Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS44486.roa
File: AS44486.roa (raw, json)
Hash identifier: wEl/uze1vsUshlZvPTRguktrcM4d5zDkLOPP33UmohY=
Subject key identifier: 75:5F:92:DA:D2:19:CF:9C:98:28:0A:26:C4:D4:E3:6E:35:88:2A:44
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 1B9519CC6085DCAF94892132DF5D780B4CE1EFB0
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS44486.roa
Signing time: Mon 12 Aug 2024 12:24:34 +0000
ROA not before: Mon 12 Aug 2024 12:19:34 +0000
ROA not after: Mon 11 Aug 2025 12:24:34 +0000
asID: 44486
IP address blocks: 91.124.140.0/24 maxlen: 24
91.124.243.0/24 maxlen: 24
91.124.252.0/24 maxlen: 24
92.113.2.0/24 maxlen: 24
92.113.5.0/24 maxlen: 24
92.113.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:95:19:cc:60:85:dc:af:94:89:21:32:df:5d:78:0b:4c:e1:ef:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Aug 12 12:19:34 2024 GMT
Not After : Aug 11 12:24:34 2025 GMT
Subject: CN=755F92DAD219CF9C98280A26C4D4E36E35882A44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d2:57:7c:a1:39:67:ba:8e:a9:c9:02:8c:69:
2a:91:59:28:e3:5a:c8:b0:c7:8d:43:a5:d0:5f:38:
74:58:16:c0:52:72:f9:02:34:fb:5f:17:79:3e:82:
47:ac:09:09:92:d7:27:f4:a3:e7:23:db:d5:8e:54:
44:b0:11:9e:0c:3b:4d:66:90:51:17:97:a1:4a:61:
dd:01:08:0e:2e:e7:04:0d:bf:2a:d3:e8:c4:5d:71:
00:2c:da:31:8f:7f:d8:01:3d:e1:25:9b:68:d6:13:
14:16:47:5a:cf:8d:d2:0c:5b:c9:86:db:23:b2:8b:
27:75:64:af:ee:5f:c8:63:80:d4:19:da:20:8c:04:
24:db:14:74:13:ea:98:41:cd:7d:46:fb:42:c8:10:
74:60:73:31:df:b4:b2:bd:e4:d9:9f:57:c0:ea:63:
45:72:83:67:22:4d:37:7c:01:20:d5:90:5c:14:22:
a9:6f:59:a3:9b:bb:82:b4:9c:d5:ed:72:0b:e9:32:
a0:f9:d3:db:0a:64:29:54:f8:6a:cd:32:fd:5d:d1:
2b:1c:61:d2:18:4a:ea:10:f7:8e:d1:18:4e:d7:a0:
0e:b1:1f:73:ac:5c:60:17:6b:6b:c5:ef:a8:96:f6:
cb:cc:60:79:77:94:65:76:36:69:e3:89:f3:25:b0:
eb:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:5F:92:DA:D2:19:CF:9C:98:28:0A:26:C4:D4:E3:6E:35:88:2A:44
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS44486.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.140.0/24
91.124.243.0/24
91.124.252.0/24
92.113.2.0/24
92.113.5.0/24
92.113.8.0/24
Signature Algorithm: sha256WithRSAEncryption
22:cc:9f:60:32:e9:aa:bd:37:16:ec:97:81:41:4b:01:69:07:
9c:60:5f:9a:94:67:05:bc:f7:ab:44:b7:68:28:aa:86:e4:38:
4c:81:48:0a:4b:16:1d:9c:57:81:ae:01:16:ef:2a:10:b1:10:
0d:b5:4b:94:ab:41:2e:bc:73:a5:eb:5c:c5:3b:53:c9:12:e5:
f4:01:0c:26:e6:d1:01:98:ef:5e:2b:9f:10:eb:d6:4b:a2:26:
ce:bf:66:5c:dd:fc:4e:5f:c9:05:fe:b7:ce:ed:61:f4:aa:45:
70:a8:6d:46:69:94:79:31:47:3b:c4:45:80:28:aa:81:b2:e6:
58:fe:37:8b:e4:61:12:14:89:1a:b5:c8:01:d5:49:9e:87:f1:
26:62:3b:68:4a:0f:71:c7:cf:ed:cf:7d:cc:cd:cb:16:97:20:
28:7a:3e:a9:82:44:19:c7:ad:32:96:4c:df:8e:10:6a:cb:d0:
41:44:68:90:46:60:d3:dc:e1:78:64:32:e1:13:49:09:e7:5d:
d9:d8:64:79:f9:ca:68:f8:ce:06:84:05:16:c4:c0:68:70:6f:
81:97:34:c1:93:af:97:c0:fb:78:42:f8:fe:84:70:cd:25:e2:
d2:27:55:38:6b:98:2b:3c:3e:80:eb:13:98:62:c2:bd:45:b9:
41:9b:6f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:40:01 2024 by rpki-client on console-ams.rpki-client.org