Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS51847.roa
File: AS51847.roa (raw, json)
Hash identifier: tiFPgVprHs2G+/T3okxc4wkK5J8KrVz4vE8F2sxtFIc=
Subject key identifier: 1E:B7:96:DB:6B:3E:8F:AB:4C:0D:8F:73:13:77:2D:43:01:50:3E:87
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 64F2DA72F125BA4823B5086DB8CCA6356BE1D8EB
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS51847.roa
Signing time: Wed 03 Apr 2024 10:25:40 +0000
ROA not before: Wed 03 Apr 2024 10:20:40 +0000
ROA not after: Wed 02 Apr 2025 10:25:40 +0000
asID: 51847
IP address blocks: 141.11.22.0/24 maxlen: 24
141.11.138.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:f2:da:72:f1:25:ba:48:23:b5:08:6d:b8:cc:a6:35:6b:e1:d8:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Apr 3 10:20:40 2024 GMT
Not After : Apr 2 10:25:40 2025 GMT
Subject: CN=1EB796DB6B3E8FAB4C0D8F7313772D4301503E87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a2:31:cd:ba:a7:f2:c3:63:90:cb:2a:94:5d:
a2:1b:6f:82:a1:cd:8f:6a:04:61:a5:41:79:14:de:
59:bd:36:e9:15:87:f6:af:5b:e6:97:bd:27:2f:99:
52:be:ed:ef:8a:70:f7:18:05:a7:54:fd:05:b6:a9:
52:a4:55:18:e0:f5:fb:05:f1:5e:a3:65:f0:1e:b9:
e2:25:ba:16:18:2a:3e:8e:67:72:91:d7:dd:20:e5:
8c:36:e6:75:f0:57:78:a3:e4:2c:de:27:01:df:b9:
cb:b5:0c:c4:f6:8e:8d:fa:e1:47:eb:89:c7:29:a1:
d5:f7:a8:1e:48:cd:a3:bb:c0:40:4f:1d:f0:49:39:
c9:03:df:13:39:8f:20:a5:13:80:c4:a8:b1:0c:19:
fb:69:82:17:78:09:df:1f:91:04:11:2d:a9:94:43:
ff:7f:0f:76:06:fc:a4:61:91:a5:5c:b3:d6:68:21:
d1:ec:9f:71:83:7a:30:af:31:16:74:bd:18:e3:28:
e3:33:86:d0:e2:fb:b2:2a:5e:53:25:b1:61:ef:31:
c6:b6:3d:0d:27:97:52:ec:41:8f:b9:1a:ee:57:86:
56:a9:db:d4:57:de:df:a9:d5:93:c9:cf:44:6f:e8:
e0:13:4c:71:c4:51:a8:77:c3:01:0a:27:0c:dd:8a:
61:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B7:96:DB:6B:3E:8F:AB:4C:0D:8F:73:13:77:2D:43:01:50:3E:87
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS51847.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.22.0/24
141.11.138.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:65:68:0d:43:82:a1:a3:ad:e5:7b:ac:8e:74:e1:63:23:c9:
a7:0d:8f:b4:89:a0:25:07:a1:26:2c:69:4c:c5:f1:68:fe:f6:
29:1d:04:6a:8c:cb:1b:50:2c:b8:af:9b:5c:4b:63:c8:c2:d9:
95:45:35:9a:84:51:9b:02:26:24:0c:7e:80:0d:1a:4c:fb:3e:
2b:b4:ed:e4:8d:4a:0a:6f:65:8d:6e:4b:0f:37:ec:a3:81:e4:
61:ad:c0:03:c9:dd:60:4d:c5:c2:2d:50:8c:00:21:e4:9d:d8:
85:03:46:58:61:52:ec:7f:86:de:ea:50:14:f7:fa:de:e0:21:
0a:79:9f:4b:28:71:eb:8c:d6:8d:5a:08:d4:a4:75:37:8b:b9:
f3:29:9a:ac:a0:64:91:25:52:22:d9:b6:a7:5a:5b:c7:ce:a2:
55:77:03:39:a7:4e:ab:bd:dd:2b:b1:f9:8c:f8:01:f5:a1:1a:
08:ab:95:f1:32:e1:f5:2e:5d:99:3d:d2:20:63:fa:4d:21:ce:
4c:48:b4:a6:81:02:b7:11:2c:e5:bb:40:c4:7b:29:00:7b:c0:
9f:f5:a4:19:fd:ba:00:96:08:24:1c:de:75:cd:a5:be:94:e6:
75:16:a2:ec:f4:30:a0:36:e5:d2:fa:87:90:20:a4:09:d8:67:
3f:7a:b8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 14:38:07 2024 by rpki-client on console-ams.rpki-client.org