31:a5:02:a3:e3:02:84:e7:
3d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:BE:21:59:03:D5:2E:F1:96:8E:AC:26:E0:06:FC:CE:EC:44:EB:28
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS46337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.137.0/24
179.61.232.0/24
181.214.31.0/24
181.214.83.0/24
181.214.142.0/24
181.214.156.0/24
191.96.133.0/24
191.96.151.0/24
191.96.165.0/24
191.101.33.0/24
191.101.50.0/24
191.101.241.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:27:2b:0a:42:af:06:a1:28:8e:d1:6d:55:6d:2d:ec:5e:8b:
e8:a0:c1:83:4a:45:17:f6:5c:be:84:0c:29:ca:32:d4:d1:61:
ed:f4:5e:35:fb:1c:6e:9e:d8:2e:8d:88:4e:d5:f7:00:fd:66:
6c:c7:d6:7d:63:1b:50:63:52:b3:73:78:53:29:ce:84:42:b5:
d1:1c:8e:69:ff:e5:1a:90:c5:0a:de:49:83:ce:d4:86:3c:e9:
a1:25:af:ba:35:12:4f:53:c1:20:fb:b6:99:dc:44:5f:6c:2e:
03:49:04:9a:34:7e:97:3a:1e:fd:5d:9d:75:67:cb:df:05:69:
28:18:95:f8:19:09:05:9f:e0:74:74:64:71:d5:99:4b:d7:42:
c6:fa:64:45:44:b6:1d:59:5f:4b:5c:8a:d1:3a:10:f6:23:e2:
de:69:f4:c8:48:1c:ba:71:95:7a:04:92:01:4d:bc:32:53:94:
cd:2c:ff:c7:95:62:29:74:33:8f:e9:b5:42:48:6a:cd:99:0a:
45:f0:77:dc:b6:53:e4:66:54:64:13:f8:e9:a9:45:46:79:ad:
b3:fe:d4:b1:07:eb:6b:29:b6:c1:51:3e:ff:7e:7d:15:9d:50:
4a:ed:08:aa:72:2f:0e:08:7e:da:b1:3d:41:40:a1:c1:bd:25:
1f:e7:a1:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:19 2025 by rpki-client