Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS61112.roa
File: AS61112.roa (raw, json)
Hash identifier: QbeMJ83zHrdpq72TQKfIhcEeHHoE64U06ftsESDUzwQ=
Subject key identifier: 05:F2:F0:74:85:F0:62:72:78:BD:1B:EA:03:90:29:73:C3:37:C2:96
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 6525BECB9A1517C85ADCB426445AD4B442E5E337
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS61112.roa
Signing time: Fri 05 Apr 2024 07:22:46 +0000
ROA not before: Fri 05 Apr 2024 07:17:46 +0000
ROA not after: Fri 04 Apr 2025 07:22:46 +0000
asID: 61112
IP address blocks: 141.11.86.0/23 maxlen: 24
141.11.90.0/23 maxlen: 24
141.11.146.0/23 maxlen: 24
141.11.148.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:25:be:cb:9a:15:17:c8:5a:dc:b4:26:44:5a:d4:b4:42:e5:e3:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Apr 5 07:17:46 2024 GMT
Not After : Apr 4 07:22:46 2025 GMT
Subject: CN=05F2F07485F0627278BD1BEA03902973C337C296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:db:f7:d0:72:db:94:b4:ad:79:f6:bb:d7:f5:
bc:fe:2e:6a:49:d2:c0:13:21:d4:92:65:97:e2:ba:
36:7a:09:56:ba:c0:21:c1:97:e6:95:8d:0c:86:86:
cc:15:9a:5c:05:4d:cc:1e:92:d8:19:8b:56:ff:0a:
d1:dc:a5:d3:ba:25:48:dc:89:39:08:3a:09:1c:3f:
7f:d8:81:50:b0:c1:4a:70:5c:23:d9:03:e6:73:2f:
56:90:f5:30:8b:9b:0d:91:de:3c:e6:77:5e:a7:16:
40:62:7a:9a:98:eb:c7:67:c1:43:2a:e6:38:7b:28:
93:ce:5a:32:0a:bc:90:77:ba:fa:94:0a:7f:9f:3d:
8d:89:70:d9:60:c4:e0:f1:2e:4b:65:8d:02:14:6b:
cc:6d:d0:c8:fe:13:13:3f:c2:97:fd:68:7c:5b:46:
ef:55:98:dd:d3:bf:07:6e:74:3c:3a:84:6e:70:b0:
9e:65:03:95:80:36:73:ed:66:c2:f8:21:9e:2f:ff:
ed:47:33:5c:a4:4c:63:60:8f:fd:9c:fa:aa:3a:64:
a2:cd:5a:b2:41:cf:77:8d:17:ca:c9:0a:e0:4f:2e:
5b:69:a1:63:a4:ed:e0:31:e7:a8:eb:6d:90:89:49:
85:69:7d:18:15:38:98:2c:83:07:3b:2e:b0:98:39:
2d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F2:F0:74:85:F0:62:72:78:BD:1B:EA:03:90:29:73:C3:37:C2:96
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS61112.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.86.0/23
141.11.90.0/23
141.11.146.0-141.11.149.255
Signature Algorithm: sha256WithRSAEncryption
2c:d7:40:98:12:11:d9:ee:56:93:e3:60:41:b2:95:b7:92:87:
55:e6:26:c9:a4:c0:73:cf:82:55:3c:58:7d:c1:57:95:8f:65:
43:81:1e:89:03:68:d0:f3:01:4a:6b:58:7e:ce:57:5c:39:db:
4c:69:0b:84:a8:a5:bd:51:d6:06:a3:32:c6:af:e4:b6:94:80:
9a:ec:52:fb:5d:cd:8e:a8:7b:33:dd:09:ac:ad:95:f6:98:8a:
e0:d5:6f:d4:8c:a9:06:e5:76:08:76:72:45:a2:d3:ff:80:e7:
a6:08:4b:d5:da:cb:df:19:37:77:8e:ea:eb:b9:fc:56:f1:04:
23:e8:7c:a1:02:a4:57:dd:9e:fa:88:04:47:35:70:1b:39:2b:
37:ee:3c:fb:da:e5:b4:58:9f:88:9d:27:83:46:fd:59:c6:67:
0b:95:cd:d0:a3:42:4e:80:2a:1e:35:15:37:97:15:e1:7c:20:
44:df:c5:56:e5:41:51:a0:62:0f:1c:27:8a:42:f5:91:10:0d:
20:fc:cf:f6:ce:ef:06:e0:ea:b4:eb:d4:3f:5b:60:f3:6e:a6:
58:1b:0c:e0:61:d4:09:fb:12:f7:ae:22:ac:75:ec:7d:f1:e5:
53:83:13:69:eb:1b:78:b1:10:8e:63:db:f0:e2:8a:d0:e9:9e:
76:d6:86:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 14:38:07 2024 by rpki-client on console-ams.rpki-client.org