Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS215560.roa
File: AS215560.roa (raw, json)
Hash identifier: /FMpkTtK5xEF8qeriEv1HrLCnWSneoDMFs1lbQSF9jQ=
Subject key identifier: 7E:B3:7A:B5:C7:4A:26:E0:8F:F0:FB:5D:C5:E7:34:A4:52:40:15:BE
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 48D3F6487EFCB76CAA49E1676E75FD5711AD70
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS215560.roa
Signing time: Tue 21 Jan 2025 03:53:51 +0000
ROA not before: Tue 21 Jan 2025 03:48:51 +0000
ROA not after: Tue 20 Jan 2026 03:53:51 +0000
asID: 215560
IP address blocks: 45.151.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 16:49:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:d3:f6:48:7e:fc:b7:6c:aa:49:e1:67:6e:75:fd:57:11:ad:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jan 21 03:48:51 2025 GMT
Not After : Jan 20 03:53:51 2026 GMT
Subject: CN=7EB37AB5C74A26E08FF0FB5DC5E734A4524015BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5f:34:3d:4c:bf:53:47:ce:71:fe:0d:19:c1:
2f:0a:f6:d0:a3:d3:f7:18:7f:2b:51:32:48:ff:ee:
4d:41:21:de:fb:33:e9:1e:6f:be:2e:c9:5d:1f:42:
db:25:0a:21:b2:bc:9b:80:4d:52:cb:3c:6c:fc:34:
e5:3a:2a:74:95:9e:42:c2:2d:7c:c2:79:01:a4:54:
70:59:2a:81:76:8a:76:b9:99:e3:04:92:92:51:e1:
48:44:99:23:43:20:81:d5:28:9a:a7:d8:91:f8:77:
26:46:eb:a0:a4:24:cf:21:83:56:55:fd:1c:d4:55:
a1:d6:c8:4f:56:36:8c:7a:21:97:bf:12:e1:d4:af:
06:a2:6b:c9:69:fe:4d:4d:1e:6b:12:90:2f:33:e7:
74:b3:85:1d:51:39:3e:db:10:3d:5c:c5:99:c1:8b:
b0:f1:b4:88:99:ac:39:4a:d3:8f:a8:58:ee:4b:20:
44:44:08:2f:49:1a:c8:d2:d8:ed:c9:06:97:9c:33:
08:83:98:e4:61:f1:7e:02:c1:02:a8:da:d8:14:2c:
a2:be:2c:ca:6f:7d:90:0b:09:89:51:75:ec:ef:6f:
0a:93:f2:47:1e:61:f4:dd:48:e6:62:6d:dc:ca:cf:
fb:07:cc:2a:60:44:83:86:ba:a4:34:22:e1:ec:42:
50:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B3:7A:B5:C7:4A:26:E0:8F:F0:FB:5D:C5:E7:34:A4:52:40:15:BE
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS215560.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.44.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:06:08:3a:8d:d1:f8:97:da:78:02:a8:27:1b:7c:e4:d0:eb:
73:36:0d:ca:6b:39:9c:f1:d8:76:3d:f5:05:dd:13:07:76:77:
9d:cf:91:37:f6:73:d1:7b:20:3f:cb:69:f2:ea:bb:97:6e:37:
c5:a8:3a:f2:7a:1d:2b:72:46:25:43:83:46:c4:32:93:d0:1c:
1c:b9:e4:b0:43:a9:54:05:90:70:d6:51:a9:73:68:a4:b6:1e:
b7:5d:db:b6:c1:6c:0b:ab:cd:20:10:97:a2:46:a6:23:34:af:
60:cd:a6:e6:ca:52:0b:bc:80:db:35:4f:2f:af:05:62:f6:96:
4b:0a:db:a1:ff:70:ec:11:65:e6:3b:23:36:b1:25:53:85:ab:
b0:bd:7a:7c:be:c5:cb:d4:73:e2:3a:77:b6:68:d1:b5:e7:a4:
6f:a9:1a:57:43:6a:b4:31:5f:0b:6e:e3:3f:f0:6c:88:80:da:
b7:78:74:fa:aa:e6:8a:96:c5:ae:f6:d5:92:79:8d:58:d2:86:
f1:c0:be:07:36:6f:ae:0a:7b:44:ee:f2:e0:e0:6a:2d:0e:87:
06:eb:22:81:25:7f:34:e2:a8:04:31:c5:27:98:e6:42:88:18:
95:70:44:28:a8:7f:8d:d5:15:e3:48:b0:23:d9:80:2f:b0:65:
9b:8c:a6:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:33 2025 by rpki-client