Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS1239.roa
File: AS1239.roa (raw, json)
Hash identifier: 7GVOrUguwEmBPFclttVwzLPF5PESdU/p43lkPCewY74=
Subject key identifier: F6:6C:20:16:E6:27:FC:1A:57:09:B4:6A:81:35:5B:59:CA:BB:58:CD
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 793D1E7F2DBADD882BD62D53437514FF3A87F861
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS1239.roa
Signing time: Tue 24 Sep 2024 18:50:24 +0000
ROA not before: Tue 24 Sep 2024 18:45:24 +0000
ROA not after: Tue 23 Sep 2025 18:50:24 +0000
asID: 1239
IP address blocks: 92.113.70.0/24 maxlen: 24
92.113.71.0/24 maxlen: 24
92.113.72.0/24 maxlen: 24
92.113.73.0/24 maxlen: 24
92.113.101.0/24 maxlen: 24
92.113.102.0/24 maxlen: 24
92.113.104.0/24 maxlen: 24
92.113.105.0/24 maxlen: 24
92.113.158.0/24 maxlen: 24
92.113.159.0/24 maxlen: 24
92.113.160.0/24 maxlen: 24
92.113.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Oct 2024 13:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:3d:1e:7f:2d:ba:dd:88:2b:d6:2d:53:43:75:14:ff:3a:87:f8:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Sep 24 18:45:24 2024 GMT
Not After : Sep 23 18:50:24 2025 GMT
Subject: CN=F66C2016E627FC1A5709B46A81355B59CABB58CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:01:9d:f0:e4:b0:c4:54:e6:5b:cf:39:93:75:
74:fd:cb:c3:de:92:38:aa:f0:44:ee:e4:5d:2c:97:
c1:38:06:8c:07:d7:b1:77:05:ad:bd:0b:31:06:13:
56:d6:25:fb:04:2f:73:2b:b7:fb:59:73:0e:06:40:
fb:ce:71:eb:ab:17:a7:80:6a:68:29:26:3b:bb:31:
2c:5c:59:f5:c8:a8:be:11:80:58:0b:07:37:37:7f:
d7:86:52:19:b7:79:ad:26:5b:7c:e8:da:75:c8:d0:
25:9d:4d:7e:89:2c:51:a3:04:07:af:c6:a4:2d:ac:
53:b2:f5:ca:c2:69:73:41:9e:f7:42:1a:42:91:06:
cb:ce:ca:11:d5:9c:c9:ff:ca:55:fd:79:d8:e1:d7:
22:c5:b9:8b:6b:25:1f:16:79:ca:1c:b8:56:c9:57:
1d:0a:76:e8:37:d5:c2:aa:60:64:01:be:a4:10:80:
eb:c4:e2:8d:c8:5f:f5:11:23:f7:9b:83:11:ae:55:
55:42:03:f2:76:c4:5d:e0:e1:ff:1e:06:bc:7c:83:
45:62:df:66:d3:99:be:a0:8c:0d:b8:d6:9d:0e:d8:
94:d3:b2:ba:f8:1d:4e:e0:17:73:25:70:a0:dd:35:
2b:fa:13:8a:b7:3c:0c:9b:b0:30:1c:0e:cd:4c:3b:
ef:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:6C:20:16:E6:27:FC:1A:57:09:B4:6A:81:35:5B:59:CA:BB:58:CD
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS1239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.113.70.0-92.113.73.255
92.113.101.0-92.113.102.255
92.113.104.0/23
92.113.158.0-92.113.161.255
Signature Algorithm: sha256WithRSAEncryption
89:03:34:da:6a:c4:af:d1:23:b2:06:06:1d:ba:ac:03:bd:4a:
5e:32:24:21:18:18:27:ed:fe:da:cc:04:58:d1:47:e4:47:0f:
a4:c7:db:e9:a6:2e:b9:cb:27:3f:1c:62:2c:65:47:cb:86:fb:
11:19:a9:9a:66:33:23:5f:8b:82:80:a8:55:13:be:61:e0:75:
c6:38:94:1e:f6:70:d4:72:5a:cf:70:d5:8f:79:35:cb:31:f4:
d3:2c:b9:28:51:0a:4c:cb:52:60:65:8c:04:9b:90:2c:f8:a0:
85:e4:e5:b0:bd:c3:05:cc:9e:e2:4f:20:c7:5c:12:c5:4b:d4:
aa:79:f0:1b:f0:60:9e:33:3e:f8:6c:a0:0f:e0:da:6e:bb:31:
18:e4:d8:62:2f:3b:01:07:2a:b2:4d:56:36:4c:4c:49:71:d8:
4e:a7:10:a3:01:4f:3e:16:3a:79:80:17:12:87:11:78:83:4c:
75:d8:21:db:a2:34:fa:13:a6:f1:f0:26:88:14:a3:62:eb:d7:
3d:77:62:1b:22:79:a5:09:f3:fe:b9:94:1f:45:14:46:0f:bd:
05:aa:58:d0:6c:79:92:7a:90:70:59:ec:7e:b8:20:69:34:2d:
9a:7e:a0:d5:29:14:22:4a:22:cc:44:3f:42:3c:28:85:45:19:
e4:e0:61:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 16:58:21 2024 by rpki-client on console-ams.rpki-client.org