Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS54252.roa
File: AS54252.roa (raw, json)
Hash identifier: 1Nd2j/qBUOJY6ckW/HpktJ2w0K1W4UATw6gVjrMo/hM=
Subject key identifier: D4:28:5F:D1:B9:33:C0:E3:11:F4:B1:0F:DB:02:A5:59:0C:12:16:34
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 580CD7621D8D297D729E68C59FDCDF7E07DB4397
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS54252.roa
Signing time: Fri 12 Apr 2024 00:00:13 +0000
ROA not before: Thu 11 Apr 2024 23:55:13 +0000
ROA not after: Fri 11 Apr 2025 00:00:13 +0000
asID: 54252
IP address blocks: 179.61.208.0/24 maxlen: 24
179.61.225.0/24 maxlen: 24
181.215.219.0/24 maxlen: 24
191.96.9.0/24 maxlen: 24
191.101.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:0c:d7:62:1d:8d:29:7d:72:9e:68:c5:9f:dc:df:7e:07:db:43:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 11 23:55:13 2024 GMT
Not After : Apr 11 00:00:13 2025 GMT
Subject: CN=D4285FD1B933C0E311F4B10FDB02A5590C121634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:25:86:f1:b5:54:61:04:5a:f9:da:1e:c0:3e:
5c:ee:4f:95:e2:90:d0:59:95:75:11:c7:2e:fa:1d:
5b:b3:f3:31:a2:91:48:a4:57:23:22:60:2f:5e:91:
01:73:8f:e3:5d:02:a4:d6:0d:aa:eb:52:2d:1e:87:
09:ae:45:94:3b:1a:10:fd:db:ca:f8:dc:b6:50:ee:
27:fa:38:1c:2f:94:17:79:71:7e:74:26:3a:80:d5:
20:b7:14:f3:bf:46:d7:1e:c9:16:bd:9d:92:4a:09:
7d:08:a4:9d:2e:ae:e0:9a:06:8c:02:d0:07:a5:15:
c2:5d:4e:71:bc:a6:18:44:eb:dc:f6:04:6d:ab:24:
79:71:56:88:50:87:7e:72:bc:d3:24:32:61:c7:84:
84:c9:49:d2:83:b6:47:05:46:7b:08:9b:5c:3d:2e:
0e:5d:59:f5:1d:fa:c1:3c:5d:da:eb:54:c2:00:47:
7a:c9:19:0e:c8:70:7a:f3:c6:f7:00:ba:94:58:39:
ac:44:1c:40:d2:7e:ed:23:d0:0f:f3:1d:23:a6:f7:
e3:ac:a0:4b:70:b5:c1:49:70:4b:4c:96:76:ab:b8:
5d:ec:41:7d:91:91:fb:30:6d:2a:23:34:8d:d5:b4:
b5:63:b6:4b:9f:d0:a0:ce:00:33:4e:6b:0e:77:5a:
a2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:28:5F:D1:B9:33:C0:E3:11:F4:B1:0F:DB:02:A5:59:0C:12:16:34
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS54252.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.208.0/24
179.61.225.0/24
181.215.219.0/24
191.96.9.0/24
191.101.21.0/24
Signature Algorithm: sha256WithRSAEncryption
49:47:4f:f3:03:d8:2b:6b:e8:00:e2:6f:2b:3d:26:2d:6b:fa:
09:2e:bf:9b:6e:73:9d:7a:f4:8f:15:da:99:ab:ac:5c:86:af:
4a:ef:2f:98:dc:b5:50:6f:de:d8:f6:41:ea:ab:8e:05:e0:9e:
9a:ac:0c:5f:c6:34:8b:7c:7a:63:e2:6e:82:6b:c1:63:db:79:
f8:6a:d4:56:4d:ce:3d:d7:05:df:c4:27:17:2c:be:a9:18:55:
56:07:e1:cc:82:cd:65:23:d1:69:09:cd:6c:11:f4:19:cf:1f:
ea:df:bf:37:7c:e0:47:ef:c0:8e:da:a3:3c:d3:09:91:f5:ef:
b5:a3:a5:59:a5:87:8d:2e:03:50:36:9d:23:db:91:a3:f5:cf:
7b:cd:b8:43:4f:2f:f3:c4:de:b2:e3:a2:21:26:41:c9:81:98:
72:2c:08:c6:6b:06:e4:7c:66:7f:cd:82:dc:29:e3:6f:9e:fd:
de:28:d5:2d:26:30:95:64:ed:98:48:ac:f1:c0:df:57:1a:e8:
3b:6d:39:d0:fa:da:8a:b6:e5:a1:74:e4:bf:42:14:5d:c7:d5:
5f:dd:77:73:fb:39:ba:78:a4:82:8d:3e:6f:e5:2e:c6:80:24:
d6:85:39:cd:cb:2d:16:f1:9d:d0:4a:8b:97:e0:d4:f6:9b:05:
61:2b:35:f5
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgIUWAzXYh2NKX1ynmjFn9zffgfbQ5cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDA0MTEyMzU1MTNaFw0yNTA0MTEwMDAwMTNaMDMxMTAvBgNV
BAMTKEQ0Mjg1RkQxQjkzM0MwRTMxMUY0QjEwRkRCMDJBNTU5MEMxMjE2MzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrJYbxtVRhBFr52h7APlzuT5Xi
kNBZlXURxy76HVuz8zGikUikVyMiYC9ekQFzj+NdAqTWDarrUi0ehwmuRZQ7GhD9
28r43LZQ7if6OBwvlBd5cX50JjqA1SC3FPO/RtceyRa9nZJKCX0IpJ0uruCaBowC
0AelFcJdTnG8phhE69z2BG2rJHlxVohQh35yvNMkMmHHhITJSdKDtkcFRnsIm1w9
Lg5dWfUd+sE8XdrrVMIAR3rJGQ7IcHrzxvcAupRYOaxEHEDSfu0j0A/zHSOm9+Os
oEtwtcFJcEtMlnaruF3sQX2RkfswbSojNI3VtLVjtkuf0KDOADNOaw53WqIVAgMB
AAGjggIhMIICHTAdBgNVHQ4EFgQU1Chf0bkzwOMR9LEP2wKlWQwSFjQwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTNTQyNTIucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwNwYIKwYBBQUHAQcBAf8EKDAmMCQEAgABMB4DBACzPdAD
BACzPeEDBAC119sDBAC/YAkDBAC/ZRUwDQYJKoZIhvcNAQELBQADggEBAElHT/MD
2Ctr6ADibys9Ji1r+gkuv5tuc5169I8V2pmrrFyGr0rvL5jctVBv3tj2QeqrjgXg
npqsDF/GNIt8emPiboJrwWPbefhq1FZNzj3XBd/EJxcsvqkYVVYH4cyCzWUj0WkJ
zWwR9BnPH+rfvzd84EfvwI7aozzTCZH177WjpVmlh40uA1A2nSPbkaP1z3vNuENP
L/PE3rLjoiEmQcmBmHIsCMZrBuR8Zn/Ngtwp42+e/d4o1S0mMJVk7ZhIrPHA31ca
6DttOdD62oq25aF05L9CFF3H1V/dd3P7Obp4pIKNPm/lLsaAJNaFOc3LLRbxndBK
i5fg1PabBWErNfU=
-----END CERTIFICATE-----
Generated at Wed May 8 16:41:39 2024 by rpki-client on console-ams.rpki-client.org