Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS10753.roa
File: AS10753.roa (raw, json)
Hash identifier: kMJqFsWRzxXCyiqPJ7GPAM9HN+Tm9gJ6BeCdPFHS/hw=
Subject key identifier: 11:5F:9E:3D:86:4A:6E:5A:A4:E0:AE:86:14:87:B6:00:83:1C:B3:7A
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 70847B0CAA30F1AB4969E70F287B266D4DE585E3
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS10753.roa
Signing time: Thu 18 Apr 2024 11:06:37 +0000
ROA not before: Thu 18 Apr 2024 11:01:37 +0000
ROA not after: Thu 17 Apr 2025 11:06:37 +0000
asID: 10753
IP address blocks: 91.124.145.0/24 maxlen: 24
91.124.178.0/24 maxlen: 24
91.124.179.0/24 maxlen: 24
91.124.216.0/24 maxlen: 24
91.124.219.0/24 maxlen: 24
91.124.237.0/24 maxlen: 24
91.124.252.0/24 maxlen: 24
91.124.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:84:7b:0c:aa:30:f1:ab:49:69:e7:0f:28:7b:26:6d:4d:e5:85:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 18 11:01:37 2024 GMT
Not After : Apr 17 11:06:37 2025 GMT
Subject: CN=115F9E3D864A6E5AA4E0AE861487B600831CB37A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:63:b4:f3:40:50:f6:02:31:f6:ba:34:9a:51:
c4:30:d9:96:71:f1:e8:01:7e:84:47:b4:17:dd:70:
6b:d6:43:aa:6c:c6:df:5d:7a:a0:a8:9e:dd:a9:24:
e2:50:a5:ed:97:62:7d:58:01:b5:79:65:b8:7a:e3:
00:10:b3:50:7e:ea:9b:b8:8e:f7:23:30:e2:8a:2d:
8e:63:65:c6:f7:61:6a:0d:fc:1f:a8:dc:dd:8f:5d:
2d:4d:92:06:50:13:57:c4:1d:43:89:e1:25:09:1d:
9c:ca:d9:d0:fd:fc:b7:44:54:88:28:19:2e:e7:5e:
7b:da:6d:21:2e:c2:1b:6c:49:f4:0d:74:23:0c:7c:
8c:96:d1:9e:a4:7c:67:43:e2:76:a4:c4:b4:c0:06:
f5:57:c6:62:0b:fd:50:75:00:72:da:9e:3b:e7:f4:
4f:92:d3:ff:dd:25:71:91:6c:13:2e:df:eb:64:a9:
81:37:0b:e8:e1:a7:e0:4c:47:93:28:9f:f7:19:ca:
ab:60:4e:e3:c4:ad:58:19:4a:92:12:56:f5:51:48:
0e:8c:73:fa:0f:72:94:d3:a8:2b:d6:d9:02:0e:b6:
df:c1:a4:52:aa:1f:da:25:48:6e:30:e6:56:16:5b:
a9:9a:af:8a:10:b3:23:9b:f5:a8:7b:02:71:18:0a:
04:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:5F:9E:3D:86:4A:6E:5A:A4:E0:AE:86:14:87:B6:00:83:1C:B3:7A
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS10753.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.145.0/24
91.124.178.0/23
91.124.216.0/24
91.124.219.0/24
91.124.237.0/24
91.124.252.0/23
Signature Algorithm: sha256WithRSAEncryption
21:1d:f3:a9:63:8a:f1:1b:23:17:04:49:47:17:c3:28:8d:6c:
76:3c:a3:31:50:a0:0f:36:6e:98:9e:6c:47:97:49:19:70:61:
d4:5f:34:34:08:8b:1c:35:82:73:67:fb:67:b3:0f:d9:f5:8f:
a5:ec:82:f0:c9:ba:7a:60:f0:74:45:58:65:da:99:00:34:23:
98:c8:c7:e3:ed:4e:f2:0b:36:2b:5c:e8:ab:36:84:98:53:fd:
76:58:71:8e:c1:7e:a7:b1:05:e8:ae:e0:2c:80:1d:c4:0a:55:
51:f0:80:91:e7:c4:0b:18:3f:ce:86:94:74:c2:93:51:65:ee:
f4:9d:4d:22:a0:20:27:91:d1:2f:5f:54:50:02:f2:d0:d4:bd:
50:2e:02:f0:15:02:57:b5:6f:cd:18:04:cd:02:2a:b3:f5:a7:
24:2f:ae:64:5b:61:81:d9:5e:23:2a:75:cd:e3:71:8d:4e:cc:
45:fc:25:88:f0:f7:86:ee:c0:55:99:12:1c:dd:9d:d0:4b:57:
3b:0b:4f:c4:3f:85:9f:64:4d:1f:b3:95:8c:af:6e:66:c9:8f:
02:09:17:fb:53:01:e0:fd:5b:1a:74:24:62:1a:38:7d:43:80:
76:fc:b3:d9:eb:4c:04:8a:92:83:28:36:0a:f0:89:23:9f:87:
24:ea:70:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:21:44 2024 by rpki-client on console-fra.rpki-client.org