Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS53340.roa
File: AS53340.roa (raw, json)
Hash identifier: 9QocksP7typbpBd86qdcsjs3bW1bNE+sWWMkhkqKVlg=
Subject key identifier: B2:B4:1F:F5:02:43:36:38:B9:A1:DE:50:13:13:CC:A2:42:B2:1A:01
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 07D92EF259054DAB4ED37D5FD0562BE7A6EA5C3E
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS53340.roa
Signing time: Wed 14 Aug 2024 14:30:02 +0000
ROA not before: Wed 14 Aug 2024 14:25:02 +0000
ROA not after: Wed 13 Aug 2025 14:30:02 +0000
asID: 53340
IP address blocks: 45.89.254.0/24 maxlen: 24
181.214.47.0/24 maxlen: 24
181.214.81.0/24 maxlen: 24
181.214.87.0/24 maxlen: 24
181.215.249.0/24 maxlen: 24
191.96.178.0/24 maxlen: 24
191.96.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:d9:2e:f2:59:05:4d:ab:4e:d3:7d:5f:d0:56:2b:e7:a6:ea:5c:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 14 14:25:02 2024 GMT
Not After : Aug 13 14:30:02 2025 GMT
Subject: CN=B2B41FF502433638B9A1DE501313CCA242B21A01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:75:cb:db:af:d5:4d:5d:e3:9e:2d:17:b0:dc:
55:09:71:4c:b3:ce:39:8a:5a:d5:59:e2:80:ce:43:
f5:9c:da:f2:72:41:37:d0:e4:5e:3c:58:36:db:d4:
88:99:09:f9:3e:25:a5:1f:da:72:07:5b:ba:e8:e5:
e3:33:6b:d9:b1:18:b0:7c:86:54:cd:68:d2:fd:73:
44:a7:32:52:0a:19:08:55:6b:25:d5:c6:07:d7:7d:
64:03:09:64:1b:a9:3e:61:5b:61:82:63:a7:c5:6e:
ca:c0:bb:51:0e:e7:34:68:2d:84:66:ac:74:2c:4b:
cf:a0:8c:a8:fc:77:01:fa:75:e0:c0:cd:28:14:34:
8b:7a:c5:59:96:d3:21:23:41:a9:2a:20:0b:a1:fc:
58:90:61:13:d9:e5:2a:2f:1e:45:5e:e5:e2:94:83:
8e:48:75:4d:d2:72:b5:ad:42:01:55:5a:1c:3e:4b:
19:e7:d0:04:e1:cb:51:ef:6a:5e:06:e9:00:c8:c3:
e5:fa:0f:ff:73:b3:66:5f:54:d6:7d:dd:78:41:db:
c1:f5:f1:50:85:a0:94:0b:99:7e:87:61:cb:b9:d8:
fb:ec:62:37:69:f2:58:fc:61:52:65:14:4f:2c:10:
b3:34:85:06:a9:c8:02:2c:56:94:19:f0:02:9e:2a:
5b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:B4:1F:F5:02:43:36:38:B9:A1:DE:50:13:13:CC:A2:42:B2:1A:01
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS53340.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.254.0/24
181.214.47.0/24
181.214.81.0/24
181.214.87.0/24
181.215.249.0/24
191.96.178.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:73:f8:f5:c9:6b:57:55:4e:ab:47:f1:cd:3f:a3:a0:6d:68:
10:92:2e:06:11:c7:8d:01:dd:b3:f0:10:7a:ad:5c:c1:89:11:
82:dc:9c:47:9f:00:26:00:ff:53:5b:fd:a9:fe:90:6b:7a:64:
aa:ee:83:c8:56:bf:f0:75:24:e2:be:4d:e6:e4:52:39:0b:08:
84:d5:71:fa:42:9d:fe:b5:c0:7e:7d:a3:65:9c:3e:73:11:3e:
ed:29:7f:45:d7:58:45:88:c0:f1:73:ef:6b:b5:f5:b9:e5:c7:
3e:02:f2:ef:50:aa:6e:42:b1:5f:79:6c:e4:46:9c:7f:dc:64:
3b:bc:82:e8:e2:c9:12:1b:b8:72:dc:c9:ea:25:fe:4b:b5:97:
65:9a:19:18:5a:d1:f8:d8:66:b6:81:44:27:b5:df:2c:f5:8c:
95:13:91:0a:cb:92:00:fb:20:f3:b7:cb:ff:0f:1c:52:b9:34:
a0:59:57:4c:9d:68:c0:f5:ca:52:f2:83:ff:05:1d:67:8a:a9:
2e:e2:0d:77:44:e0:df:93:09:4c:4a:27:bd:f1:cf:ea:8f:0a:
cc:1c:39:b4:a6:6b:c4:44:6d:28:0e:90:72:08:80:4d:de:7f:
1e:c3:a6:53:70:1d:1a:2b:97:a9:46:32:ab:18:30:79:56:5f:
91:c2:6c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:44:49 2024 by rpki-client on console-fra.rpki-client.org