Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50304.roa
File: AS50304.roa (raw, json)
Hash identifier: SV7+pyO4U5/yS8pM0pl2tYZ7Gu7iyBTIOI1baM5mERI=
Subject key identifier: 51:87:DA:DA:19:4A:93:2B:A4:46:1A:27:96:58:FC:05:8E:8F:70:21
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 77E11A5AC5AB750447EF0370C2EC3CF9E6AE4A43
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50304.roa
Signing time: Mon 25 Nov 2024 12:38:44 +0000
ROA not before: Mon 25 Nov 2024 12:33:44 +0000
ROA not after: Mon 24 Nov 2025 12:38:44 +0000
asID: 50304
IP address blocks: 181.214.3.0/24 maxlen: 24
181.214.15.0/24 maxlen: 24
181.214.19.0/24 maxlen: 24
181.214.28.0/24 maxlen: 24
181.214.32.0/24 maxlen: 24
185.135.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Feb 2025 19:35:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:e1:1a:5a:c5:ab:75:04:47:ef:03:70:c2:ec:3c:f9:e6:ae:4a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Nov 25 12:33:44 2024 GMT
Not After : Nov 24 12:38:44 2025 GMT
Subject: CN=5187DADA194A932BA4461A279658FC058E8F7021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1b:ef:bf:b1:27:88:40:30:f0:83:78:c1:1f:
74:82:86:88:b5:65:a7:24:b8:a4:e5:e7:b8:c6:58:
a1:53:89:19:2c:b8:63:57:91:24:ba:0c:14:0d:4f:
2e:f0:ce:71:1e:3d:b7:c1:94:ec:ad:b9:42:b2:e3:
c3:cc:80:ad:de:38:ea:16:08:d2:ca:ef:28:68:4f:
71:52:bb:7f:1e:61:80:04:34:4e:b5:db:21:01:59:
e0:b2:09:d4:7b:68:62:86:7e:53:13:cd:f5:89:48:
08:54:68:b3:9f:58:9d:1f:21:27:22:d1:a5:9a:7f:
9c:ee:3c:f4:9b:2a:81:bd:04:e6:2e:68:f1:4c:ed:
11:23:ce:60:75:f0:04:6a:65:06:4a:dc:b8:36:ea:
89:c3:c1:fd:02:52:18:fd:0d:17:41:94:09:2a:93:
40:aa:f6:1f:4e:c5:f1:8c:08:ea:b7:9a:92:6e:e5:
2c:a7:d3:45:c0:b1:42:d0:1f:5b:d0:73:5c:90:13:
d6:55:75:87:20:d6:57:a4:dc:08:c7:85:bd:16:76:
eb:47:70:9e:6c:21:b6:f4:d6:a8:b3:fe:06:20:da:
7d:b6:40:ee:fc:cd:16:47:63:03:de:49:19:00:f0:
8f:2a:f5:92:16:d9:57:a8:b5:9a:6c:10:1f:bd:cb:
64:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:87:DA:DA:19:4A:93:2B:A4:46:1A:27:96:58:FC:05:8E:8F:70:21
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50304.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.3.0/24
181.214.15.0/24
181.214.19.0/24
181.214.28.0/24
181.214.32.0/24
185.135.10.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:04:cc:70:75:f6:16:7c:64:dd:54:33:9c:c7:fd:9e:ac:27:
74:71:93:0f:3e:57:04:a8:a0:f6:ed:d9:c0:a6:2f:ea:81:36:
41:a6:28:28:ba:2f:34:5a:86:f4:3d:80:1f:7e:84:30:29:a2:
3e:0f:ff:e6:3a:26:8d:6d:7a:a8:18:b4:74:6e:13:41:3e:61:
a5:c9:d3:a4:f6:e0:01:59:23:c3:d9:6c:09:f1:e1:de:46:7e:
46:99:4f:7f:2b:d5:ff:34:ca:1b:6d:db:72:99:dd:ea:ae:f2:
c0:fc:9f:94:a2:52:dd:c8:cf:0c:68:d3:f2:73:6f:b6:fc:3d:
ea:f1:35:73:06:92:ad:44:74:b6:63:85:4c:34:87:41:9f:e0:
22:e1:b0:f8:fe:68:b5:81:60:4e:80:c2:1e:63:04:b1:dd:15:
65:b4:ef:91:79:84:69:f1:b2:eb:e2:5a:6f:26:b2:5c:b3:13:
0b:39:98:b3:d8:87:1c:4e:c7:d6:8c:3f:ab:31:35:10:74:b6:
50:b4:74:39:f8:e0:d8:55:ff:7d:e4:c1:15:18:35:1f:c1:8a:
69:9f:16:46:d7:fa:79:d3:0a:55:b1:0f:32:57:08:2e:e3:3b:
23:ba:b4:d6:33:1d:ec:fe:2a:25:ca:b6:ab:00:b5:8d:5e:7e:
24:30:7f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 08:59:34 2025 by rpki-client