Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
File: AS61317.roa (raw, json)
Hash identifier: uIAdF1x9igMLBDZilwTNDG/SmO0+ml1sp53jdX/Ov0Q=
Subject key identifier: 56:B1:C6:28:08:8E:D5:25:00:2E:9F:CA:A3:7A:E9:B5:C2:E9:40:47
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 0EF7209D6C01835DB179F2214F338ABEB513698F
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
Signing time: Tue 09 Apr 2024 10:04:24 +0000
ROA not before: Tue 09 Apr 2024 09:59:24 +0000
ROA not after: Tue 08 Apr 2025 10:04:24 +0000
asID: 61317
IP address blocks: 45.135.248.0/24 maxlen: 24
45.135.251.0/24 maxlen: 24
45.152.240.0/24 maxlen: 24
45.152.241.0/24 maxlen: 24
45.155.16.0/24 maxlen: 24
193.29.99.0/24 maxlen: 24
193.151.180.0/24 maxlen: 24
193.164.1.0/24 maxlen: 24
194.5.148.0/24 maxlen: 24
194.147.6.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Apr 2024 19:21:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:f7:20:9d:6c:01:83:5d:b1:79:f2:21:4f:33:8a:be:b5:13:69:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Apr 9 09:59:24 2024 GMT
Not After : Apr 8 10:04:24 2025 GMT
Subject: CN=56B1C628088ED525002E9FCAA37AE9B5C2E94047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3b:d9:63:56:c0:6f:26:e5:6f:cc:c5:3f:74:
f7:5a:44:36:54:48:3a:01:60:a6:32:57:1a:85:2c:
ae:53:c8:a4:b7:4c:ea:c9:57:6b:7e:f7:f7:27:b0:
86:98:98:f7:26:c2:64:f8:a3:0a:0d:b7:c3:31:48:
ed:d4:64:76:55:c4:53:34:3e:f9:79:56:42:8d:44:
5a:9a:66:6f:16:92:6f:6c:e7:d5:38:f3:da:2e:38:
18:67:44:e5:e7:24:62:66:36:1f:c7:cc:ec:f3:13:
eb:eb:6f:48:9d:0e:77:11:47:18:91:a4:b3:8f:42:
f5:89:ff:8d:b4:b9:e0:54:35:5a:84:88:23:db:81:
17:70:29:44:ed:12:3c:fd:7b:ae:0d:5f:8e:f4:6f:
69:f4:7f:60:ff:95:8a:42:5b:e3:e3:44:06:75:d4:
6c:fc:55:7c:c6:0b:52:bb:5a:6c:1b:4d:e2:d3:fe:
7d:32:17:04:be:d5:f2:77:ee:c6:06:0f:4b:d1:0e:
ac:13:3f:8f:34:73:34:bd:7d:a4:f9:64:20:ab:1a:
12:72:44:cd:63:ca:b6:4d:cd:96:c5:8b:46:30:1d:
26:76:f1:57:32:55:89:c3:43:fd:63:ff:7c:59:b8:
c4:f5:54:ce:30:88:41:c9:4b:19:49:e6:55:0d:fa:
31:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:B1:C6:28:08:8E:D5:25:00:2E:9F:CA:A3:7A:E9:B5:C2:E9:40:47
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.248.0/24
45.135.251.0/24
45.152.240.0/23
45.155.16.0/24
193.29.99.0/24
193.151.180.0/24
193.164.1.0/24
194.5.148.0/24
194.147.6.0/23
Signature Algorithm: sha256WithRSAEncryption
52:29:e2:d7:29:15:8c:e8:00:27:1d:2b:48:0b:4b:1c:8a:ba:
61:85:f4:d8:fd:21:ba:cf:b2:20:75:a8:ae:71:9b:01:ac:ea:
68:df:32:9d:a3:4c:f7:bc:7a:71:42:79:c0:57:68:d6:bf:0d:
35:6d:4d:08:26:2c:a2:f1:1a:e8:65:5c:98:60:10:2e:55:67:
58:79:c1:0e:f1:d6:00:dc:a3:c7:e7:ff:a5:05:8e:4c:ca:86:
92:39:27:72:02:34:f0:a9:57:79:32:cd:08:6a:1d:c8:8d:50:
35:64:76:20:38:65:83:a1:ec:b5:09:53:80:a9:c0:b9:3c:f6:
08:58:6e:66:80:d0:3f:14:00:19:6d:7b:a4:9d:60:6d:fd:99:
57:1c:0e:14:69:79:eb:84:7a:49:1f:ce:d5:43:80:fc:ae:74:
a4:a2:60:cd:ed:73:d8:70:15:9d:da:12:d3:de:d3:e3:5a:20:
c6:97:11:ce:1c:5f:3b:cf:5b:b2:fa:d8:02:54:06:83:18:b9:
52:9c:40:27:ab:6c:94:49:7a:2b:08:b3:8c:14:ef:af:71:47:
0c:bd:7a:76:e2:af:78:eb:a3:33:c9:04:c4:0e:32:c0:e8:bb:
c3:77:88:d2:03:8d:13:9e:26:cc:fd:fb:72:e0:70:d0:53:ec:
99:09:ee:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 02:35:30 2024 by rpki-client on console-ams.rpki-client.org