Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS53340.roa
File: AS53340.roa (raw, json)
Hash identifier: AKs1mb5yaF5NH15XLQIjpBnXQ6kSopdPGfjYiR1tDyg=
Subject key identifier: F3:EB:52:76:06:50:0D:19:82:1B:B8:47:8F:1A:D6:63:5D:27:9D:B7
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 13D84CB6EFF898C9D872CD4837BD2B4CD9CBE475
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS53340.roa
Signing time: Wed 17 Apr 2024 17:05:16 +0000
ROA not before: Wed 17 Apr 2024 17:00:16 +0000
ROA not after: Wed 16 Apr 2025 17:05:16 +0000
asID: 53340
IP address blocks: 45.89.254.0/24 maxlen: 24
181.214.47.0/24 maxlen: 24
181.214.81.0/24 maxlen: 24
181.214.87.0/24 maxlen: 24
181.215.249.0/24 maxlen: 24
191.96.178.0/24 maxlen: 24
191.96.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 17:37:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:d8:4c:b6:ef:f8:98:c9:d8:72:cd:48:37:bd:2b:4c:d9:cb:e4:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 17 17:00:16 2024 GMT
Not After : Apr 16 17:05:16 2025 GMT
Subject: CN=F3EB527606500D19821BB8478F1AD6635D279DB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:84:21:46:d5:22:2c:a3:59:6c:1e:a7:f2:a9:
06:3f:19:3d:ea:09:83:d4:59:21:eb:23:10:81:9f:
a0:7e:b4:27:7e:dc:3b:8c:74:a4:0a:ed:42:ad:17:
5a:9f:7e:d8:8c:72:68:ec:b9:e3:88:77:fd:51:cf:
2e:b6:02:89:cd:ad:f0:81:92:fd:20:31:ca:81:d8:
60:8c:c2:b6:28:3e:48:5a:29:8b:77:ff:1c:3e:ca:
8f:25:38:31:f5:ad:32:10:0c:18:bc:fb:a1:0e:5b:
96:d9:54:c5:40:48:b4:4a:75:20:35:17:ba:6a:4b:
ad:66:70:59:55:06:04:78:60:3a:89:9e:da:55:4a:
05:b7:b6:8e:50:d8:44:43:dc:5f:b1:44:0c:42:8b:
c5:a0:3e:c8:ef:63:85:fb:15:75:04:02:57:48:ff:
31:72:ee:40:8e:24:8a:81:58:9a:a2:f8:40:b6:0e:
b1:63:a4:34:e4:22:f9:38:1a:bf:92:a7:df:e1:17:
35:46:0a:13:4e:29:dd:70:b9:5a:b2:34:60:2f:99:
85:2c:27:50:bf:c7:b4:f5:19:a3:81:3f:e7:3b:ee:
f5:d8:4b:0e:7e:ab:26:76:b7:1f:16:ed:df:5c:e0:
47:55:38:c2:d4:25:fc:5d:0f:b1:e4:97:5f:81:9d:
ff:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:EB:52:76:06:50:0D:19:82:1B:B8:47:8F:1A:D6:63:5D:27:9D:B7
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS53340.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.254.0/24
181.214.47.0/24
181.214.81.0/24
181.214.87.0/24
181.215.249.0/24
191.96.178.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:3f:a6:48:f9:08:3d:ca:d6:0f:b6:07:41:a6:ef:32:c6:e9:
b9:a5:01:2c:ee:55:6f:d7:32:77:d3:86:e1:ad:d3:b6:69:93:
a1:01:17:5d:63:2a:87:ae:bc:fe:5a:23:84:fc:d3:a6:de:cb:
d7:01:f8:38:a2:3c:c3:df:32:87:b8:62:ca:66:9f:48:c0:39:
07:b8:f9:a5:73:73:80:5f:f9:ea:89:01:74:2f:fc:c7:b0:cc:
3e:d9:ce:3c:0e:61:6e:59:48:ea:01:6d:ee:6a:35:10:eb:d4:
9b:58:b7:a1:57:39:8e:df:7a:f9:9f:91:f6:e5:46:b9:ad:86:
88:1e:a5:5a:3c:60:8e:f6:88:fd:a1:e5:2f:d6:24:8b:bb:34:
73:94:18:38:04:bb:39:ba:0f:f4:a3:b9:9f:d6:83:5c:74:60:
ea:cc:1c:b7:e6:67:f2:06:79:24:2f:2b:35:b4:8e:00:f1:91:
27:31:f1:c3:3d:31:42:35:f5:7e:7b:d1:37:03:de:b1:da:fe:
09:45:5b:0c:a9:65:f6:04:8b:8d:30:fc:58:18:b0:94:30:37:
b2:18:0a:9c:e5:da:66:20:2a:ae:73:a7:8a:09:79:93:57:74:
42:8e:32:66:b9:4a:38:78:81:cb:48:1f:19:f3:67:f1:ad:00:
ab:ed:1c:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 01:27:16 2024 by rpki-client on console-fra.rpki-client.org