Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
File: AS61317.roa (raw, json)
Hash identifier: 8IWcnSdBxvItAhha/czGJccUqpNyaqvj6UGSWdPLRog=
Subject key identifier: 0B:33:48:E4:25:F4:08:08:01:9A:87:D2:2D:4F:A8:9D:51:E4:3C:31
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 7D24144A3ADC1C1B1A592DD43FFCCF131A093BD8
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
Signing time: Mon 20 Jan 2025 00:02:43 +0000
ROA not before: Sun 19 Jan 2025 23:57:43 +0000
ROA not after: Mon 19 Jan 2026 00:02:43 +0000
asID: 61317
IP address blocks: 45.135.248.0/24 maxlen: 24
45.135.251.0/24 maxlen: 24
45.152.240.0/24 maxlen: 24
45.152.241.0/24 maxlen: 24
45.155.16.0/24 maxlen: 24
193.29.99.0/24 maxlen: 24
193.151.180.0/24 maxlen: 24
194.5.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 10:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:24:14:4a:3a:dc:1c:1b:1a:59:2d:d4:3f:fc:cf:13:1a:09:3b:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jan 19 23:57:43 2025 GMT
Not After : Jan 19 00:02:43 2026 GMT
Subject: CN=0B3348E425F40808019A87D22D4FA89D51E43C31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:09:a2:da:84:fc:4f:8c:8f:b3:3a:ed:e1:43:
60:26:80:af:30:c2:2e:7d:f6:61:cc:e9:73:21:29:
4c:01:1a:5a:51:2f:70:4b:f5:b4:76:cf:34:f0:af:
cf:2c:8b:cf:8d:af:cd:ee:d7:d1:30:e7:b6:84:a8:
c2:cc:87:57:14:2a:e8:49:89:0c:12:77:3e:7b:6c:
ee:d2:ed:12:80:46:cb:1d:a9:62:1f:e5:76:6c:c9:
b4:7d:e1:19:b6:1d:19:46:f0:02:c9:28:92:a5:67:
04:01:e6:c8:b9:83:d0:60:28:1d:a2:b5:31:0f:08:
85:5f:c3:02:8c:2d:db:40:32:a5:e6:aa:34:10:de:
85:fe:00:11:30:89:ec:aa:73:93:ed:9c:df:c8:53:
4e:70:38:62:cc:7d:4d:82:d4:da:92:d2:27:7a:af:
d2:9e:09:8a:6c:64:64:b8:2e:e4:6e:f8:7a:82:1a:
30:d9:af:db:41:74:ea:98:0d:c7:05:16:2e:7b:2d:
a6:ed:34:4a:07:f1:25:30:6d:90:86:d8:21:3c:1f:
11:3e:ef:80:92:db:a5:cd:a8:d6:ee:f1:aa:f0:95:
61:93:88:cc:79:40:73:13:a1:b0:1d:96:37:4a:a0:
a6:39:5b:9c:5f:b5:5d:90:a5:2b:83:c0:db:69:5b:
17:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:33:48:E4:25:F4:08:08:01:9A:87:D2:2D:4F:A8:9D:51:E4:3C:31
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.248.0/24
45.135.251.0/24
45.152.240.0/23
45.155.16.0/24
193.29.99.0/24
193.151.180.0/24
194.5.148.0/24
Signature Algorithm: sha256WithRSAEncryption
23:80:b1:fe:36:a3:71:57:84:ba:b9:a3:b1:50:fd:6f:28:79:
46:51:94:4a:ce:e1:cc:f5:9c:a6:5c:cb:f0:0e:34:d2:19:29:
fe:9d:63:7a:14:1e:41:de:5a:f1:08:bf:c2:2a:56:f4:5d:44:
db:37:f5:18:b5:9a:cf:94:f1:31:02:dd:de:ff:08:a1:36:41:
41:21:c5:cf:58:1b:c6:4a:5a:f1:43:d3:4d:ea:2c:de:f9:68:
17:6f:66:d1:84:fc:56:44:ff:17:5d:4f:19:ed:a5:79:4a:93:
32:51:af:64:55:16:d8:f1:bb:05:71:7c:dc:f4:0d:ba:96:52:
7d:45:86:ef:30:39:10:31:3e:6e:cb:0c:8d:96:db:28:11:7a:
5a:ba:e0:bd:55:e1:ff:19:98:bb:bb:09:8f:ba:7e:83:05:ce:
79:8b:89:16:e3:99:f6:75:87:17:96:1a:27:0d:4f:b5:6a:0f:
4f:ff:89:0b:ce:d4:04:fd:70:c3:3e:28:68:69:6d:25:99:8d:
a1:49:09:66:77:68:81:7d:fd:dc:34:0a:2d:86:43:47:d3:a7:
00:5c:36:61:00:0d:bd:7a:45:bb:1f:af:2d:51:c6:7b:ca:8b:
a5:44:d6:b4:2b:c1:e1:c9:81:36:77:10:04:a2:28:7b:c3:b1:
72:74:13:f1
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgIUfSQUSjrcHBsaWS3UP/zPExoJO9gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi
MmQ2ZWQ5ZDAeFw0yNTAxMTkyMzU3NDNaFw0yNjAxMTkwMDAyNDNaMDMxMTAvBgNV
BAMTKDBCMzM0OEU0MjVGNDA4MDgwMTlBODdEMjJENEZBODlENTFFNDNDMzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqCaLahPxPjI+zOu3hQ2AmgK8w
wi599mHM6XMhKUwBGlpRL3BL9bR2zzTwr88si8+Nr83u19Ew57aEqMLMh1cUKuhJ
iQwSdz57bO7S7RKARssdqWIf5XZsybR94Rm2HRlG8ALJKJKlZwQB5si5g9BgKB2i
tTEPCIVfwwKMLdtAMqXmqjQQ3oX+ABEwieyqc5PtnN/IU05wOGLMfU2C1NqS0id6
r9KeCYpsZGS4LuRu+HqCGjDZr9tBdOqYDccFFi57LabtNEoH8SUwbZCG2CE8HxE+
74CS26XNqNbu8arwlWGTiMx5QHMTobAdljdKoKY5W5xftV2QpSuDwNtpWxdVAgMB
AAGjggItMIICKTAdBgNVHQ4EFgQUCzNI5CX0CAgBmofSLU+onVHkPDEwHwYDVR0j
BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi
ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM
VzdaMC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct
NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTNjEzMTcucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwQwYIKwYBBQUHAQcBAf8ENDAyMDAEAgABMCoDBAAth/gD
BAAth/sDBAEtmPADBAAtmxADBADBHWMDBADBl7QDBADCBZQwDQYJKoZIhvcNAQEL
BQADggEBACOAsf42o3FXhLq5o7FQ/W8oeUZRlErO4cz1nKZcy/AONNIZKf6dY3oU
HkHeWvEIv8IqVvRdRNs39Ri1ms+U8TEC3d7/CKE2QUEhxc9YG8ZKWvFD003qLN75
aBdvZtGE/FZE/xddTxntpXlKkzJRr2RVFtjxuwVxfNz0DbqWUn1Fhu8wORAxPm7L
DI2W2ygRelq64L1V4f8ZmLu7CY+6foMFznmLiRbjmfZ1hxeWGicNT7VqD0//iQvO
1AT9cMM+KGhpbSWZjaFJCWZ3aIF9/dw0Ci2GQ0fTpwBcNmEADb16Rbsfry1RxnvK
i6VE1rQrweHJgTZ3EASiKHvDsXJ0E/E=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:49:46 2025 by rpki-client