Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS35487.roa
File: AS35487.roa (raw, json)
Hash identifier: LSWsBNQso+vCK/uAGL2hzdriWU3W3e9TYnt9xQcAh1c=
Subject key identifier: 32:1B:B2:F1:1D:75:3E:C0:38:6C:3F:BC:79:61:2D:75:70:F5:51:48
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 0B2FBEECD255089C9BD23D86340404AC6500ACC7
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS35487.roa
Signing time: Tue 27 Feb 2024 15:50:35 +0000
ROA not before: Tue 27 Feb 2024 15:45:35 +0000
ROA not after: Tue 25 Feb 2025 15:50:35 +0000
asID: 35487
IP address blocks: 45.131.68.0/22 maxlen: 24
45.142.247.0/24 maxlen: 24
45.150.240.0/23 maxlen: 24
45.150.243.0/24 maxlen: 24
146.19.3.0/24 maxlen: 24
194.156.154.0/24 maxlen: 24
2a0b:4341::/32 maxlen: 48
2a0b:4342:1a90::/44 maxlen: 48
2a0d:5641:1a00::/40 maxlen: 48
2a0d:5642::/32 maxlen: 48
2a0f:3b05:100::/44 maxlen: 44
2a12:1701::/32 maxlen: 48
2a12:8d02::/32 maxlen: 48
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:2f:be:ec:d2:55:08:9c:9b:d2:3d:86:34:04:04:ac:65:00:ac:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Feb 27 15:45:35 2024 GMT
Not After : Feb 25 15:50:35 2025 GMT
Subject: CN=321BB2F11D753EC0386C3FBC79612D7570F55148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b0:1e:1d:84:12:b0:f7:6b:b6:3b:31:8a:29:
d8:0d:88:8e:47:30:4c:30:fb:80:e6:19:e2:52:a6:
d6:92:14:4f:f3:90:57:cf:99:b3:05:91:1b:f0:d8:
4a:7d:10:65:21:f1:a0:a4:e6:8d:03:ef:77:7a:d7:
68:e2:71:e6:47:fb:92:5c:f4:64:a7:2c:e6:c2:b6:
8f:4c:be:4a:79:b9:54:96:22:ea:a9:93:c3:30:33:
8a:88:9a:f2:60:47:d4:23:30:2a:45:26:42:3b:4e:
2b:33:a9:45:58:e9:40:55:15:2c:87:3f:c8:fd:b5:
5b:8a:c5:06:2a:ea:6d:42:39:39:99:3b:96:a5:fa:
db:2c:c5:fd:7d:33:70:19:b6:9b:34:2b:58:b6:f0:
9a:d5:a6:75:37:25:e7:c2:29:f7:34:20:69:3d:0b:
fe:99:5d:04:11:ac:83:e7:8e:78:1e:8a:3b:b2:5c:
a4:4f:e2:35:1f:ae:d1:22:9a:4b:d5:10:d0:75:fa:
35:fa:2e:c8:2d:a9:ea:99:a1:11:c7:83:11:95:9f:
73:e8:d2:d1:ad:5f:7c:f5:fe:38:0a:b0:6e:90:17:
18:a9:cf:32:55:d5:0c:49:1c:7e:3a:4b:2a:06:d9:
b3:b5:57:c8:7c:bb:fe:d4:a7:7e:9b:7a:ad:b6:fd:
51:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:1B:B2:F1:1D:75:3E:C0:38:6C:3F:BC:79:61:2D:75:70:F5:51:48
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS35487.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.68.0/22
45.142.247.0/24
45.150.240.0/23
45.150.243.0/24
146.19.3.0/24
194.156.154.0/24
IPv6:
2a0b:4341::/32
2a0b:4342:1a90::/44
2a0d:5641:1a00::/40
2a0d:5642::/32
2a0f:3b05:100::/44
2a12:1701::/32
2a12:8d02::/32
Signature Algorithm: sha256WithRSAEncryption
a9:41:8a:a8:95:4c:50:4f:d5:30:3b:00:c1:32:f1:1a:85:bc:
f8:64:da:27:87:1f:12:d7:f8:7a:32:39:3a:84:77:7a:d7:fb:
da:7b:e2:87:11:82:2d:69:6c:e6:59:3f:17:6b:45:92:bd:e2:
62:1c:9e:09:61:97:d5:ef:e5:1f:5e:23:db:2b:c4:b1:f3:be:
d8:c5:93:85:cb:6c:2e:5a:8b:c9:85:40:62:4e:dd:76:5c:74:
8f:4f:7e:c9:9f:70:dd:59:3a:e7:63:6b:e4:30:c8:59:8a:dc:
c6:47:58:98:87:a8:4a:7a:ed:c1:5c:14:87:f4:f9:a9:4d:a7:
2d:e7:0c:3b:28:ea:7d:39:32:53:ad:e6:f2:29:3c:6b:91:23:
84:9a:fb:67:11:ea:0f:4a:e7:cd:b4:a0:47:5c:70:cc:d8:28:
34:c6:3a:58:1f:68:ea:3c:6a:9e:6a:95:73:96:32:e0:9c:96:
78:17:30:db:57:3c:7b:26:60:ed:8c:df:9d:de:ea:b2:5d:64:
9b:07:f5:ba:f6:60:ae:b2:be:70:d0:66:73:ad:03:be:26:28:
88:41:03:97:46:f3:a2:91:23:14:bd:66:1c:d2:54:98:b7:f3:
8e:9c:c2:b8:bf:6d:ee:1a:db:42:0c:5a:64:03:36:bc:af:3a:
a0:80:c6:ea
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIUCy++7NJVCJyb0j2GNAQErGUArMcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzU5YTRiNmM2ZDM3MTNjZmYzNjM2MjA3ZGU5ODM5MDU4
YjUxODE1YjAeFw0yNDAyMjcxNTQ1MzVaFw0yNTAyMjUxNTUwMzVaMDMxMTAvBgNV
BAMTKDMyMUJCMkYxMUQ3NTNFQzAzODZDM0ZCQzc5NjEyRDc1NzBGNTUxNDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/sB4dhBKw92u2OzGKKdgNiI5H
MEww+4DmGeJSptaSFE/zkFfPmbMFkRvw2Ep9EGUh8aCk5o0D73d612jiceZH+5Jc
9GSnLObCto9Mvkp5uVSWIuqpk8MwM4qImvJgR9QjMCpFJkI7TiszqUVY6UBVFSyH
P8j9tVuKxQYq6m1COTmZO5al+tssxf19M3AZtps0K1i28JrVpnU3JefCKfc0IGk9
C/6ZXQQRrIPnjngeijuyXKRP4jUfrtEimkvVENB1+jX6LsgtqeqZoRHHgxGVn3Po
0tGtX3z1/jgKsG6QFxipzzJV1QxJHH46SyoG2bO1V8h8u/7Up36beq22/VGbAgMB
AAGjggIBMIIB/TAdBgNVHQ4EFgQUMhuy8R11PsA4bD+8eWEtdXD1UUgwHwYDVR0j
BBgwFoAUNZpLbG03E8/zY2IH3pg5BYtRgVswDgYDVR0PAQH/BAQDAgeAMGEGA1Ud
HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnN5bmMucnAua2kvcmVwby9taXNha2Fpby8y
LzM1OUE0QjZDNkQzNzEzQ0ZGMzYzNjIwN0RFOTgzOTA1OEI1MTgxNUIuY3JsMGQG
CCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvREVGQVVMVC9OWnBMYkcwM0U4X3pZMklIM3BnNUJZdFJnVnMu
Y2VyMEsGCCsGAQUFBwELBD8wPTA7BggrBgEFBQcwC4YvcnN5bmM6Ly9yc3luYy5y
cC5raS9yZXBvL21pc2FrYWlvLzIvQVMzNTQ4Ny5yb2EwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjB7BggrBgEFBQcBBwEB/wRsMGowKgQCAAEwJAMEAi2DRAMEAC2O
9wMEAS2W8AMEAC2W8wMEAJITAwMEAMKcmjA8BAIAAjA2AwUAKgtDQQMHBCoLQ0Ia
kAMGACoNVkEaAwUAKg1WQgMHBCoPOwUBAAMFACoSFwEDBQAqEo0CMA0GCSqGSIb3
DQEBCwUAA4IBAQCpQYqolUxQT9UwOwDBMvEahbz4ZNonhx8S1/h6Mjk6hHd61/va
e+KHEYItaWzmWT8Xa0WSveJiHJ4JYZfV7+UfXiPbK8Sx877YxZOFy2wuWovJhUBi
Tt12XHSPT37Jn3DdWTrnY2vkMMhZitzGR1iYh6hKeu3BXBSH9PmpTact5ww7KOp9
OTJTrebyKTxrkSOEmvtnEeoPSufNtKBHXHDM2Cg0xjpYH2jqPGqeapVzljLgnJZ4
FzDbVzx7JmDtjN+d3uqyXWSbB/W69mCusr5w0GZzrQO+JiiIQQOXRvOikSMUvWYc
0lSYt/OOnMK4v23uGttCDFpkAza8rzqggMbq
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org