Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7922.roa
File: AS7922.roa (raw, json)
Hash identifier: Pm2VnhirV51k1hhWs6T4mjq0ensdvrDUPLPnvgaP82A=
Subject key identifier: 7D:51:F5:07:8E:F1:98:B0:FF:67:D5:48:74:74:13:F1:11:F2:91:77
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 3BF7EA50D2EA8E77AC51F1FBBD7D7575FC332864
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7922.roa
Signing time: Tue 29 Oct 2024 10:00:00 +0000
ROA not before: Tue 29 Oct 2024 09:55:00 +0000
ROA not after: Tue 28 Oct 2025 10:00:00 +0000
asID: 7922
IP address blocks: 46.202.218.0/24 maxlen: 24
92.113.86.0/24 maxlen: 24
92.113.89.0/24 maxlen: 24
92.113.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:f7:ea:50:d2:ea:8e:77:ac:51:f1:fb:bd:7d:75:75:fc:33:28:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Oct 29 09:55:00 2024 GMT
Not After : Oct 28 10:00:00 2025 GMT
Subject: CN=7D51F5078EF198B0FF67D548747413F111F29177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:30:d2:76:df:d6:da:eb:f4:1b:a6:45:e0:9a:
6d:92:cb:1a:da:82:5f:ac:e7:8a:cc:ad:17:0e:de:
f5:d9:1b:8d:4e:e2:d5:1f:7a:18:1e:28:5f:3c:dd:
a3:c3:d3:f2:f9:46:67:2f:d0:3d:07:ef:f6:bc:4f:
d8:a8:cd:6f:77:a5:eb:7a:10:41:55:cd:7b:da:01:
a9:70:b3:1d:8c:0a:a1:4e:5e:2a:0d:46:1c:e7:85:
2a:21:94:4a:1b:4e:e9:7a:72:7a:a9:9a:ae:88:a9:
11:52:78:cf:0a:36:fa:52:e3:e1:53:b5:9c:9c:ea:
cf:d3:27:21:bd:5b:c7:19:05:ba:ea:ca:34:9c:d9:
3e:85:53:d8:ea:3a:55:bc:f5:91:0b:07:66:39:cc:
04:a1:bd:44:b2:11:1a:be:b3:41:cb:7f:a1:64:80:
0f:eb:a6:f7:57:bb:b0:63:55:ba:02:a8:dd:ec:8f:
ce:6a:a8:5e:3c:fd:3e:40:50:95:36:10:6a:de:e4:
a1:84:a2:9a:9e:fc:4f:eb:33:3d:6a:3a:19:51:39:
b8:d7:e9:ec:57:5b:8e:33:d2:00:47:23:be:b0:fc:
39:8a:94:3e:64:92:fb:56:4d:32:c3:16:4c:c1:d5:
58:67:91:91:47:01:e1:3b:d6:91:80:8e:eb:b0:96:
1f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:51:F5:07:8E:F1:98:B0:FF:67:D5:48:74:74:13:F1:11:F2:91:77
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7922.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.218.0/24
92.113.86.0/24
92.113.89.0/24
92.113.114.0/24
Signature Algorithm: sha256WithRSAEncryption
83:10:d0:f0:1f:bd:14:03:8d:4d:c5:b4:d1:af:0b:2f:21:ae:
f3:5e:87:15:ed:d7:5d:f4:ce:8f:07:bd:92:cd:05:92:b3:9b:
34:a9:95:31:97:f3:e1:5b:2b:1c:2e:bf:2f:6a:8e:6d:1a:b6:
3b:f0:70:31:cd:36:af:b6:be:63:2a:45:c8:b1:25:7a:53:1d:
ca:d6:b3:fe:cb:fd:d7:d2:f7:d3:c6:22:97:64:ea:f0:02:0b:
d1:e8:18:19:b3:4d:4b:81:e5:29:ca:82:0e:fb:01:5d:9e:90:
31:d5:28:7d:c5:6f:6b:1f:be:6d:4d:16:d0:70:d1:76:37:53:
82:86:41:74:c4:f1:3d:ed:69:a3:c0:d4:65:f0:03:f7:78:50:
f8:65:9e:9a:e3:3c:41:93:82:e0:90:2b:59:0e:7b:ef:b9:3a:
ee:62:d6:ef:f2:0b:fd:66:ac:e9:26:ea:86:ee:94:a3:db:c5:
d0:0a:bf:cf:c5:51:f1:c4:d4:8c:98:90:09:6f:f3:2a:20:94:
de:03:a1:ab:28:10:c2:71:7b:88:13:c4:54:88:04:d4:95:94:
b9:a0:3b:c3:ea:8a:67:06:b0:15:4e:0e:97:74:5e:95:7a:1a:
a5:4d:5c:b0:56:f6:3c:ce:92:4e:76:67:ec:e9:08:bd:b5:10:
e5:5b:24:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:40:01 2024 by rpki-client on console-ams.rpki-client.org