Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
File: AS61317.roa (raw, json)
Hash identifier: hdRROMFVRDIXVki9ApATwJT/svAVZAqGD1aFEjJGyko=
Subject key identifier: F9:6D:68:00:78:7E:90:F3:34:D4:66:CB:18:D3:99:10:08:A8:EA:4F
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 46E794709BFF993201847EA91B7E87FAC5EF9DF5
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
Signing time: Thu 10 Oct 2024 19:25:03 +0000
ROA not before: Thu 10 Oct 2024 19:20:03 +0000
ROA not after: Thu 09 Oct 2025 19:25:03 +0000
asID: 61317
IP address blocks: 45.135.248.0/24 maxlen: 24
45.135.251.0/24 maxlen: 24
45.152.240.0/24 maxlen: 24
45.152.241.0/24 maxlen: 24
45.155.16.0/24 maxlen: 24
193.29.99.0/24 maxlen: 24
193.151.180.0/24 maxlen: 24
194.5.148.0/24 maxlen: 24
194.147.6.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:e7:94:70:9b:ff:99:32:01:84:7e:a9:1b:7e:87:fa:c5:ef:9d:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Oct 10 19:20:03 2024 GMT
Not After : Oct 9 19:25:03 2025 GMT
Subject: CN=F96D6800787E90F334D466CB18D3991008A8EA4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:f3:82:c2:5d:6e:f1:f7:f8:05:5c:a2:b5:01:
1c:32:e6:8e:04:67:c8:89:58:e4:e9:b8:5d:1b:70:
fd:45:82:71:9d:e6:66:00:3d:27:27:5b:d5:29:65:
9b:6f:23:eb:92:0a:b1:0d:97:f7:6f:6c:58:6a:d9:
d9:1b:37:35:c5:9f:c9:ad:0a:f2:d9:c9:a6:ad:ba:
b6:5d:00:83:a1:ba:e4:30:c1:aa:b1:06:ae:0f:10:
4e:e3:60:46:69:d9:14:dc:65:16:8a:d4:fd:75:93:
e7:ac:76:3c:5c:12:4a:e5:c1:b0:44:16:3a:e8:19:
09:f6:c1:00:24:3c:69:09:6e:97:f6:55:f2:1e:ce:
67:b7:94:c8:f1:eb:e0:67:ce:42:ae:1a:ed:a5:06:
f7:b2:93:8a:80:53:fc:27:11:cd:51:df:86:1f:2c:
d2:7e:2c:f5:cd:ad:bc:da:85:d2:4f:6e:ac:ec:5b:
31:88:6d:2e:77:85:b4:98:00:38:58:3b:ef:5f:a0:
ba:4d:89:e4:1d:b1:0e:cb:1d:0a:cb:41:8a:fa:8e:
aa:9e:92:f6:87:ad:25:3d:49:c4:0b:c2:5d:4a:37:
fb:15:e7:42:1a:51:df:08:c8:e0:fd:6d:6b:90:09:
8b:ea:32:7f:a2:af:ba:28:4e:fa:38:3e:34:3c:d1:
bf:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:6D:68:00:78:7E:90:F3:34:D4:66:CB:18:D3:99:10:08:A8:EA:4F
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.248.0/24
45.135.251.0/24
45.152.240.0/23
45.155.16.0/24
193.29.99.0/24
193.151.180.0/24
194.5.148.0/24
194.147.6.0/23
Signature Algorithm: sha256WithRSAEncryption
c4:dd:0d:32:a1:5e:07:28:d7:7d:07:cd:4d:38:90:a4:3c:bc:
e1:e6:e3:3c:a1:1c:79:66:8b:bd:67:3b:bb:0f:7a:b1:b7:ac:
93:f9:b0:96:74:47:db:25:3c:10:84:a9:e3:d2:fd:c6:d1:51:
64:d6:36:c6:70:fb:8a:b9:80:90:ac:a2:01:cc:fd:27:65:92:
e6:3d:45:2d:89:e4:14:47:f4:a8:0e:63:78:33:ac:05:e2:9a:
ae:01:50:b9:b0:90:a3:1d:93:35:d1:61:7b:c5:ab:a9:c7:ad:
d2:fd:c0:d0:55:2a:26:b5:29:90:1b:b2:59:f8:88:d1:88:95:
02:aa:15:e9:aa:5b:33:ba:1b:88:7f:31:53:b6:74:77:bd:d0:
1b:8e:20:58:7f:8f:27:4f:12:96:8e:40:59:e6:12:dd:ef:34:
8c:f4:6a:54:7f:ac:8b:b3:40:5d:36:44:03:c3:bc:4e:a2:75:
fe:fc:76:33:2f:01:0c:a9:ef:98:a0:93:a3:36:79:49:73:b9:
75:86:cb:c6:ed:1b:05:c4:99:16:7b:c8:8e:de:1a:98:bc:00:
7f:f7:33:69:00:2f:1f:be:d4:5a:a4:f3:9e:52:bf:c6:a7:2b:
69:85:b7:23:49:39:5e:ec:7c:3c:28:f7:27:76:84:89:1e:0c:
60:8b:b9:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 08:05:57 2024 by rpki-client on console-fra.rpki-client.org