Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS61317.roa
File: AS61317.roa (raw, json)
Hash identifier: FUICnIWDcw6bgF9yMdwZhpL2MNhqZ/9pgf5IvhotAkI=
Subject key identifier: 18:BB:FC:E2:0D:41:01:82:B3:AD:5C:D6:2E:B1:A2:1C:62:F5:30:CE
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 4AA3358A8CC7617C2010D6520C2D0075C63653BA
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS61317.roa
Signing time: Sun 07 Apr 2024 00:00:03 +0000
ROA not before: Sat 06 Apr 2024 23:55:03 +0000
ROA not after: Sun 06 Apr 2025 00:00:03 +0000
asID: 61317
IP address blocks: 141.11.10.0/23 maxlen: 24
141.11.35.0/24 maxlen: 24
141.11.44.0/22 maxlen: 24
141.11.82.0/23 maxlen: 24
141.11.105.0/24 maxlen: 24
141.11.121.0/24 maxlen: 24
141.11.140.0/23 maxlen: 24
141.11.142.0/23 maxlen: 24
141.11.160.0/24 maxlen: 24
141.11.182.0/23 maxlen: 24
141.11.186.0/24 maxlen: 24
141.11.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 00:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:a3:35:8a:8c:c7:61:7c:20:10:d6:52:0c:2d:00:75:c6:36:53:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Apr 6 23:55:03 2024 GMT
Not After : Apr 6 00:00:03 2025 GMT
Subject: CN=18BBFCE20D410182B3AD5CD62EB1A21C62F530CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:66:49:7a:53:fc:38:6f:42:e4:e1:6c:ad:e6:
a7:d7:f9:56:50:7c:7f:ad:bc:93:32:f5:32:7c:a3:
70:85:44:da:94:19:90:64:2b:cd:73:89:bc:88:f1:
2a:b0:f8:f7:94:d0:ba:70:b7:67:27:fc:e8:60:0f:
fb:02:02:7a:02:6d:4d:79:cd:27:8b:9c:2e:36:a0:
11:89:5f:93:f2:21:8d:a3:fd:08:ce:91:55:f5:80:
85:57:65:24:6d:77:a0:ce:97:a0:3e:76:36:db:73:
8d:b8:35:44:03:06:e6:35:0f:75:40:b3:3d:f4:4b:
a1:ab:87:17:24:6d:a7:eb:7c:80:0f:84:c9:2f:19:
09:88:07:b3:41:08:be:61:34:f7:f9:db:aa:c1:65:
36:4e:a7:e7:db:fb:ca:21:9a:65:ee:1e:8a:4d:c3:
c6:cf:41:e3:f4:1d:ba:10:44:38:64:9d:ed:a8:16:
84:27:45:a6:79:a0:5e:ee:ac:4f:6b:d1:4f:f2:cc:
16:af:d8:4f:c8:44:b3:67:75:6c:47:0a:70:d1:5a:
12:ff:e7:66:f7:d8:57:21:a1:eb:a9:a5:af:a3:6b:
d2:7c:f8:64:22:f4:62:20:ab:96:49:fd:6f:67:b8:
7c:9a:bc:ac:24:e7:1a:da:82:78:96:8e:8e:ff:37:
a4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:BB:FC:E2:0D:41:01:82:B3:AD:5C:D6:2E:B1:A2:1C:62:F5:30:CE
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS61317.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.10.0/23
141.11.35.0/24
141.11.44.0/22
141.11.82.0/23
141.11.105.0/24
141.11.121.0/24
141.11.140.0/22
141.11.160.0/24
141.11.182.0/23
141.11.186.0/24
141.11.188.0/24
Signature Algorithm: sha256WithRSAEncryption
be:e7:8e:74:48:db:c8:4d:86:2f:a8:36:d8:d6:18:02:7a:43:
08:cd:5c:f2:ba:ab:03:67:94:6a:7d:30:8a:78:ff:a3:6a:ba:
89:31:35:d6:d7:95:0d:56:93:58:50:35:6c:22:d5:64:7d:13:
d0:ef:3e:34:13:46:f3:42:5e:33:12:e1:ed:25:c9:cc:14:08:
4a:88:69:21:60:2c:92:1a:39:14:4a:27:22:7b:46:fc:61:b4:
a1:de:24:f6:4e:f3:2a:38:73:1a:1e:14:f2:ea:05:1a:97:3b:
d5:40:5a:6d:40:83:e0:97:3e:dc:04:47:50:72:30:20:ef:84:
6a:08:85:4d:9e:b1:18:4e:d3:e3:c7:97:ce:e1:e9:96:19:1c:
73:33:60:66:1f:84:45:30:90:e8:76:b8:3b:b8:00:eb:73:43:
4c:92:29:1f:4b:14:6e:fe:db:bb:93:83:97:8c:b6:91:7a:4b:
5c:9f:b5:24:5d:3d:5b:10:c8:f9:54:35:99:94:36:33:09:b8:
e9:7b:9c:e7:0f:da:d0:be:79:ba:ca:74:18:6f:74:4d:63:ca:
89:28:dd:9f:d3:b8:77:e2:72:a4:0f:24:bd:cf:59:ce:b2:04:
37:7e:c0:1f:97:3a:22:6f:8c:c3:44:69:6f:c3:ed:e1:3d:0c:
6d:36:92:aa
-----BEGIN CERTIFICATE-----
MIIFOzCCBCOgAwIBAgIUSqM1iozHYXwgENZSDC0AdcY2U7owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yNDA0MDYyMzU1MDNaFw0yNTA0MDYwMDAwMDNaMDMxMTAvBgNV
BAMTKDE4QkJGQ0UyMEQ0MTAxODJCM0FENUNENjJFQjFBMjFDNjJGNTMwQ0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqZkl6U/w4b0Lk4Wyt5qfX+VZQ
fH+tvJMy9TJ8o3CFRNqUGZBkK81zibyI8Sqw+PeU0Lpwt2cn/OhgD/sCAnoCbU15
zSeLnC42oBGJX5PyIY2j/QjOkVX1gIVXZSRtd6DOl6A+djbbc424NUQDBuY1D3VA
sz30S6GrhxckbafrfIAPhMkvGQmIB7NBCL5hNPf526rBZTZOp+fb+8ohmmXuHopN
w8bPQeP0HboQRDhkne2oFoQnRaZ5oF7urE9r0U/yzBav2E/IRLNndWxHCnDRWhL/
52b32Fchoeuppa+ja9J8+GQi9GIgq5ZJ/W9nuHyavKwk5xragniWjo7/N6R/AgMB
AAGjggJFMIICQTAdBgNVHQ4EFgQUGLv84g1BAYKzrVzWLrGiHGL1MM4wHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTNjEzMTcucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwWwYIKwYBBQUHAQcBAf8ETDBKMEgEAgABMEIDBAGNCwoD
BACNCyMDBAKNCywDBAGNC1IDBACNC2kDBACNC3kDBAKNC4wDBACNC6ADBAGNC7YD
BACNC7oDBACNC7wwDQYJKoZIhvcNAQELBQADggEBAL7njnRI28hNhi+oNtjWGAJ6
QwjNXPK6qwNnlGp9MIp4/6NquokxNdbXlQ1Wk1hQNWwi1WR9E9DvPjQTRvNCXjMS
4e0lycwUCEqIaSFgLJIaORRKJyJ7RvxhtKHeJPZO8yo4cxoeFPLqBRqXO9VAWm1A
g+CXPtwER1ByMCDvhGoIhU2esRhO0+PHl87h6ZYZHHMzYGYfhEUwkOh2uDu4AOtz
Q0ySKR9LFG7+27uTg5eMtpF6S1yftSRdPVsQyPlUNZmUNjMJuOl7nOcP2tC+ebrK
dBhvdE1jyoko3Z/TuHficqQPJL3PWc6yBDd+wB+XOiJvjMNEaW/D7eE9DG02kqo=
-----END CERTIFICATE-----
Generated at Sat Apr 20 04:51:46 2024 by rpki-client on console-ams.rpki-client.org