Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
File: AS54339.roa (raw, json)
Hash identifier: OP/fr9EwX2K+TrPwlPNXfWbeZTskqFXVlkvzIZRMsT8=
Subject key identifier: C2:B5:E0:4B:5A:2C:AE:F3:ED:1E:81:F4:9E:A1:B8:99:61:28:E2:77
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 29BC0CD29CC19EE14E6E983ACC2D4E770219F33A
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
Signing time: Wed 04 Dec 2024 17:03:45 +0000
ROA not before: Wed 04 Dec 2024 16:58:45 +0000
ROA not after: Wed 03 Dec 2025 17:03:45 +0000
asID: 54339
IP address blocks: 46.203.199.0/24 maxlen: 24
46.203.235.0/24 maxlen: 24
92.113.4.0/24 maxlen: 24
92.113.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 10:55:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:bc:0c:d2:9c:c1:9e:e1:4e:6e:98:3a:cc:2d:4e:77:02:19:f3:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Dec 4 16:58:45 2024 GMT
Not After : Dec 3 17:03:45 2025 GMT
Subject: CN=C2B5E04B5A2CAEF3ED1E81F49EA1B8996128E277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f5:d1:74:19:b9:98:de:a9:4e:b9:3d:18:ae:
92:41:aa:16:6d:41:9c:25:d3:be:8f:e7:2c:c6:db:
e1:19:ef:58:d2:4e:4e:b2:fc:50:11:90:ab:53:4c:
2f:15:e4:48:6b:c0:f7:5c:b6:f4:1b:80:ff:7e:0b:
85:3a:d7:a7:5e:cc:ca:45:aa:80:94:28:a5:24:6f:
66:2b:41:6b:33:10:7e:e3:15:c0:af:cd:cf:8c:30:
cc:17:15:c3:54:2d:4f:3f:9e:08:73:f4:02:a6:fb:
0d:17:8b:9f:ab:b7:64:c6:57:bf:f1:68:30:65:f7:
d5:c9:40:20:7f:03:46:a0:0e:ae:c0:05:f0:61:5f:
ff:e0:1e:11:f4:38:44:0c:52:94:4d:5c:c9:44:32:
0d:84:9e:59:1b:1a:00:08:41:94:e9:f8:08:64:56:
ac:34:0a:f7:5e:f8:9c:37:62:3a:fa:82:e9:8d:ac:
0c:6a:60:46:8d:37:2f:5e:3f:c4:b9:bc:7e:38:06:
54:69:fe:c5:ad:3c:11:59:be:12:9b:97:e4:4b:2a:
08:6b:cb:73:9a:65:79:a4:78:a6:aa:55:12:65:7f:
cd:07:ce:be:8e:73:e6:60:ea:14:f8:a0:6c:5c:83:
08:3a:7e:ce:a9:56:c6:2d:28:02:27:f2:33:d4:94:
a2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B5:E0:4B:5A:2C:AE:F3:ED:1E:81:F4:9E:A1:B8:99:61:28:E2:77
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.199.0/24
46.203.235.0/24
92.113.4.0/24
92.113.9.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:9f:bc:ef:70:c9:fc:93:a1:fb:91:d0:74:9a:86:40:4b:6f:
5e:dc:f8:eb:ed:0e:a9:26:b7:1d:48:96:07:87:7c:d8:36:bd:
b9:e6:e7:d7:67:b6:ae:ea:50:c4:a5:f4:e0:1a:9e:8e:ea:4a:
09:7c:5a:c7:cf:41:a5:9e:33:0a:22:2a:cc:3f:3e:9b:ee:11:
a0:a7:7b:90:35:6c:dd:de:0f:bf:84:38:02:c6:b3:bd:a3:52:
a5:ed:11:8b:0c:d3:b5:48:06:ef:c1:3f:be:12:c7:96:9f:59:
e8:c9:8a:13:55:48:68:5d:ee:45:2f:cc:70:29:58:25:f6:99:
82:03:bd:ff:0b:1e:d3:a3:2f:27:14:d3:f4:9a:be:ad:24:d6:
28:60:e7:e4:be:20:79:7d:29:59:a5:e8:6b:ad:e3:44:73:a5:
d8:c0:ec:ea:78:cf:40:2b:60:4e:fe:67:c0:be:9e:e5:e8:83:
5d:58:9a:07:8e:df:36:7a:99:a1:4d:7e:31:e0:97:bc:61:7a:
d4:8c:05:d3:58:16:2f:c0:f2:9e:d7:9c:23:6d:9a:66:94:84:
2e:b9:46:3d:2a:0e:5a:d3:80:b8:52:66:7b:33:26:5d:c0:a0:
52:83:26:da:7e:5d:62:3a:fa:8f:bd:21:78:0b:6c:b1:7b:b5:
ad:8f:66:12
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUKbwM0pzBnuFObpg6zC1OdwIZ8zowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNDEyMDQxNjU4NDVaFw0yNTEyMDMxNzAzNDVaMDMxMTAvBgNV
BAMTKEMyQjVFMDRCNUEyQ0FFRjNFRDFFODFGNDlFQTFCODk5NjEyOEUyNzcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz9dF0GbmY3qlOuT0YrpJBqhZt
QZwl076P5yzG2+EZ71jSTk6y/FARkKtTTC8V5EhrwPdctvQbgP9+C4U616dezMpF
qoCUKKUkb2YrQWszEH7jFcCvzc+MMMwXFcNULU8/nghz9AKm+w0Xi5+rt2TGV7/x
aDBl99XJQCB/A0agDq7ABfBhX//gHhH0OEQMUpRNXMlEMg2EnlkbGgAIQZTp+Ahk
Vqw0Cvde+Jw3Yjr6gumNrAxqYEaNNy9eP8S5vH44BlRp/sWtPBFZvhKbl+RLKghr
y3OaZXmkeKaqVRJlf80Hzr6Oc+Zg6hT4oGxcgwg6fs6pVsYtKAIn8jPUlKJ1AgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQUwrXgS1osrvPtHoH0nqG4mWEo4ncwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNTQzMzkucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBAAuy8cD
BAAuy+sDBABccQQDBABccQkwDQYJKoZIhvcNAQELBQADggEBAG+fvO9wyfyTofuR
0HSahkBLb17c+OvtDqkmtx1IlgeHfNg2vbnm59dntq7qUMSl9OAano7qSgl8WsfP
QaWeMwoiKsw/PpvuEaCne5A1bN3eD7+EOALGs72jUqXtEYsM07VIBu/BP74Sx5af
WejJihNVSGhd7kUvzHApWCX2mYIDvf8LHtOjLycU0/Savq0k1ihg5+S+IHl9KVml
6Gut40RzpdjA7Op4z0ArYE7+Z8C+nuXog11YmgeO3zZ6maFNfjHgl7xhetSMBdNY
Fi/A8p7XnCNtmmaUhC65Rj0qDlrTgLhSZnszJl3AoFKDJtp+XWI6+o+9IXgLbLF7
ta2PZhI=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:56 2025 by rpki-client