Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS46337.roa
File: AS46337.roa (raw, json)
Hash identifier: dathxYU8rTZ7IvXOkl2BsQkpQJkz/iHodQWoR69DhsU=
Subject key identifier: 77:35:52:3E:FE:0D:2D:4C:EB:72:D8:A8:BD:DC:21:9A:93:C1:90:7F
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7281965D9AC5D532B16DE4B3BCF166D19EC08649
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS46337.roa
Signing time: Tue 30 Jan 2024 12:20:54 +0000
ROA not before: Tue 30 Jan 2024 12:15:54 +0000
ROA not after: Tue 28 Jan 2025 12:20:54 +0000
asID: 46337
IP address blocks: 179.61.137.0/24 maxlen: 24
179.61.232.0/24 maxlen: 24
181.214.31.0/24 maxlen: 24
181.214.83.0/24 maxlen: 24
181.214.142.0/24 maxlen: 24
181.214.156.0/24 maxlen: 24
191.96.133.0/24 maxlen: 24
191.96.151.0/24 maxlen: 24
191.96.165.0/24 maxlen: 24
191.101.33.0/24 maxlen: 24
191.101.50.0/24 maxlen: 24
191.101.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 04:39:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:81:96:5d:9a:c5:d5:32:b1:6d:e4:b3:bc:f1:66:d1:9e:c0:86:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 30 12:15:54 2024 GMT
Not After : Jan 28 12:20:54 2025 GMT
Subject: CN=7735523EFE0D2D4CEB72D8A8BDDC219A93C1907F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:08:42:c6:18:0e:6c:26:0f:ee:71:c1:5c:48:
c4:d5:c0:b8:99:9d:21:c5:fc:2b:40:b4:d6:c8:eb:
47:a1:98:43:61:15:30:d1:6f:af:a3:5a:9f:ef:c4:
48:b2:b0:9f:18:aa:b3:59:73:6e:58:81:97:2d:7f:
86:55:ce:de:1f:62:a8:6b:ee:f1:99:19:ae:a1:88:
5d:22:db:13:8b:f5:3e:b4:c2:e2:d6:8a:d0:55:76:
de:33:a4:0e:b9:fd:59:96:3e:5a:a0:b4:8e:07:87:
bd:d8:88:09:ff:14:64:1b:84:a9:5c:a6:12:8f:ae:
e7:67:e9:00:3d:41:e6:af:13:84:a0:1b:97:f6:46:
85:4d:1c:23:37:42:ae:14:83:38:02:1e:96:35:70:
61:3b:54:d9:7a:4a:4d:91:a2:35:f9:6f:4a:c6:13:
28:bb:84:0c:8d:09:f1:cf:8b:dd:1c:a1:b3:d6:9e:
44:30:81:93:ef:01:02:24:6b:1b:3b:bf:e0:df:d0:
8b:e4:88:d5:b8:55:6a:7a:fa:83:11:b0:69:78:f6:
f3:4f:d7:04:cf:2c:48:bb:e0:c2:b0:c8:30:c4:bf:
c0:37:17:49:88:57:73:93:ce:c1:b9:eb:13:5b:17:
16:f8:9d:c0:ec:07:dd:88:a9:ee:fa:c3:d2:26:4c:
58:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:35:52:3E:FE:0D:2D:4C:EB:72:D8:A8:BD:DC:21:9A:93:C1:90:7F
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS46337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.137.0/24
179.61.232.0/24
181.214.31.0/24
181.214.83.0/24
181.214.142.0/24
181.214.156.0/24
191.96.133.0/24
191.96.151.0/24
191.96.165.0/24
191.101.33.0/24
191.101.50.0/24
191.101.241.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:c1:d5:cb:87:1b:9b:52:20:82:c7:73:d5:78:d8:7a:2c:1a:
9e:c7:c6:f4:f4:bd:40:77:14:5c:83:c8:76:14:a8:0f:a9:57:
ba:ca:cd:35:88:0d:54:a6:98:f4:60:f7:5f:02:fb:c9:a3:79:
90:de:e7:47:e1:bc:6c:b3:db:74:35:59:41:62:26:6f:86:80:
85:e8:0c:71:fc:a5:94:53:64:7b:fa:1b:ed:55:46:e3:1d:a5:
0a:84:31:15:ac:79:8d:b7:1f:b3:fd:8a:ca:db:72:b9:ff:62:
9a:11:3a:e0:ab:95:2f:fc:d7:c0:d2:ad:fd:93:77:bf:e3:1f:
15:0f:36:0f:76:a4:38:ef:e7:ad:a3:ff:63:4a:e5:de:5a:95:
01:ef:4b:64:1c:f0:3c:33:de:c9:b5:75:e2:f8:15:57:da:08:
e8:9e:32:03:1c:63:05:ae:03:a8:c8:f2:26:73:1f:73:d0:8c:
19:f8:6f:37:b3:f8:36:92:ea:18:2a:57:1e:07:52:5a:c2:c1:
2b:68:c9:1d:a1:ae:de:ea:55:0a:4b:96:7d:82:0b:16:67:dc:
e4:73:8d:2c:0c:38:1c:96:c8:80:6f:65:51:c2:a1:b6:a2:27:
82:f6:3f:55:49:02:41:85:40:d5:f6:86:cc:8c:22:34:9a:63:
7a:9d:fc:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 08:14:32 2024 by rpki-client on console-ams.rpki-client.org