Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS212238.roa
File: AS212238.roa (raw, json)
Hash identifier: HBBsJnFmVVbellvIZS39Mm5gk2KCODEM3IctTgWOyIM=
Subject key identifier: F3:A1:9B:C7:9F:F8:B1:0E:F0:34:72:35:A5:E2:F0:DD:44:5E:84:AF
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 6BD4235C661ABCAB5B803F6B3242283750E29890
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS212238.roa
Signing time: Sat 16 Dec 2023 00:00:05 +0000
ROA not before: Fri 15 Dec 2023 23:55:05 +0000
ROA not after: Sat 14 Dec 2024 00:00:05 +0000
asID: 212238
IP address blocks: 45.151.46.0/24 maxlen: 24
193.111.116.0/24 maxlen: 24
193.142.22.0/24 maxlen: 24
194.5.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 11:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:d4:23:5c:66:1a:bc:ab:5b:80:3f:6b:32:42:28:37:50:e2:98:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Dec 15 23:55:05 2023 GMT
Not After : Dec 14 00:00:05 2024 GMT
Subject: CN=F3A19BC79FF8B10EF0347235A5E2F0DD445E84AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:73:a8:23:e0:11:7e:dd:8e:31:f3:3d:d4:44:
96:10:56:c2:04:76:ee:d9:7c:a1:41:0d:e8:5a:75:
e7:6b:29:e5:ba:19:24:a8:3b:07:f9:83:6a:ef:66:
93:64:5d:71:12:25:f4:20:00:31:e6:04:64:d1:ee:
6e:9f:6c:da:25:77:17:a6:25:e7:40:12:62:3e:9e:
0c:42:cf:44:4e:d5:70:49:37:4f:d5:79:3d:a1:75:
43:fb:bd:b2:78:bb:2e:23:05:05:5b:e7:59:47:db:
fd:c2:a8:b9:f3:99:45:8f:1d:19:2b:61:e2:2f:92:
5f:6c:e2:d2:5b:fc:7d:b5:e3:03:41:68:0f:1d:3b:
96:f6:e6:6a:36:c2:cd:52:57:5a:2c:75:e8:28:6a:
f0:18:ba:d4:a8:cb:56:ed:37:54:4e:23:4e:e4:1e:
0d:b6:d6:8f:43:c4:6a:d8:bb:71:ac:82:1f:4a:9e:
35:0c:27:4f:4a:3b:9d:a8:ae:8e:e0:16:dc:7d:e2:
b9:31:b2:e1:76:23:86:73:8b:f6:10:53:c3:16:6c:
a6:47:0c:95:6c:63:74:85:82:88:46:14:85:69:3c:
f0:89:d1:5e:a3:43:01:88:0d:be:e6:45:e7:f0:f0:
fd:86:07:50:0d:7f:06:9f:13:5d:04:7f:87:3c:02:
0b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A1:9B:C7:9F:F8:B1:0E:F0:34:72:35:A5:E2:F0:DD:44:5E:84:AF
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS212238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.46.0/24
193.111.116.0/24
193.142.22.0/24
194.5.148.0/24
Signature Algorithm: sha256WithRSAEncryption
08:b5:fb:0d:2c:a9:01:ba:73:fe:34:a1:ac:ec:45:50:3e:88:
93:54:49:49:f6:60:e7:1f:b6:bf:e7:98:23:c4:14:26:1a:b1:
53:f6:ec:66:09:06:95:77:4e:2f:f6:d0:8a:13:58:ed:c5:df:
c5:20:d7:a7:bb:cc:60:01:12:47:cb:a7:80:b1:55:bc:6b:9f:
4e:4f:d9:17:8a:4c:1a:19:95:f0:e5:09:03:c2:46:8a:6f:94:
ae:d9:fc:c7:dd:e0:92:8b:bb:63:01:3c:f4:23:2d:41:ad:e9:
cc:4b:7d:1a:f3:4d:48:29:e3:cb:33:95:15:d1:8e:d9:93:72:
a0:0a:c0:16:53:6f:99:69:e9:25:11:09:ef:8d:a2:c4:ce:4f:
25:b5:fd:a8:29:81:c4:77:9e:92:2a:b3:d9:db:ae:47:f3:57:
b8:c3:73:2f:8f:b1:b8:14:7a:c1:16:eb:c7:9a:3f:d7:a0:28:
7c:93:4e:cd:71:a4:ee:5b:32:aa:4e:58:e3:df:10:d3:d1:f8:
87:f7:06:a1:e0:01:87:79:7b:17:68:a8:b9:54:50:38:b4:21:
6f:bb:4f:b0:9e:da:bd:10:f3:e4:6d:e7:6c:c5:d3:d8:44:19:
ef:10:f1:18:7a:e0:09:bf:5f:23:3f:eb:29:5c:b5:16:82:ac:
b5:4e:1e:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 16:57:06 2024 by rpki-client on console-ams.rpki-client.org