Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS48539.roa
File: AS48539.roa (raw, json)
Hash identifier: osGoSBzZN8npBpTkP2RxpR+ohO+PCt9n8etMr8nRqfE=
Subject key identifier: CC:6A:BA:02:13:01:77:FE:60:F8:45:14:F0:0F:91:71:2E:DE:B2:CE
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 541D5B27FE76CF4A70292E0E67915A8140C366C0
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS48539.roa
Signing time: Sat 03 Aug 2024 09:57:50 +0000
ROA not before: Sat 03 Aug 2024 09:52:50 +0000
ROA not after: Sat 02 Aug 2025 09:57:50 +0000
asID: 48539
IP address blocks: 185.209.86.0/23 maxlen: 24
188.244.96.0/23 maxlen: 24
188.244.96.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:1d:5b:27:fe:76:cf:4a:70:29:2e:0e:67:91:5a:81:40:c3:66:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Aug 3 09:52:50 2024 GMT
Not After : Aug 2 09:57:50 2025 GMT
Subject: CN=CC6ABA02130177FE60F84514F00F91712EDEB2CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:83:79:3b:78:06:d0:81:24:44:d9:65:d1:48:
31:6e:1d:7c:1a:d8:1e:e7:cf:92:84:80:33:58:2f:
8d:06:48:66:d8:73:48:8d:89:1c:d8:2b:3a:f8:66:
be:12:c3:54:e5:77:34:74:ae:ee:d2:a9:0b:3f:0f:
81:bb:40:f2:fd:3a:1b:73:13:75:b4:64:66:9f:e2:
d2:15:3e:56:85:50:6a:63:62:b6:fe:d8:89:55:cc:
3c:ad:0e:a7:d3:8a:70:40:9b:8e:89:d4:97:9e:92:
07:53:aa:db:6c:e3:ab:b7:b7:f8:93:ae:b7:42:cb:
50:fc:be:73:b8:31:a4:fa:d5:e9:ec:f2:3e:9d:66:
11:ba:fc:75:fd:2b:a8:9d:21:8f:cc:89:ca:2c:8c:
a3:37:6f:aa:9b:3a:25:d5:b5:96:96:3d:d0:3c:93:
29:29:9b:f0:52:15:e9:13:9b:49:21:72:b4:62:d1:
9b:e8:e5:96:2c:00:37:2a:77:9e:3e:9f:57:f8:95:
f4:f1:73:e9:62:72:97:84:9a:e4:2a:8a:92:14:c3:
9d:3b:87:87:b4:16:ac:0c:cf:04:16:b0:d0:87:be:
db:08:24:53:49:ae:4e:50:2b:26:36:21:f5:95:f8:
a8:bb:3a:4e:1f:88:11:21:4d:17:3e:fb:4c:19:88:
dd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:6A:BA:02:13:01:77:FE:60:F8:45:14:F0:0F:91:71:2E:DE:B2:CE
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS48539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.86.0/23
188.244.96.0/23
Signature Algorithm: sha256WithRSAEncryption
15:11:10:f4:05:a1:d7:9f:18:8e:96:ca:5c:41:f0:79:70:41:
b5:1d:42:82:a7:01:0e:89:75:61:d8:f7:8e:9d:ee:b1:88:8e:
5c:83:43:99:40:f8:3e:b3:77:9b:fa:c7:05:f5:f2:d9:89:a7:
1e:3f:b3:f1:b8:73:1f:44:da:cf:10:3b:dd:a5:f4:66:54:4d:
69:93:17:a5:14:16:a3:c1:4c:95:cd:f9:8c:c5:4a:61:fe:3b:
4f:31:c0:84:d2:92:56:4c:63:9c:a4:30:65:c4:a6:32:1f:1c:
b5:ef:ac:2a:05:2f:29:6f:00:a5:cd:4e:bd:28:00:9b:ae:19:
8a:38:92:4d:7c:5b:08:86:55:6e:09:df:db:aa:5f:5f:54:1d:
18:60:4f:02:9c:37:90:e6:df:4c:dc:05:c8:2a:38:a3:33:f2:
63:51:b0:5b:71:bd:6a:5c:1d:7e:d7:0d:d8:6c:49:5a:5e:fa:
f7:db:13:89:f7:2a:cc:a3:c2:bd:d8:de:da:c9:cd:eb:e6:80:
4c:e2:ec:57:80:ec:51:ef:a1:2b:a4:8b:ff:64:d1:cc:a5:56:
a1:96:2d:3e:77:29:31:49:86:13:21:60:2a:95:f4:b6:a8:61:
12:3d:d7:c3:c3:53:53:d9:89:e5:f8:0d:ac:fe:66:70:9f:f7:
d8:b7:04:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org