Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
File: AS216050.roa (raw, json)
Hash identifier: lr/jXtyJ7UIMlUMjoomdxfVMoKBnItzZcHhVCx+hCU8=
Subject key identifier: 45:66:A3:FD:65:FB:7B:B0:FB:8C:68:87:67:79:B3:65:65:6C:A7:7F
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 6BA29279016244D9CA03337660572F816B28695B
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
Signing time: Tue 19 Nov 2024 09:47:57 +0000
ROA not before: Tue 19 Nov 2024 09:42:57 +0000
ROA not after: Tue 18 Nov 2025 09:47:57 +0000
asID: 216050
IP address blocks: 46.202.204.0/24 maxlen: 24
46.202.205.0/24 maxlen: 24
92.113.41.0/24 maxlen: 24
92.113.55.0/24 maxlen: 24
92.113.65.0/24 maxlen: 24
92.113.66.0/24 maxlen: 24
92.113.68.0/24 maxlen: 24
92.113.69.0/24 maxlen: 24
92.113.75.0/24 maxlen: 24
92.113.76.0/24 maxlen: 24
92.113.78.0/24 maxlen: 24
92.113.79.0/24 maxlen: 24
92.113.81.0/24 maxlen: 24
92.113.82.0/24 maxlen: 24
92.113.84.0/24 maxlen: 24
92.113.85.0/24 maxlen: 24
92.113.87.0/24 maxlen: 24
92.113.88.0/24 maxlen: 24
92.113.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:a2:92:79:01:62:44:d9:ca:03:33:76:60:57:2f:81:6b:28:69:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Nov 19 09:42:57 2024 GMT
Not After : Nov 18 09:47:57 2025 GMT
Subject: CN=4566A3FD65FB7BB0FB8C68876779B365656CA77F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c4:16:5e:60:d2:e1:7e:9b:9a:5c:03:ea:89:
93:61:50:95:cf:27:fe:71:6e:d5:84:cd:94:69:59:
5c:c1:85:85:df:c4:87:fb:76:e3:ad:89:f6:c0:87:
f1:c2:5e:c4:50:2f:a5:76:08:9c:d8:34:2e:b6:b6:
93:57:6b:f3:69:3e:42:b9:28:ab:f7:e3:7b:9d:bc:
67:73:fc:55:e4:67:e3:a0:cb:1c:11:a2:cd:8b:29:
e0:54:69:57:8b:8e:1c:88:5a:38:dc:74:cc:b9:b3:
33:24:b7:eb:ae:96:64:2b:45:14:df:b7:2c:e4:82:
a8:2b:ed:2a:f4:c1:80:7e:4c:0d:03:57:7c:4e:84:
87:d0:82:ed:a8:70:c9:ee:09:6c:08:bc:42:8e:20:
f2:13:4f:f7:3b:db:0c:d1:48:37:0c:6a:30:cc:0d:
92:ee:95:ff:b1:96:66:0a:3c:25:94:85:7b:5e:f2:
70:25:77:e9:9f:6a:d8:14:a4:c0:bf:bf:98:b9:8b:
78:94:d8:ce:72:97:04:48:64:40:23:66:c5:79:28:
87:75:b5:16:4a:89:5b:f5:f3:f7:57:b1:8e:a9:8d:
94:d7:55:b0:45:fc:fd:9e:dd:48:ca:6b:92:71:06:
d7:ee:25:70:80:a6:11:f9:36:c6:4d:ae:c6:b7:8d:
92:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:66:A3:FD:65:FB:7B:B0:FB:8C:68:87:67:79:B3:65:65:6C:A7:7F
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.204.0/23
92.113.41.0/24
92.113.55.0/24
92.113.65.0-92.113.66.255
92.113.68.0/23
92.113.75.0-92.113.76.255
92.113.78.0/23
92.113.81.0-92.113.82.255
92.113.84.0/23
92.113.87.0-92.113.88.255
92.113.90.0/24
Signature Algorithm: sha256WithRSAEncryption
36:b2:98:18:4e:e9:b3:24:29:a0:e6:18:93:3c:65:b5:25:74:
fb:22:5f:12:62:e8:37:b6:27:34:fa:9f:22:ad:b3:a1:c6:7c:
1d:06:8b:fc:95:c3:5e:d4:aa:5d:b9:9f:3d:e4:af:c1:79:7b:
c8:58:69:93:39:7f:3f:40:96:67:df:3f:10:04:b2:35:39:69:
a9:7c:bb:81:41:51:3f:15:ee:a7:47:4f:83:7c:81:b0:00:7f:
15:60:aa:3a:5d:15:1d:ec:cc:09:70:28:05:20:a3:8a:63:84:
0c:c6:3e:36:13:bf:b4:53:b7:89:77:99:d9:f0:b3:6c:3d:4e:
ef:6d:98:ba:21:85:75:d7:08:47:f3:c6:8c:51:e4:80:4f:70:
d2:a2:a7:23:17:2f:66:ed:1e:ad:b7:d9:f2:1e:0e:02:81:d3:
97:95:67:24:b8:a4:cf:f8:da:7e:ba:9e:a3:a7:fd:4e:d7:0b:
b8:80:aa:0d:b3:4b:1c:bb:68:84:1d:f7:3c:6c:b6:25:e2:d7:
d9:15:a8:31:92:71:5e:24:90:6e:bc:db:86:c4:c5:c2:a3:31:
bf:41:8b:8e:b2:d8:60:a5:e3:a5:99:40:18:47:b9:33:f3:72:
f3:77:aa:cc:02:d4:bc:56:79:be:7b:58:aa:d1:e6:3f:49:a7:
35:3c:ca:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:40:00 2024 by rpki-client on console-ams.rpki-client.org