Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS205152.roa
File: AS205152.roa (raw, json)
Hash identifier: 9jtqRpFJF7//yEiWs51fIpChv1Ln4J2dZLi7WN3U7lY=
Subject key identifier: 59:7C:3D:70:96:F0:3A:8D:DB:A8:33:52:62:D2:20:F7:F7:36:CF:33
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 2BAF68518523AB48890B3F08EB3F15567CFC6583
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS205152.roa
Signing time: Wed 20 Dec 2023 21:30:09 +0000
ROA not before: Wed 20 Dec 2023 21:25:09 +0000
ROA not after: Wed 18 Dec 2024 21:30:09 +0000
asID: 205152
IP address blocks: 2a0b:4340:1300::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:af:68:51:85:23:ab:48:89:0b:3f:08:eb:3f:15:56:7c:fc:65:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 20 21:25:09 2023 GMT
Not After : Dec 18 21:30:09 2024 GMT
Subject: CN=597C3D7096F03A8DDBA8335262D220F7F736CF33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:07:50:86:30:37:19:b1:f0:47:56:50:58:29:
dd:3f:3b:18:24:3e:ac:03:b0:4a:85:c7:41:52:73:
12:a3:d2:4a:88:41:ee:42:9a:8f:3a:19:71:b6:2c:
be:e4:76:e4:3a:c7:e2:89:41:43:ea:fd:28:cc:ce:
31:ad:eb:df:7e:31:72:d1:f0:e6:ab:0a:bf:b7:c0:
bc:7e:f3:67:36:fc:cc:d3:0a:51:f4:8f:b6:a3:40:
1d:20:0d:48:69:34:1e:5d:2e:b9:c4:6a:3d:08:85:
b1:3a:a7:9b:4e:c9:a1:48:48:5f:5e:9f:8e:cf:12:
04:c2:67:9b:66:22:2d:d9:b2:4b:30:c9:3e:d5:f7:
d4:b5:32:94:de:d7:39:4b:86:90:db:d7:65:29:38:
f9:14:aa:ed:4b:71:bc:70:e2:e0:b7:0a:5d:b1:e4:
24:29:43:10:60:fa:29:ee:96:87:54:b5:44:fc:7c:
92:11:bd:cd:1b:89:28:96:76:9f:3c:16:10:43:64:
ec:6a:34:2a:11:27:12:66:96:84:3c:3b:c6:c5:d8:
d1:0b:86:59:bb:7b:c8:a9:ea:fa:f2:e8:a3:6c:04:
cb:07:d8:81:96:b6:2f:02:28:62:42:8d:80:74:8b:
35:94:c1:c1:1a:2e:19:7b:ef:3c:c7:0a:d5:c2:e8:
62:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7C:3D:70:96:F0:3A:8D:DB:A8:33:52:62:D2:20:F7:F7:36:CF:33
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS205152.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4340:1300::/40
Signature Algorithm: sha256WithRSAEncryption
4a:0d:6e:a9:06:97:68:60:d6:5c:18:ee:5b:19:b1:d3:76:e7:
e5:ee:af:fa:a1:cb:08:06:67:bd:32:23:23:94:5d:26:50:d2:
e9:05:40:f4:36:d9:30:40:90:5c:95:5b:d2:8d:d8:20:dd:aa:
56:20:4f:f2:b2:3b:88:dc:63:e2:83:d2:c4:25:be:c4:42:56:
44:4f:1f:4a:48:e9:67:1f:70:03:05:9f:53:89:74:4c:eb:0c:
9e:0c:3c:31:97:76:69:13:d0:65:de:f8:b9:ce:4d:6e:fc:84:
fc:d0:a7:43:76:96:ce:ac:c3:0a:3b:3c:62:12:20:91:10:56:
08:3e:8d:fc:8b:eb:21:ca:6a:ac:5c:f1:95:e8:21:3c:7a:c1:
82:53:28:41:e4:41:32:d6:90:64:92:0e:54:ae:39:b5:52:b9:
48:18:d6:00:ad:92:58:cb:82:06:88:c5:14:a8:84:b0:01:cf:
bb:09:b2:a1:4f:4d:3b:e3:a7:ca:ee:56:60:34:c0:30:47:f8:
a8:6f:ed:d9:59:46:91:30:1f:d9:4c:7c:ee:8c:4c:b6:18:44:
93:54:f5:bb:28:fe:ef:ea:c6:ef:72:38:dc:e1:b6:03:9f:fd:
c0:a4:b8:38:1d:3c:23:76:39:24:53:59:b8:a5:1d:c9:a8:e5:
ab:3a:3f:43
-----BEGIN CERTIFICATE-----
MIIEnjCCA4agAwIBAgIUK69oUYUjq0iJCz8I6z8VVnz8ZYMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzU5YTRiNmM2ZDM3MTNjZmYzNjM2MjA3ZGU5ODM5MDU4
YjUxODE1YjAeFw0yMzEyMjAyMTI1MDlaFw0yNDEyMTgyMTMwMDlaMDMxMTAvBgNV
BAMTKDU5N0MzRDcwOTZGMDNBOEREQkE4MzM1MjYyRDIyMEY3RjczNkNGMzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAB1CGMDcZsfBHVlBYKd0/Oxgk
PqwDsEqFx0FScxKj0kqIQe5Cmo86GXG2LL7kduQ6x+KJQUPq/SjMzjGt699+MXLR
8OarCr+3wLx+82c2/MzTClH0j7ajQB0gDUhpNB5dLrnEaj0IhbE6p5tOyaFISF9e
n47PEgTCZ5tmIi3ZskswyT7V99S1MpTe1zlLhpDb12UpOPkUqu1Lcbxw4uC3Cl2x
5CQpQxBg+inulodUtUT8fJIRvc0biSiWdp88FhBDZOxqNCoRJxJmloQ8O8bF2NEL
hlm7e8ip6vry6KNsBMsH2IGWti8CKGJCjYB0izWUwcEaLhl77zzHCtXC6GLBAgMB
AAGjggGoMIIBpDAdBgNVHQ4EFgQUWXw9cJbwOo3bqDNSYtIg9/c2zzMwHwYDVR0j
BBgwFoAUNZpLbG03E8/zY2IH3pg5BYtRgVswDgYDVR0PAQH/BAQDAgeAMGEGA1Ud
HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnN5bmMucnAua2kvcmVwby9taXNha2Fpby8y
LzM1OUE0QjZDNkQzNzEzQ0ZGMzYzNjIwN0RFOTgzOTA1OEI1MTgxNUIuY3JsMGQG
CCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvREVGQVVMVC9OWnBMYkcwM0U4X3pZMklIM3BnNUJZdFJnVnMu
Y2VyMEwGCCsGAQUFBwELBEAwPjA8BggrBgEFBQcwC4YwcnN5bmM6Ly9yc3luYy5y
cC5raS9yZXBvL21pc2FrYWlvLzIvQVMyMDUxNTIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqC0NAEzAN
BgkqhkiG9w0BAQsFAAOCAQEASg1uqQaXaGDWXBjuWxmx03bn5e6v+qHLCAZnvTIj
I5RdJlDS6QVA9DbZMECQXJVb0o3YIN2qViBP8rI7iNxj4oPSxCW+xEJWRE8fSkjp
Zx9wAwWfU4l0TOsMngw8MZd2aRPQZd74uc5NbvyE/NCnQ3aWzqzDCjs8YhIgkRBW
CD6N/IvrIcpqrFzxleghPHrBglMoQeRBMtaQZJIOVK45tVK5SBjWAK2SWMuCBojF
FKiEsAHPuwmyoU9NO+Onyu5WYDTAMEf4qG/t2VlGkTAf2Ux87oxMthhEk1T1uyj+
7+rG73I43OG2A5/9wKS4OB08I3Y5JFNZuKUdyajlqzo/Qw==
-----END CERTIFICATE-----
Generated at Tue May 28 14:46:54 2024 by rpki-client on console-fra.rpki-client.org