Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211440.roa
File: AS211440.roa (raw, json)
Hash identifier: 2xyJ2JCWhBUr8K+SQKGk6mwpsz54KcrjmzjnZ/bkJqQ=
Subject key identifier: 1F:A3:10:30:68:36:9E:C4:33:30:3F:32:CA:36:BD:5A:D3:68:28:E2
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 7CB1C8DD6BA3CF2A0729E085AE9935F45C5AFF9D
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211440.roa
Signing time: Tue 21 May 2024 00:05:16 +0000
ROA not before: Tue 21 May 2024 00:00:16 +0000
ROA not after: Tue 20 May 2025 00:05:16 +0000
asID: 211440
IP address blocks: 45.146.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:b1:c8:dd:6b:a3:cf:2a:07:29:e0:85:ae:99:35:f4:5c:5a:ff:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: May 21 00:00:16 2024 GMT
Not After : May 20 00:05:16 2025 GMT
Subject: CN=1FA3103068369EC433303F32CA36BD5AD36828E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:38:98:cf:7e:f1:61:23:0c:01:f3:46:d0:b3:
c8:a0:15:82:40:6c:e7:11:0a:f5:0d:8b:2a:58:ae:
42:5f:ae:3a:e3:9e:e9:e6:cc:54:00:7b:95:15:d6:
3e:25:d8:e7:ac:08:8b:80:01:34:c7:16:34:82:c9:
66:e3:c7:d6:7c:6a:4e:18:f3:cf:d3:aa:e5:c3:2e:
84:28:81:6c:4d:99:24:a0:c9:a3:75:cd:50:51:37:
9b:1f:8b:34:f4:e8:ef:77:31:36:cd:bb:d0:0b:fc:
35:99:5f:26:74:ed:21:64:e1:bf:e0:44:89:ca:8c:
f4:2d:c6:08:f7:ac:3f:6a:a1:65:65:51:b5:d8:6b:
a2:7e:60:da:0e:87:e8:30:dc:c3:bd:30:3a:68:f2:
b5:24:a8:c3:93:fb:8f:90:cb:f2:25:1d:c2:49:d7:
0b:48:bf:df:d9:8b:01:60:38:a3:4d:7a:f3:82:48:
03:75:98:3c:f3:fc:78:21:c4:7c:05:1f:a1:72:e0:
13:49:c5:84:dd:13:04:78:02:0a:38:aa:e9:6e:82:
e8:73:3a:b9:6b:0e:40:48:df:5f:08:96:04:75:ec:
2b:bc:f4:dc:19:bf:61:b7:6a:f5:ba:88:3c:5c:1b:
ce:c6:66:6b:5b:4b:7c:09:89:7b:75:76:c4:41:31:
0e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A3:10:30:68:36:9E:C4:33:30:3F:32:CA:36:BD:5A:D3:68:28:E2
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211440.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.83.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:14:a8:b0:74:33:21:ca:f8:47:11:4d:08:8d:d8:d2:bd:71:
f9:05:48:e6:58:58:04:8e:ba:4e:08:4f:36:78:a2:02:ae:fc:
dd:fc:94:c1:3a:11:db:6d:4f:3e:cb:e4:b9:cb:a3:c7:c6:5e:
3d:aa:58:8f:24:c4:d7:fe:31:94:df:1a:57:82:74:7c:02:6b:
16:48:68:b4:71:40:04:54:69:5c:f0:f9:d7:24:e9:28:6c:64:
52:b8:99:82:02:71:d7:3d:20:34:8c:c1:67:24:b5:21:fc:af:
3f:f0:d2:f4:17:06:b0:e6:46:2f:4e:f6:eb:42:45:13:98:a1:
f7:d8:ed:0d:c6:0a:92:84:a8:13:a8:a4:20:20:87:57:86:77:
9e:10:e5:a9:cc:76:6c:17:b0:70:b9:66:45:c1:4b:40:85:41:
c9:ef:a1:27:95:17:78:6f:1d:34:05:a5:e2:dd:44:73:b8:d7:
dc:31:d5:76:18:a6:9c:b1:77:49:f2:e1:44:35:d9:7b:f1:b2:
e7:bc:5c:49:b8:bd:6f:6b:33:85:22:9a:b3:8e:2d:ca:86:f5:
98:a0:15:e9:e8:11:df:f8:9c:fc:2d:ec:1f:a8:33:df:5c:9e:
f3:22:5d:1e:18:b3:60:3e:14:b8:1e:fc:ee:d7:c1:73:60:4f:
d2:86:0b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 23:14:42 2024 by rpki-client on console-fra.rpki-client.org