Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS62240.roa
File: AS62240.roa (raw, json)
Hash identifier: uR/j4xwQbj3xtJj/Ie/Y/6ruhR3B/C/Q+OhEbM3qCjk=
Subject key identifier: D4:01:E8:7A:DE:F7:A8:F0:36:1A:0A:E7:68:9B:44:CF:EE:8F:64:30
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 04AC884B90D8226EFC932915907CCA6062976FD0
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS62240.roa
Signing time: Sun 01 Sep 2024 00:00:49 +0000
ROA not before: Sat 31 Aug 2024 23:55:49 +0000
ROA not after: Sun 31 Aug 2025 00:00:49 +0000
asID: 62240
IP address blocks: 45.89.242.0/24 maxlen: 24
45.137.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 05:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:ac:88:4b:90:d8:22:6e:fc:93:29:15:90:7c:ca:60:62:97:6f:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 31 23:55:49 2024 GMT
Not After : Aug 31 00:00:49 2025 GMT
Subject: CN=D401E87ADEF7A8F0361A0AE7689B44CFEE8F6430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:82:82:d0:69:0f:7a:7b:5c:05:9b:91:32:73:
dd:7b:74:d2:99:a6:7e:e9:66:eb:60:02:00:c7:39:
ea:21:dd:6d:46:48:a9:53:8f:e0:4f:2e:28:22:88:
d7:b6:db:39:3b:55:a7:b4:cc:56:2a:9b:72:c8:de:
cf:ff:a3:10:ae:39:ca:e9:e0:9d:19:7a:7b:44:b1:
4f:4a:d5:84:40:d3:9f:b8:f0:97:99:4f:3f:ad:3c:
84:8a:67:7c:ea:f0:2a:f6:b7:fc:9e:7f:de:06:0c:
a6:73:7d:ab:da:2c:ac:1b:3d:22:2d:a7:19:0b:d3:
f3:f8:c6:33:e6:f7:65:7a:78:2d:c4:11:b8:ab:66:
5b:be:90:d8:4a:1e:ea:f0:8f:c4:84:78:66:a9:97:
72:0b:ca:7a:a9:55:a3:60:1b:71:07:17:bf:1c:96:
d2:71:d3:bc:02:04:9d:31:f2:63:89:31:f1:62:60:
5f:3e:c4:e7:81:e8:b3:95:cc:e9:68:6b:c6:40:73:
2a:6b:98:d5:4e:f6:64:80:c8:f6:df:52:20:e6:57:
a6:9c:1f:9b:e1:74:4c:78:26:5a:45:29:41:1a:cb:
7b:1d:f2:af:bf:76:14:79:21:70:87:3b:b0:ff:81:
07:41:f5:0f:3e:eb:1e:ff:5f:3a:28:77:c5:71:73:
31:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:01:E8:7A:DE:F7:A8:F0:36:1A:0A:E7:68:9B:44:CF:EE:8F:64:30
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS62240.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.242.0/24
45.137.126.0/24
Signature Algorithm: sha256WithRSAEncryption
92:3c:8f:b2:aa:29:73:43:cc:a9:cd:e0:6d:37:fe:3b:19:44:
22:87:4d:01:8f:82:aa:72:0a:8d:af:b3:89:b1:a4:ba:df:6e:
bc:a8:f5:08:c8:1f:54:af:7f:b3:18:9e:09:64:04:2d:b4:97:
41:bd:2d:02:6e:ed:e5:75:13:dc:e2:14:a4:34:19:da:d0:be:
32:8a:08:f5:51:7b:41:99:aa:e0:a8:33:ef:8a:ae:c0:d9:31:
ea:f8:92:3c:ea:8e:ca:d7:77:f7:51:38:0a:3a:95:33:ec:65:
a0:a9:e2:5c:d7:39:f1:6b:f2:33:f5:84:c2:0b:97:b3:98:5b:
be:e5:dc:e3:1f:37:e3:a9:f3:65:fa:6d:6f:2a:b1:11:f4:a7:
bf:02:29:6c:2b:42:af:d9:e0:bc:fe:29:67:c8:1d:7e:e3:fd:
e0:3d:2e:f6:9f:81:c2:0d:96:30:55:6a:a4:7d:86:08:b1:de:
f2:a1:95:26:2a:4a:6a:f9:c9:8c:c4:3c:12:f7:88:fc:31:d0:
3c:4a:e0:f9:ac:4d:3f:b0:5f:d1:b4:ee:0b:4b:a9:6b:64:c0:
82:7d:cf:7b:72:04:54:f6:6b:f8:7a:51:66:be:66:aa:7e:b7:
da:d4:cf:a2:fe:c3:bb:21:12:31:ed:45:95:86:b1:a7:f7:b8:
96:a7:73:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:31:47 2025 by rpki-client