Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS54252.roa
File: AS54252.roa (raw, json)
Hash identifier: hXeQ+LOfJQKvhnkP8JxcHXOWTZk0glrZD7jku64D3hc=
Subject key identifier: 73:6F:BC:37:68:52:8D:DE:7D:F7:48:F8:BF:EB:5F:85:96:72:8D:8C
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5D9D311190A595CA1EC1F97C2C5C9681C58530FB
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS54252.roa
Signing time: Tue 05 Nov 2024 00:00:38 +0000
ROA not before: Mon 04 Nov 2024 23:55:38 +0000
ROA not after: Tue 04 Nov 2025 00:00:38 +0000
asID: 54252
IP address blocks: 179.61.208.0/24 maxlen: 24
181.215.219.0/24 maxlen: 24
191.96.9.0/24 maxlen: 24
191.101.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:9d:31:11:90:a5:95:ca:1e:c1:f9:7c:2c:5c:96:81:c5:85:30:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Nov 4 23:55:38 2024 GMT
Not After : Nov 4 00:00:38 2025 GMT
Subject: CN=736FBC3768528DDE7DF748F8BFEB5F8596728D8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:56:03:ec:7f:80:ec:48:22:0a:95:91:37:ce:
60:fe:33:29:1d:a8:26:c3:0a:e6:fd:08:79:ff:65:
51:2c:bc:94:78:62:98:0d:60:30:cf:cd:90:db:24:
3d:6e:b3:a6:c3:5c:60:b6:76:9f:ca:c0:a3:a0:e1:
47:6a:e3:cd:e8:77:8b:bb:5b:84:45:74:e8:8d:c4:
17:58:b8:92:77:00:58:a5:0f:6f:1c:51:67:ec:c7:
a2:d8:c9:85:fd:39:f5:9b:df:19:91:1c:ae:13:2e:
8f:85:2f:56:e6:43:ff:54:e7:2d:bb:a2:0e:b3:50:
71:64:7d:7a:82:07:59:d6:04:1d:b3:89:16:5b:87:
4b:25:3b:52:18:b9:23:01:6f:5c:e6:5c:08:9a:1a:
50:99:a2:b5:01:aa:aa:48:9b:eb:47:8a:af:31:6e:
e6:1a:96:7d:53:bb:3f:19:ca:43:ad:fc:2a:97:f9:
fe:ca:f7:34:fe:92:aa:61:38:41:fc:f5:92:52:f6:
dd:95:73:09:96:18:95:08:f8:f9:19:ee:95:60:3f:
3c:a1:f3:e5:f7:2a:ea:ff:1f:9c:7e:71:ce:ca:d7:
cb:3a:10:47:7e:2f:4d:b5:69:d6:07:39:fb:81:86:
fa:44:92:b6:b9:5a:9d:93:fc:03:f3:ca:59:df:07:
aa:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:6F:BC:37:68:52:8D:DE:7D:F7:48:F8:BF:EB:5F:85:96:72:8D:8C
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS54252.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.208.0/24
181.215.219.0/24
191.96.9.0/24
191.101.21.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:a7:0a:25:10:1f:95:31:6a:9e:9b:81:1d:e1:1d:4c:62:f5:
13:2a:22:80:cd:65:ab:c8:ca:4c:cb:88:57:e7:aa:7a:55:9f:
95:74:4d:27:19:4e:f7:bf:f5:f7:08:90:81:a9:63:d1:f2:08:
e3:ce:5c:2f:9e:f4:09:4b:03:32:6f:19:e0:01:f5:9b:e8:d1:
4b:1e:ed:cb:42:c7:d9:fa:3d:91:10:1f:2d:2a:15:d3:ae:75:
88:7a:0d:87:9d:1a:7b:a2:08:a2:05:22:ce:72:0f:44:d5:19:
d0:1c:02:1b:7e:75:c6:26:0a:69:d3:99:41:96:3f:44:c9:5f:
56:48:82:0a:e2:2a:13:1e:40:d7:e8:98:ee:a4:fb:0c:30:f8:
44:b9:1b:ca:45:c9:ba:f0:e1:71:3b:ea:48:5a:30:f2:26:d6:
00:49:b3:c1:05:18:8c:cf:2a:08:b2:a7:34:58:fd:6b:4a:ce:
09:cf:3b:66:b8:83:b4:22:5e:c7:6c:61:f4:04:26:0b:cf:b0:
c5:09:be:6f:1d:2a:be:54:23:a7:3c:2c:fe:0c:29:b1:07:31:
86:0d:3d:cd:3a:67:68:46:ea:30:06:16:a6:d6:aa:56:1f:07:
de:24:57:4f:70:26:a0:75:6d:33:80:25:62:6b:2c:8c:ea:37:
cc:b6:85:d6
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUXZ0xEZCllcoewfl8LFyWgcWFMPswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDExMDQyMzU1MzhaFw0yNTExMDQwMDAwMzhaMDMxMTAvBgNV
BAMTKDczNkZCQzM3Njg1MjhEREU3REY3NDhGOEJGRUI1Rjg1OTY3MjhEOEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQVgPsf4DsSCIKlZE3zmD+Mykd
qCbDCub9CHn/ZVEsvJR4YpgNYDDPzZDbJD1us6bDXGC2dp/KwKOg4Udq483od4u7
W4RFdOiNxBdYuJJ3AFilD28cUWfsx6LYyYX9OfWb3xmRHK4TLo+FL1bmQ/9U5y27
og6zUHFkfXqCB1nWBB2ziRZbh0slO1IYuSMBb1zmXAiaGlCZorUBqqpIm+tHiq8x
buYaln1Tuz8ZykOt/CqX+f7K9zT+kqphOEH89ZJS9t2VcwmWGJUI+PkZ7pVgPzyh
8+X3Kur/H5x+cc7K18s6EEd+L021adYHOfuBhvpEkra5Wp2T/APzylnfB6rTAgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQUc2+8N2hSjd5990j4v+tfhZZyjYwwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTNTQyNTIucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBACzPdAD
BAC119sDBAC/YAkDBAC/ZRUwDQYJKoZIhvcNAQELBQADggEBAG2nCiUQH5Uxap6b
gR3hHUxi9RMqIoDNZavIykzLiFfnqnpVn5V0TScZTve/9fcIkIGpY9HyCOPOXC+e
9AlLAzJvGeAB9Zvo0Use7ctCx9n6PZEQHy0qFdOudYh6DYedGnuiCKIFIs5yD0TV
GdAcAht+dcYmCmnTmUGWP0TJX1ZIggriKhMeQNfomO6k+www+ES5G8pFybrw4XE7
6khaMPIm1gBJs8EFGIzPKgiypzRY/WtKzgnPO2a4g7QiXsdsYfQEJgvPsMUJvm8d
Kr5UI6c8LP4MKbEHMYYNPc06Z2hG6jAGFqbWqlYfB94kV09wJqB1bTOAJWJrLIzq
N8y2hdY=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:44:49 2024 by rpki-client on console-fra.rpki-client.org