Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
File: AS54339.roa (raw, json)
Hash identifier: CePSXW83rWNNZ/cpNqJPy0PFa+uA/rX9taaKk7kzeqE=
Subject key identifier: 87:1B:A8:98:E0:F9:4B:21:CD:8A:C8:FD:2B:76:A3:74:57:4C:4A:A8
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 66E2B71768F58761327013BA1D03BD2257B069BC
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
Signing time: Wed 16 Apr 2025 10:10:00 +0000
ROA not before: Wed 16 Apr 2025 10:05:00 +0000
ROA not after: Wed 15 Apr 2026 10:10:00 +0000
asID: 54339
IP address blocks: 46.203.107.0/24 maxlen: 24
46.203.114.0/24 maxlen: 24
46.203.168.0/24 maxlen: 24
46.203.169.0/24 maxlen: 24
46.203.171.0/24 maxlen: 24
46.203.177.0/24 maxlen: 24
46.203.179.0/24 maxlen: 24
46.203.199.0/24 maxlen: 24
46.203.235.0/24 maxlen: 24
92.112.55.0/24 maxlen: 24
92.113.4.0/24 maxlen: 24
92.113.6.0/24 maxlen: 24
92.113.9.0/24 maxlen: 24
92.113.15.0/24 maxlen: 24
92.113.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 15:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:e2:b7:17:68:f5:87:61:32:70:13:ba:1d:03:bd:22:57:b0:69:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 16 10:05:00 2025 GMT
Not After : Apr 15 10:10:00 2026 GMT
Subject: CN=871BA898E0F94B21CD8AC8FD2B76A374574C4AA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:be:d9:b2:a7:39:2f:15:47:15:b5:de:76:fe:
c4:48:58:75:17:e7:5f:5d:de:ac:76:f9:c0:0d:f0:
91:06:c5:7d:87:3f:6a:28:a4:27:40:62:ed:5e:37:
df:11:a3:14:28:62:50:6f:a7:39:ea:b6:85:a7:8b:
a8:97:be:30:a4:9a:47:7f:c3:52:37:32:aa:ff:52:
a7:c6:b3:ce:c8:60:4d:e4:41:29:09:40:90:5b:15:
89:3b:81:c7:0f:41:ce:b9:97:3b:fc:3c:24:d6:09:
bd:06:1e:fb:69:72:a4:2d:5c:fb:1e:66:69:87:1f:
ad:e5:d3:7c:21:da:ba:57:d4:ef:e3:64:75:15:39:
a0:02:45:af:bc:2e:79:6e:f1:02:50:f1:cf:8f:95:
19:86:af:9b:35:19:96:48:e7:ac:2a:11:86:42:03:
b3:94:0e:61:59:8a:51:5b:10:92:18:08:79:a4:1f:
2e:5a:bc:2b:b3:00:31:5d:7d:77:16:ed:64:0e:8b:
8c:c8:55:43:8e:c4:05:e3:d7:f2:6c:a2:de:b3:fb:
69:cc:9c:3c:a6:63:a8:5d:94:f8:40:d9:34:35:bf:
2e:82:15:a2:2b:82:42:c0:f8:cd:f5:31:61:8a:81:
ec:28:84:85:12:5a:1b:cb:cc:a1:11:2e:1b:1b:8a:
cd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:1B:A8:98:E0:F9:4B:21:CD:8A:C8:FD:2B:76:A3:74:57:4C:4A:A8
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.107.0/24
46.203.114.0/24
46.203.168.0/23
46.203.171.0/24
46.203.177.0/24
46.203.179.0/24
46.203.199.0/24
46.203.235.0/24
92.112.55.0/24
92.113.4.0/24
92.113.6.0/24
92.113.9.0/24
92.113.15.0/24
92.113.40.0/24
Signature Algorithm: sha256WithRSAEncryption
67:36:b0:a4:b1:af:24:b1:32:e1:ca:74:d0:25:c1:89:05:4f:
a3:94:d8:72:2c:b7:25:2f:c4:a4:b1:20:d6:3a:87:69:27:7c:
29:ef:f4:7b:a8:64:a0:3b:1a:31:cc:a7:fc:87:cb:09:50:ac:
b8:af:5f:56:71:4c:fb:41:2c:ca:2d:45:e3:99:65:13:2e:cd:
e0:55:54:52:98:c6:6c:d8:a3:bc:7c:af:4b:73:f0:d7:fc:5d:
c7:3d:b3:f1:d6:98:f2:c3:2e:b2:34:a0:6c:a9:56:26:01:d9:
17:e5:1b:9e:ca:ba:61:6e:9f:13:c7:0a:8b:fa:6d:d6:61:f8:
e6:70:71:03:da:6a:b2:5d:18:ab:cf:18:f8:6a:2b:ee:e8:6b:
42:88:65:cc:1d:c3:18:f9:10:1a:88:fe:14:3c:c4:c0:02:9f:
92:c6:4c:1e:11:5b:f6:4e:ef:6b:15:84:30:93:4a:28:9b:70:
26:ac:30:65:b0:2d:5f:51:f0:20:1d:43:5b:e7:7e:29:da:2f:
7e:71:ef:d3:45:07:f2:68:62:af:57:93:63:89:72:15:aa:75:
ac:07:41:f1:4f:21:31:bb:07:e9:18:91:0f:45:2f:22:6e:93:
91:7a:95:00:f4:09:10:bf:38:90:64:06:c6:4f:ae:06:1a:25:
62:9e:fe:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:09:04 2025 by rpki-client