Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS23961.roa
File: AS23961.roa (raw, json)
Hash identifier: JK8alu5fzsVfl/yv9ERtI4kU/U8aW3BCfJZq6Uf94iU=
Subject key identifier: D5:D1:F0:9A:92:E9:4A:1D:E5:00:37:BB:5A:3C:B4:76:F2:8E:90:45
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 72D443C4F1BD0AA23BF457FC7C4162AFB2109C62
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS23961.roa
Signing time: Wed 04 Sep 2024 04:06:11 +0000
ROA not before: Wed 04 Sep 2024 04:01:11 +0000
ROA not after: Wed 03 Sep 2025 04:06:11 +0000
asID: 23961
IP address blocks: 45.11.104.0/22 maxlen: 24
45.11.104.0/23 maxlen: 24
45.150.240.0/22 maxlen: 24
45.150.242.0/23 maxlen: 24
188.244.96.0/23 maxlen: 24
194.156.162.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:d4:43:c4:f1:bd:0a:a2:3b:f4:57:fc:7c:41:62:af:b2:10:9c:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Sep 4 04:01:11 2024 GMT
Not After : Sep 3 04:06:11 2025 GMT
Subject: CN=D5D1F09A92E94A1DE50037BB5A3CB476F28E9045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5f:be:53:c9:1c:3b:ac:60:b4:33:66:37:14:
89:dd:4b:16:11:52:90:a4:12:f1:36:b5:01:ec:c4:
59:a3:f6:ea:57:05:12:c6:4c:32:a5:31:87:49:b2:
7f:28:43:8f:c5:38:65:46:ef:7a:30:81:73:de:5a:
3c:31:a6:d7:90:54:02:47:27:cf:f8:60:12:8e:01:
38:02:ae:2a:53:0d:09:9c:bd:3d:03:8d:56:fa:6b:
1f:b3:01:a8:6b:1f:d8:88:10:cc:af:bc:23:bd:3d:
c4:4d:77:56:6b:91:cd:0c:87:eb:b4:a2:b3:f4:44:
92:4a:cb:b1:9d:df:a1:d6:bb:ac:27:e6:cf:4f:40:
86:97:b4:b8:03:99:ec:c4:7d:34:a1:d5:68:f3:d0:
ed:9a:18:d3:c0:da:f6:bf:27:29:e9:8b:5e:9a:b5:
e7:b9:57:b9:3f:aa:f4:12:d3:bf:2b:db:32:a4:33:
cb:71:89:21:f6:a7:81:74:03:bd:a4:6f:cd:fc:d4:
81:7a:8a:24:f8:ea:7f:29:91:1c:df:14:ef:70:52:
04:ea:42:f2:79:2e:7b:20:f5:17:a8:2d:c2:bc:da:
1d:d9:98:ab:6a:2d:d0:d3:b2:8f:17:32:f9:e1:7f:
cb:a4:6b:2e:b2:15:64:b7:c2:0e:75:76:ee:66:db:
21:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:D1:F0:9A:92:E9:4A:1D:E5:00:37:BB:5A:3C:B4:76:F2:8E:90:45
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS23961.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.104.0/22
45.150.240.0/22
188.244.96.0/23
194.156.162.0/23
Signature Algorithm: sha256WithRSAEncryption
90:04:13:8a:12:85:6a:17:8d:d0:c5:21:eb:dc:72:67:fe:7f:
a7:b6:96:57:34:08:bd:cb:06:2d:c3:c1:f8:62:dd:a6:32:39:
d5:39:79:3d:b4:71:55:08:36:75:6c:d6:da:c2:09:3d:24:d6:
87:04:10:f0:64:15:9b:7f:ed:c6:41:d0:ab:4c:45:9f:c8:18:
59:c0:23:3b:1c:05:be:8d:05:9a:f9:35:98:43:ef:26:36:29:
d1:bd:cc:6a:f9:75:3d:2d:fb:e5:c1:ad:cf:bf:b3:63:a3:56:
52:2b:e5:90:c2:97:e8:20:ed:48:a3:35:8c:be:6f:c8:c9:63:
2b:ec:58:f0:e8:24:99:45:6a:f3:66:56:5d:f9:01:14:cd:2e:
4a:3d:9b:af:01:e6:b7:0f:9f:77:23:de:32:f2:b3:f0:25:3d:
6e:e0:b4:ab:d0:a0:1f:d9:33:7c:74:75:e7:cf:ab:bb:27:c6:
23:9b:0d:a5:1e:09:84:d2:bc:de:00:d4:e4:93:bf:fd:09:e9:
94:df:24:38:eb:ca:97:9a:69:78:ad:2d:d4:03:45:2f:52:fe:
52:48:fb:4e:dc:82:8f:42:4e:d6:6d:61:3a:19:cf:2d:bb:ca:
86:8a:30:b3:79:12:2d:ef:71:6e:2e:16:fe:14:69:c5:c1:e9:
11:4a:f2:cd
-----BEGIN CERTIFICATE-----
MIIErTCCA5WgAwIBAgIUctRDxPG9CqI79Ff8fEFir7IQnGIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzU5YTRiNmM2ZDM3MTNjZmYzNjM2MjA3ZGU5ODM5MDU4
YjUxODE1YjAeFw0yNDA5MDQwNDAxMTFaFw0yNTA5MDMwNDA2MTFaMDMxMTAvBgNV
BAMTKEQ1RDFGMDlBOTJFOTRBMURFNTAwMzdCQjVBM0NCNDc2RjI4RTkwNDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXX75TyRw7rGC0M2Y3FIndSxYR
UpCkEvE2tQHsxFmj9upXBRLGTDKlMYdJsn8oQ4/FOGVG73owgXPeWjwxpteQVAJH
J8/4YBKOATgCripTDQmcvT0DjVb6ax+zAahrH9iIEMyvvCO9PcRNd1Zrkc0Mh+u0
orP0RJJKy7Gd36HWu6wn5s9PQIaXtLgDmezEfTSh1Wjz0O2aGNPA2va/Jynpi16a
tee5V7k/qvQS078r2zKkM8txiSH2p4F0A72kb8381IF6iiT46n8pkRzfFO9wUgTq
QvJ5Lnsg9ReoLcK82h3ZmKtqLdDTso8XMvnhf8ukay6yFWS3wg51du5m2yElAgMB
AAGjggG3MIIBszAdBgNVHQ4EFgQU1dHwmpLpSh3lADe7Wjy0dvKOkEUwHwYDVR0j
BBgwFoAUNZpLbG03E8/zY2IH3pg5BYtRgVswDgYDVR0PAQH/BAQDAgeAMGEGA1Ud
HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnN5bmMucnAua2kvcmVwby9taXNha2Fpby8y
LzM1OUE0QjZDNkQzNzEzQ0ZGMzYzNjIwN0RFOTgzOTA1OEI1MTgxNUIuY3JsMGQG
CCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvREVGQVVMVC9OWnBMYkcwM0U4X3pZMklIM3BnNUJZdFJnVnMu
Y2VyMEsGCCsGAQUFBwELBD8wPTA7BggrBgEFBQcwC4YvcnN5bmM6Ly9yc3luYy5y
cC5raS9yZXBvL21pc2FrYWlvLzIvQVMyMzk2MS5yb2EwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAi0LaAMEAi2W
8AMEAbz0YAMEAcKcojANBgkqhkiG9w0BAQsFAAOCAQEAkAQTihKFaheN0MUh69xy
Z/5/p7aWVzQIvcsGLcPB+GLdpjI51Tl5PbRxVQg2dWzW2sIJPSTWhwQQ8GQVm3/t
xkHQq0xFn8gYWcAjOxwFvo0Fmvk1mEPvJjYp0b3Mavl1PS375cGtz7+zY6NWUivl
kMKX6CDtSKM1jL5vyMljK+xY8OgkmUVq82ZWXfkBFM0uSj2brwHmtw+fdyPeMvKz
8CU9buC0q9CgH9kzfHR158+ruyfGI5sNpR4JhNK83gDU5JO//QnplN8kOOvKl5pp
eK0t1ANFL1L+Ukj7TtyCj0JO1m1hOhnPLbvKhoows3kSLe9xbi4W/hRpxcHpEUry
zQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org