Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS36530.roa
File: AS36530.roa (raw, json)
Hash identifier: wf39eQBDRxieGMXwvOTrFzBrSmFueOGVmnrqb1+lXWs=
Subject key identifier: 85:67:02:26:4F:65:AF:3F:DE:F0:78:3E:11:2E:88:BA:8A:0B:75:27
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 514127399A319333A5540793386897E1725B48A7
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS36530.roa
Signing time: Thu 16 Jan 2025 09:22:04 +0000
ROA not before: Thu 16 Jan 2025 09:17:04 +0000
ROA not after: Thu 15 Jan 2026 09:22:04 +0000
asID: 36530
IP address blocks: 46.203.98.0/24 maxlen: 24
46.203.99.0/24 maxlen: 24
46.203.188.0/24 maxlen: 24
46.203.189.0/24 maxlen: 24
46.203.203.0/24 maxlen: 24
46.203.204.0/24 maxlen: 24
46.203.250.0/24 maxlen: 24
46.203.251.0/24 maxlen: 24
91.124.8.0/24 maxlen: 24
91.124.9.0/24 maxlen: 24
91.124.10.0/24 maxlen: 24
91.124.11.0/24 maxlen: 24
91.124.12.0/24 maxlen: 24
91.124.13.0/24 maxlen: 24
92.113.106.0/23 maxlen: 24
92.113.112.0/23 maxlen: 24
92.113.124.0/23 maxlen: 24
92.113.136.0/23 maxlen: 24
92.113.142.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 14:35:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:41:27:39:9a:31:93:33:a5:54:07:93:38:68:97:e1:72:5b:48:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jan 16 09:17:04 2025 GMT
Not After : Jan 15 09:22:04 2026 GMT
Subject: CN=856702264F65AF3FDEF0783E112E88BA8A0B7527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cc:73:42:8c:63:a6:94:be:4b:6b:f8:89:66:
59:2f:e8:4b:ec:17:0e:1f:22:f7:2d:d1:48:b2:3d:
03:39:6a:eb:61:cb:08:c6:79:fe:72:73:75:1e:f4:
5c:27:1a:33:41:fe:81:ed:12:ea:f6:3d:98:83:dd:
30:c4:02:2d:ba:01:1b:da:09:27:71:2c:7d:11:76:
b8:e5:ac:96:46:1e:51:e8:0d:c1:6f:6a:89:b5:68:
5f:18:07:7a:89:33:64:78:6a:9a:87:e7:7f:ec:de:
24:f2:dc:fc:b7:1c:07:51:df:2f:17:7a:ec:92:5b:
cc:b5:e5:64:d7:d8:bd:d9:36:02:fd:78:04:55:df:
2a:a8:a4:e2:20:23:bc:a8:e6:86:68:ae:5b:a1:c7:
8b:91:29:4b:fa:0c:e7:3c:3d:b3:6e:24:b9:96:09:
a3:c4:79:09:4d:6e:e8:ab:db:6f:06:ca:f1:c0:dd:
97:c6:39:87:9d:8b:6f:1b:e1:5b:8d:13:0d:f2:b7:
b4:8f:cd:ed:54:be:82:fe:72:f8:08:94:c8:ba:9c:
c9:22:37:23:fb:b6:b0:8f:54:65:31:14:b5:7c:93:
5d:45:49:a2:9a:cd:61:04:35:82:76:e3:f9:ca:b1:
85:f5:6a:e9:90:06:85:de:6f:07:93:41:55:e7:6e:
db:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:67:02:26:4F:65:AF:3F:DE:F0:78:3E:11:2E:88:BA:8A:0B:75:27
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS36530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.98.0/23
46.203.188.0/23
46.203.203.0-46.203.204.255
46.203.250.0/23
91.124.8.0-91.124.13.255
92.113.106.0/23
92.113.112.0/23
92.113.124.0/23
92.113.136.0/23
92.113.142.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:49:e9:df:82:97:9a:1a:55:78:21:83:5d:b7:af:bf:2e:88:
e8:af:c7:6a:a4:24:6c:88:91:78:5d:fa:92:18:7d:d4:56:b0:
37:85:a3:c5:43:7c:0b:28:32:72:e0:40:6a:9d:c1:0a:64:45:
a2:f2:55:28:fa:b9:8a:ba:16:5b:59:9e:d7:cf:98:db:14:f6:
9a:ca:e7:7e:67:46:01:47:ac:76:9f:78:0e:6c:c9:20:e5:8b:
55:94:37:22:80:8e:a5:49:9f:a8:2d:80:dd:c3:36:b3:ce:2d:
4c:b3:24:0e:d8:f0:5c:7a:90:20:54:68:e7:cc:5c:da:60:a5:
b7:d3:d1:8b:92:37:33:fd:8e:15:cd:89:4a:84:3e:64:20:a6:
7f:b0:42:63:b3:3c:cd:64:63:81:b1:e3:56:83:eb:44:7f:70:
ef:5f:1d:90:ea:c4:d4:eb:58:f0:60:5f:3b:f3:92:cf:1b:01:
4b:94:f6:22:1d:35:cf:e3:bc:d1:dd:d4:6c:46:13:a7:37:e7:
fe:a3:cd:39:b3:65:97:4a:25:0b:42:a0:2e:9c:7e:d9:2c:dd:
a6:a5:8f:c3:f9:82:09:a1:f9:15:4f:3b:96:ae:d4:14:44:be:
3a:1c:d2:18:af:ed:71:3c:a8:aa:8c:56:ce:e4:97:6b:1a:e7:
e3:00:72:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 16:50:29 2025 by rpki-client