Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS57695.roa
File: AS57695.roa (raw, json)
Hash identifier: NoPaJsBWZr+GU2AMkCpM6rn5V++9xew+4GW6te2R20w=
Subject key identifier: A0:4C:62:44:95:3A:F0:D0:5A:64:39:67:1B:E2:51:FC:2A:F3:0A:55
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 097C8B71EFBA5FC9CE3CB695C04DB992FBDF9962
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS57695.roa
Signing time: Wed 20 Nov 2024 21:30:34 +0000
ROA not before: Wed 20 Nov 2024 21:25:34 +0000
ROA not after: Wed 19 Nov 2025 21:30:34 +0000
asID: 57695
IP address blocks: 45.11.104.0/22 maxlen: 24
45.131.68.0/22 maxlen: 24
45.142.246.0/24 maxlen: 24
45.142.247.0/24 maxlen: 24
45.150.240.0/22 maxlen: 24
185.189.72.0/24 maxlen: 24
185.234.213.0/24 maxlen: 24
194.45.101.0/24 maxlen: 24
194.156.162.0/23 maxlen: 24
2a0b:4341::/32 maxlen: 48
2a0b:4342::/32 maxlen: 48
2a0d:5641:2100::/44 maxlen: 48
2a0e:6901::/32 maxlen: 48
2a0e:6902::/32 maxlen: 48
2a11:6e01::/32 maxlen: 48
2a12:8d00::/29 maxlen: 48
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:7c:8b:71:ef:ba:5f:c9:ce:3c:b6:95:c0:4d:b9:92:fb:df:99:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Nov 20 21:25:34 2024 GMT
Not After : Nov 19 21:30:34 2025 GMT
Subject: CN=A04C6244953AF0D05A6439671BE251FC2AF30A55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e8:78:84:e1:a8:d5:6e:46:c4:32:db:cf:96:
02:b3:8d:57:d9:25:ed:95:47:0d:1b:3e:9c:72:a1:
ad:dd:e5:c7:4c:98:f7:7a:b3:a8:6c:cd:3a:0d:6a:
fc:b3:b7:12:84:46:77:44:00:12:1a:e0:8d:df:8c:
36:fb:3c:53:41:52:bb:ac:04:67:2a:56:38:86:e6:
1a:6f:be:71:95:cd:e4:74:7d:3e:a9:4d:22:62:b3:
82:ad:1e:08:bb:fb:32:a6:80:d2:28:f4:6a:df:62:
c1:71:72:26:2e:76:25:da:45:7e:ba:65:91:50:55:
2d:fd:27:54:a6:20:c3:6b:93:af:03:22:37:b7:1b:
f8:c3:b6:4b:8a:6c:36:72:9e:9b:df:22:3c:00:74:
22:5b:e1:77:f5:d5:76:e9:98:a4:89:c6:2d:38:64:
c1:20:35:fb:d6:cb:12:6b:0d:91:c4:33:3a:2f:58:
55:de:f5:d9:76:b6:a8:c7:f3:1a:3d:9b:8e:59:70:
0c:c5:f1:ee:fc:b0:12:37:4f:27:07:06:f8:b0:81:
80:8a:d4:c0:18:00:57:c9:61:b3:b6:c3:b5:40:89:
c0:a9:5b:aa:41:33:d3:88:36:24:73:38:8a:69:fd:
15:19:1d:fd:c0:26:b9:23:f1:8e:7f:13:8f:14:e6:
ca:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:4C:62:44:95:3A:F0:D0:5A:64:39:67:1B:E2:51:FC:2A:F3:0A:55
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS57695.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.104.0/22
45.131.68.0/22
45.142.246.0/23
45.150.240.0/22
185.189.72.0/24
185.234.213.0/24
194.45.101.0/24
194.156.162.0/23
IPv6:
2a0b:4341::-2a0b:4342:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:5641:2100::/44
2a0e:6901::-2a0e:6902:ffff:ffff:ffff:ffff:ffff:ffff
2a11:6e01::/32
2a12:8d00::/29
Signature Algorithm: sha256WithRSAEncryption
31:40:5d:66:5f:a0:7f:f6:e3:ba:41:fe:a4:2f:3c:42:75:2a:
99:aa:6d:b3:85:4c:fc:f5:e4:1b:33:a2:fe:4f:73:5a:84:8f:
2f:2d:d5:42:42:7c:00:49:dd:c5:ac:02:bb:b3:2e:81:79:bb:
bd:93:46:16:b1:0a:aa:02:7b:32:99:16:ef:9d:da:0f:e9:e5:
3f:8a:f9:e5:bb:29:f2:b6:6c:95:e2:e1:00:48:a1:aa:54:62:
28:ed:e1:f6:67:aa:f5:8d:fe:54:e9:86:23:31:76:a6:58:da:
e0:28:fe:2b:45:11:2a:3c:46:36:e6:e2:e9:5a:d6:51:32:e6:
04:3e:76:9f:a9:93:72:c3:5b:31:ed:d1:ff:fa:0e:4f:2e:9e:
54:b5:28:3e:5b:12:fa:47:5b:b4:92:37:05:4e:20:1d:4c:c2:
45:66:48:9a:1d:bb:eb:ff:81:96:aa:d4:3d:da:a4:0d:c0:fe:
50:c0:60:13:0e:91:ca:ea:33:b6:20:57:53:2e:e5:78:34:7f:
51:4a:e9:a7:a9:e7:39:f8:ee:d8:21:1b:6f:c8:49:dd:fd:b8:
5e:0d:5d:af:26:fd:cc:c9:14:3f:6e:6d:4f:2c:20:a0:7e:16:
b1:c6:40:0c:f5:f7:94:0b:19:9f:93:af:d0:44:f0:64:0f:aa:
b8:9a:f1:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org