Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS46573.roa
File: AS46573.roa (raw, json)
Hash identifier: 08ycwWrYfeyGUQ2DzGtZlNPUxBeSj4GwDj4C9g2EdSc=
Subject key identifier: 37:09:A6:45:74:40:D1:E3:0F:E9:99:69:DE:39:A3:44:29:53:6E:13
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 37F23EE7ED6580B200F7613FEECBAEFB7FCF9A48
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS46573.roa
Signing time: Mon 12 Aug 2024 13:20:14 +0000
ROA not before: Mon 12 Aug 2024 13:15:14 +0000
ROA not after: Mon 11 Aug 2025 13:20:14 +0000
asID: 46573
IP address blocks: 92.112.170.0/24 maxlen: 24
92.112.171.0/24 maxlen: 24
92.112.172.0/24 maxlen: 24
92.112.175.0/24 maxlen: 24
92.112.200.0/24 maxlen: 24
92.112.202.0/24 maxlen: 24
92.113.234.0/24 maxlen: 24
92.113.235.0/24 maxlen: 24
92.113.239.0/24 maxlen: 24
92.113.240.0/24 maxlen: 24
92.113.244.0/24 maxlen: 24
92.113.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:f2:3e:e7:ed:65:80:b2:00:f7:61:3f:ee:cb:ae:fb:7f:cf:9a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Aug 12 13:15:14 2024 GMT
Not After : Aug 11 13:20:14 2025 GMT
Subject: CN=3709A6457440D1E30FE99969DE39A34429536E13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:76:01:fa:f4:a1:39:bb:7e:70:36:6d:94:62:
49:93:58:c1:21:b3:e0:7d:e1:06:f7:d4:15:02:ea:
d4:85:56:be:eb:f1:6f:4a:54:92:9f:95:23:92:0e:
aa:e8:10:aa:6f:af:d3:3b:0d:26:e3:0f:7c:d6:5e:
30:b9:ba:f4:32:7e:2d:52:fb:29:75:20:74:65:9a:
7a:f2:c3:92:61:63:0d:91:a2:7a:39:50:a2:52:54:
36:2a:9d:76:df:be:da:0a:56:58:a0:bd:f9:d2:d7:
d2:16:c8:7b:79:45:8e:07:16:a2:c3:da:57:8c:ea:
dd:be:49:86:db:7b:36:6e:10:5c:88:16:69:25:76:
89:79:ad:ff:4b:33:86:a3:de:db:9f:89:3a:64:5d:
db:3a:9b:bc:ae:16:27:b4:5c:58:74:19:b2:3c:97:
66:12:4f:92:02:1b:2e:ee:c5:fb:e3:bb:c9:0a:05:
65:92:04:60:9f:4c:09:94:ba:18:5b:7e:f0:39:89:
e4:3b:68:67:26:47:82:62:8f:cb:b1:28:59:11:51:
9d:8b:1f:9e:03:38:f2:1d:1b:b1:eb:75:0f:55:fe:
29:d4:47:c1:f8:f5:76:f3:e4:a4:54:c8:b3:31:e4:
02:3e:3b:ef:09:c0:5c:ab:3f:c8:eb:70:d2:23:1e:
89:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:09:A6:45:74:40:D1:E3:0F:E9:99:69:DE:39:A3:44:29:53:6E:13
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS46573.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.112.170.0-92.112.172.255
92.112.175.0/24
92.112.200.0/24
92.112.202.0/24
92.113.234.0/23
92.113.239.0-92.113.240.255
92.113.244.0/23
Signature Algorithm: sha256WithRSAEncryption
91:28:0c:46:1f:eb:1a:4a:e4:94:b5:05:cf:88:28:7d:ad:89:
28:3e:7f:04:36:03:9e:66:23:36:3e:ab:27:88:10:a2:5e:9b:
05:f6:92:b6:16:c0:85:2e:20:f4:56:6a:4a:b8:d2:e6:94:b7:
fd:ed:54:5c:65:d1:d2:06:0c:7e:c6:34:fd:21:ee:ee:0d:55:
51:61:d4:91:c5:a7:4b:c3:57:27:c9:be:db:8f:98:43:c3:57:
c0:1c:1a:cb:8b:07:9f:2f:3d:92:98:0d:b7:e5:e4:8a:89:7e:
4f:fc:29:07:db:39:e8:b2:a4:77:c6:c7:80:0f:b1:09:36:f8:
95:d3:d2:38:99:ad:f8:33:03:3c:c5:f9:32:16:ff:25:4b:48:
69:00:df:c0:41:fc:14:46:49:90:f4:c5:5a:f9:d8:fd:f3:13:
7a:0c:92:2c:fb:bf:04:b8:6d:36:8b:32:3e:6e:e2:1b:85:c1:
92:fd:be:61:48:e9:d8:68:e1:b9:6a:6c:7a:be:08:aa:43:d2:
a4:c3:31:05:25:a9:10:b7:e7:6b:21:2b:e6:a7:b7:0a:18:f7:
6a:66:7f:b8:00:a3:33:6a:98:55:45:3a:f9:3d:44:2b:66:86:
91:d1:53:fd:95:b5:96:a4:43:e6:1f:1a:6b:e8:f6:c6:5d:71:
68:28:20:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:19:06 2024 by rpki-client on console-fra.rpki-client.org