Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS61317.roa
File: AS61317.roa (raw, json)
Hash identifier: stf3BbL/2EY8X4wdO+T/qFPDW8khQ4EE55uVs10Grck=
Subject key identifier: 8E:79:56:62:73:FA:58:63:12:58:3C:AB:07:20:19:86:15:4E:AF:3D
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 18DBBE46EBB4C4342CE1F930D765BB407550CCFC
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS61317.roa
Signing time: Tue 14 Jan 2025 17:44:36 +0000
ROA not before: Tue 14 Jan 2025 17:39:36 +0000
ROA not after: Tue 13 Jan 2026 17:44:36 +0000
asID: 61317
IP address blocks: 141.11.10.0/23 maxlen: 24
141.11.35.0/24 maxlen: 24
141.11.44.0/22 maxlen: 24
141.11.82.0/23 maxlen: 24
141.11.121.0/24 maxlen: 24
141.11.182.0/23 maxlen: 24
141.11.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 05:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:db:be:46:eb:b4:c4:34:2c:e1:f9:30:d7:65:bb:40:75:50:cc:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jan 14 17:39:36 2025 GMT
Not After : Jan 13 17:44:36 2026 GMT
Subject: CN=8E79566273FA586312583CAB07201986154EAF3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a9:f4:fd:21:7d:f5:12:f7:1e:6d:ce:7f:a2:
87:d4:fd:af:c9:d6:98:f1:6b:b6:fa:c3:ea:8b:e0:
4f:d8:b0:a6:dc:de:86:d2:eb:bd:b8:65:77:11:93:
88:b3:f6:32:47:10:88:15:e1:40:09:f6:93:fe:72:
b1:5b:ba:aa:19:85:56:00:8b:22:3e:fc:8e:82:87:
88:c0:6b:10:6e:10:34:9a:47:aa:84:88:77:ef:a6:
dc:26:61:15:8b:bd:6a:fc:a6:63:c1:8f:38:68:69:
36:a2:9a:68:c7:9b:09:cd:85:7b:21:95:5a:7a:9f:
f9:26:ea:2c:b2:08:b8:70:81:b2:21:ef:b6:c8:42:
82:ad:51:de:bc:7f:ee:86:08:2f:de:cc:15:d3:cc:
c1:dc:4d:6b:9e:63:3f:34:45:ac:8e:64:a0:a5:b0:
af:b3:55:0b:2f:cd:1a:f1:27:75:2e:c6:aa:0a:33:
be:8e:b1:17:44:d6:d1:84:be:6e:69:19:9d:27:a6:
9d:ad:42:b1:af:c0:67:0b:36:5c:dd:74:7a:99:17:
a2:bd:9b:99:b0:e5:c2:49:a3:d2:da:2a:f8:59:a3:
4e:98:43:ad:33:0d:9b:19:d0:41:a3:5a:ad:55:86:
87:00:c6:52:e3:d0:92:97:fe:4e:d9:0e:8b:2f:d9:
44:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:79:56:62:73:FA:58:63:12:58:3C:AB:07:20:19:86:15:4E:AF:3D
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS61317.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.10.0/23
141.11.35.0/24
141.11.44.0/22
141.11.82.0/23
141.11.121.0/24
141.11.182.0/23
141.11.186.0/24
Signature Algorithm: sha256WithRSAEncryption
13:a2:49:1d:e8:55:fd:31:7b:97:03:ef:51:8e:a9:9a:99:b9:
85:55:c2:10:ca:f5:d7:e4:c2:5c:c8:b2:d6:5b:2d:76:90:49:
9b:06:95:95:ed:ac:5b:eb:99:0d:53:f6:4d:06:70:96:fc:fa:
21:c4:1a:e3:c8:76:af:82:00:4a:d3:0d:50:28:05:c6:89:4e:
d1:bc:fc:f2:1f:2c:ff:92:b3:32:bd:1d:43:3e:77:2b:fc:3e:
b6:c2:7a:6b:73:0c:e9:a9:cc:64:85:11:51:a5:de:e4:1e:2a:
6f:56:8e:e5:78:e7:84:02:e9:82:ca:ed:fb:02:39:de:bc:a2:
b2:cf:a9:14:9c:1f:0e:52:06:4f:b1:ff:3e:78:6b:90:5b:a7:
65:e4:01:59:25:08:a9:bd:bc:fd:39:dd:95:e6:06:56:8b:85:
32:60:a1:d6:7b:43:25:b3:63:7d:1e:40:1b:b4:0c:f9:2a:85:
22:d3:49:6a:c6:95:cb:bb:15:f1:73:ae:4c:f8:53:9c:93:d3:
46:89:37:7a:bf:96:3c:fe:d9:da:b0:0d:9a:c0:ac:26:3b:3d:
44:1e:9d:f1:5f:1c:0d:19:97:f3:1b:0f:6f:98:99:3f:46:42:
ba:5b:b3:28:4c:0a:f6:1c:09:14:f5:42:53:87:53:cf:35:7e:
01:46:77:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:45:07 2025 by rpki-client