Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS57695.roa
File: AS57695.roa (raw, json)
Hash identifier: BR3HEEiZ7h9DZ4QTWncBXAcfc2UFQru/dur/F8hAeKs=
Subject key identifier: 76:33:C2:DC:D1:5F:E8:6C:04:92:18:8D:38:AE:8E:3B:CF:99:0A:5D
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 7793224D5D0695E1284B459EE4A93DF84CE5F6D5
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS57695.roa
Signing time: Wed 20 Dec 2023 21:30:07 +0000
ROA not before: Wed 20 Dec 2023 21:25:07 +0000
ROA not after: Wed 18 Dec 2024 21:30:07 +0000
asID: 57695
IP address blocks: 45.11.104.0/22 maxlen: 24
45.131.68.0/22 maxlen: 24
45.142.246.0/24 maxlen: 24
45.142.247.0/24 maxlen: 24
45.150.240.0/22 maxlen: 24
185.189.72.0/24 maxlen: 24
185.234.213.0/24 maxlen: 24
194.45.101.0/24 maxlen: 24
194.156.162.0/23 maxlen: 24
2a0b:4341::/32 maxlen: 48
2a0b:4342::/32 maxlen: 48
2a0d:5641:2100::/44 maxlen: 48
2a0e:6901::/32 maxlen: 48
2a0e:6902::/32 maxlen: 48
2a11:6e01::/32 maxlen: 48
2a12:8d00::/29 maxlen: 48
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:93:22:4d:5d:06:95:e1:28:4b:45:9e:e4:a9:3d:f8:4c:e5:f6:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 20 21:25:07 2023 GMT
Not After : Dec 18 21:30:07 2024 GMT
Subject: CN=7633C2DCD15FE86C0492188D38AE8E3BCF990A5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7a:ed:b9:cd:05:03:9d:1c:00:ac:24:b6:f1:
b4:4c:d5:2f:66:7b:e9:cf:ed:b1:fd:be:fb:78:0d:
05:8a:67:4e:53:82:1c:15:ee:3d:12:c5:28:19:13:
84:ba:b9:8f:b2:d8:a6:7b:58:93:0c:ff:ed:6d:27:
1c:34:40:bf:7d:5f:04:d6:1f:15:1e:fc:f0:04:ab:
d6:ed:5f:78:55:c6:3a:4b:61:9e:3c:e4:58:df:fb:
87:3f:cc:63:98:0f:20:57:37:db:c7:da:a3:ef:fc:
62:e7:db:6d:99:1c:2e:91:fb:15:6d:c1:2f:81:17:
d2:d9:3f:6c:c7:0e:88:42:f5:78:0d:7d:91:03:3c:
37:47:50:dd:b0:68:9b:f0:98:06:23:ae:92:c3:6d:
c7:bd:07:b1:fb:49:d5:80:7f:59:31:39:b7:d9:54:
7b:36:7d:e2:66:f6:f3:25:5b:1f:d4:db:71:00:dd:
7e:69:56:d5:67:43:1a:a9:27:bc:76:7a:4a:ef:e2:
c0:5c:3f:16:e1:cd:4c:e5:e8:ba:9c:d7:07:fa:d3:
f2:a7:c3:5e:f5:e4:70:eb:7a:f2:ef:35:fc:54:38:
17:f4:ec:5e:fd:40:22:3b:c6:1a:9a:01:ce:86:06:
19:54:96:56:af:15:23:9a:91:20:e3:f2:ea:99:72:
d7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:33:C2:DC:D1:5F:E8:6C:04:92:18:8D:38:AE:8E:3B:CF:99:0A:5D
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS57695.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.104.0/22
45.131.68.0/22
45.142.246.0/23
45.150.240.0/22
185.189.72.0/24
185.234.213.0/24
194.45.101.0/24
194.156.162.0/23
IPv6:
2a0b:4341::-2a0b:4342:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:5641:2100::/44
2a0e:6901::-2a0e:6902:ffff:ffff:ffff:ffff:ffff:ffff
2a11:6e01::/32
2a12:8d00::/29
Signature Algorithm: sha256WithRSAEncryption
1f:b3:d2:f9:98:c8:21:fe:66:ae:1a:30:b6:e5:08:1d:96:87:
04:eb:1c:18:0e:bc:9b:2f:88:f2:eb:9b:3f:ae:95:a2:74:80:
db:d5:96:c5:6c:bb:1e:c8:b7:2f:63:e3:c4:d3:53:c1:d9:9b:
19:a5:64:b0:1c:1f:7f:87:ed:a3:b8:be:aa:4b:22:92:4c:ef:
16:a6:f3:3a:01:53:34:b9:a1:56:17:5c:27:c7:2e:5b:21:1e:
9e:16:4a:77:43:6b:89:b2:f6:04:b6:7d:e9:48:69:21:48:58:
c1:68:4d:ae:ee:3a:16:3a:36:81:60:be:a9:0a:0b:83:22:e4:
04:33:d3:88:43:2c:86:13:5c:35:2e:bd:1d:53:08:a1:0e:87:
e9:fb:5a:4a:90:35:4c:27:d3:39:7c:0d:8a:ce:f3:6e:1a:dc:
95:ae:6a:79:44:b2:93:0f:df:3a:48:56:f9:4c:d7:21:53:0d:
58:49:e3:1a:96:bd:e3:07:b8:d0:1b:ee:63:eb:13:58:89:01:
03:64:b6:4b:bd:4a:81:a0:3d:aa:51:51:8c:ba:37:8c:9e:4d:
ec:4e:72:c7:d2:6e:18:37:65:85:a0:06:be:97:13:f2:e0:b7:
78:a0:bc:7d:08:93:79:16:65:3b:fb:2e:63:d4:2b:26:54:ac:
ea:a4:85:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 18:06:53 2024 by rpki-client on console-ams.rpki-client.org