Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS3320.roa
File: AS3320.roa (raw, json)
Hash identifier: wrxjmNfMdNYbDKVni/AXGOwJLiyVebDusU2HgxJe+xo=
Subject key identifier: 2E:E3:F8:B5:A4:31:CF:B9:B9:37:D4:64:A2:F5:EF:C5:6B:F5:47:B0
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 37B3743115E1230FF43B6D494A637FACA3986591
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS3320.roa
Signing time: Sun 12 May 2024 11:38:48 +0000
ROA not before: Sun 12 May 2024 11:33:48 +0000
ROA not after: Sun 11 May 2025 11:38:48 +0000
asID: 3320
IP address blocks: 91.124.6.0/24 maxlen: 24
91.124.7.0/24 maxlen: 24
91.124.19.0/24 maxlen: 24
91.124.20.0/24 maxlen: 24
91.124.21.0/24 maxlen: 24
91.124.22.0/24 maxlen: 24
91.124.23.0/24 maxlen: 24
91.124.24.0/24 maxlen: 24
91.124.26.0/24 maxlen: 24
91.124.27.0/24 maxlen: 24
91.124.28.0/24 maxlen: 24
91.124.31.0/24 maxlen: 24
91.124.32.0/24 maxlen: 24
91.124.33.0/24 maxlen: 24
91.124.34.0/24 maxlen: 24
91.124.36.0/24 maxlen: 24
91.124.37.0/24 maxlen: 24
91.124.38.0/24 maxlen: 24
91.124.39.0/24 maxlen: 24
91.124.40.0/24 maxlen: 24
91.124.41.0/24 maxlen: 24
91.124.42.0/24 maxlen: 24
91.124.43.0/24 maxlen: 24
91.124.44.0/24 maxlen: 24
91.124.45.0/24 maxlen: 24
91.124.46.0/24 maxlen: 24
91.124.47.0/24 maxlen: 24
91.124.50.0/24 maxlen: 24
91.124.51.0/24 maxlen: 24
91.124.135.0/24 maxlen: 24
92.112.0.0/22 maxlen: 24
92.112.4.0/22 maxlen: 24
92.112.8.0/22 maxlen: 24
92.112.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:b3:74:31:15:e1:23:0f:f4:3b:6d:49:4a:63:7f:ac:a3:98:65:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 12 11:33:48 2024 GMT
Not After : May 11 11:38:48 2025 GMT
Subject: CN=2EE3F8B5A431CFB9B937D464A2F5EFC56BF547B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:5d:0e:64:da:f0:0d:7f:f8:aa:fa:c0:14:23:
44:26:6d:c6:b0:49:e0:47:66:fd:1d:e4:28:49:b8:
cf:cf:e7:2f:36:67:e6:ad:69:9a:0d:81:37:00:53:
81:cf:02:6a:83:63:c2:50:65:dd:58:f4:ed:1d:33:
2a:8c:c6:a1:6b:99:58:0d:1c:3b:73:cb:b8:2c:36:
12:5e:1b:27:6d:05:b4:67:56:fb:a2:13:5e:f9:a9:
77:9e:67:ee:68:8d:33:57:8d:18:c5:ee:61:ca:34:
ff:df:2e:f1:96:34:e1:72:57:f8:34:26:36:a1:fc:
af:56:d6:43:b6:b2:1f:a9:09:9a:97:82:b9:d0:78:
bf:72:81:01:d0:e2:0b:d5:d8:e6:7a:3f:16:24:c0:
3a:a1:62:50:cf:35:c4:ed:b9:4d:82:fa:58:83:34:
36:f2:81:7d:95:70:18:29:13:c3:1a:94:43:50:fa:
4c:de:19:d5:f7:f6:a7:e5:e7:a6:68:fd:ee:eb:3c:
81:cf:27:97:0f:81:98:55:33:f1:d6:b0:77:ba:4d:
20:f3:c0:89:43:5c:64:34:7c:e7:1a:17:b2:c6:1b:
c8:1d:83:8f:12:c2:2a:5a:d5:ff:fb:81:0c:57:73:
cf:56:21:e4:63:8e:0f:fd:3a:6a:5f:46:c3:3b:14:
50:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E3:F8:B5:A4:31:CF:B9:B9:37:D4:64:A2:F5:EF:C5:6B:F5:47:B0
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS3320.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.6.0/23
91.124.19.0-91.124.24.255
91.124.26.0-91.124.28.255
91.124.31.0-91.124.34.255
91.124.36.0-91.124.47.255
91.124.50.0/23
91.124.135.0/24
92.112.0.0/20
Signature Algorithm: sha256WithRSAEncryption
59:52:db:a5:11:82:57:07:52:cb:6b:91:5d:84:b5:7c:16:55:
8b:7f:dd:d2:78:d3:8c:c6:49:52:29:6d:47:40:16:7e:a6:a2:
04:9f:9b:67:dc:00:fd:a0:b0:64:71:1a:16:b2:51:41:36:cc:
b1:4b:7c:e5:15:72:c6:90:75:2d:b9:74:cf:4d:42:a5:fd:8d:
1f:48:6e:26:8a:7e:31:45:a5:c7:16:2a:35:d8:c7:15:0b:4c:
20:0e:30:bd:e2:62:97:96:86:ec:49:b5:f1:98:f3:c5:8f:39:
a8:36:4a:f7:ff:15:92:90:bc:a2:9b:56:29:cc:90:7b:29:49:
2d:2a:1b:53:e0:da:6d:5a:1d:a4:2a:02:98:ea:de:31:fd:9d:
82:49:23:88:f4:a8:fb:45:48:c2:4c:23:85:f7:bd:52:42:d7:
2e:4c:3c:53:4e:f3:90:5c:6c:95:ed:4b:cd:02:6a:75:bc:6c:
cf:3f:ac:90:32:85:30:3b:7a:f6:38:f9:8b:81:c3:64:ba:1c:
9b:fb:e2:73:e6:4b:19:09:a5:f8:01:c3:ab:e2:e3:82:3f:68:
34:0b:72:9c:ca:f1:38:15:8a:d5:cd:2d:86:3d:67:29:15:e7:
44:49:ee:f7:6a:c3:aa:7a:da:c6:38:5d:3d:60:83:04:40:d0:
9b:9a:b8:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 14:13:07 2024 by rpki-client on console-ams.rpki-client.org