Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS917.roa
File: AS917.roa (raw, json)
Hash identifier: oI9ByuuWL9MOtQrahaOKBg4l6jaj0Cx4ncx2aezWR7s=
Subject key identifier: 7C:6D:A4:FF:04:8F:22:1A:96:75:DB:9B:FE:68:29:A3:D9:99:E5:AC
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 1851D39B3CDDD39AE9D36272F793DA140F40077C
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS917.roa
Signing time: Wed 20 Nov 2024 21:30:33 +0000
ROA not before: Wed 20 Nov 2024 21:25:33 +0000
ROA not after: Wed 19 Nov 2025 21:30:33 +0000
asID: 917
IP address blocks: 45.11.104.0/22 maxlen: 24
45.131.68.0/22 maxlen: 24
45.142.246.0/24 maxlen: 24
45.142.247.0/24 maxlen: 24
45.150.242.0/23 maxlen: 24
185.189.72.0/24 maxlen: 24
185.234.213.0/24 maxlen: 24
194.45.101.0/24 maxlen: 24
194.156.162.0/23 maxlen: 24
2a0b:4341::/32 maxlen: 48
2a0b:4342::/32 maxlen: 48
2a0d:5641:2100::/44 maxlen: 48
2a0e:6901::/32 maxlen: 48
2a0e:6902::/32 maxlen: 48
2a11:6e01::/32 maxlen: 48
2a12:8d00::/29 maxlen: 48
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:51:d3:9b:3c:dd:d3:9a:e9:d3:62:72:f7:93:da:14:0f:40:07:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Nov 20 21:25:33 2024 GMT
Not After : Nov 19 21:30:33 2025 GMT
Subject: CN=7C6DA4FF048F221A9675DB9BFE6829A3D999E5AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:8a:2c:9f:ca:f4:c1:86:ff:20:5d:df:00:da:
ef:14:44:52:bd:2d:24:a1:15:9c:dc:e2:07:fb:4d:
9c:25:3d:3f:d5:0d:5f:52:e7:50:b6:61:d5:c3:2a:
a8:9b:5b:d2:19:2f:74:1d:85:e0:23:de:88:9c:69:
0a:38:76:98:b3:d1:d6:c6:4f:26:38:e8:12:3c:53:
3f:21:e7:07:90:97:f8:b1:ff:bf:33:cd:73:c5:0f:
08:b8:20:70:80:23:4a:85:bb:c0:63:c1:5f:a3:ba:
cf:94:2d:29:8c:8c:1b:e3:93:73:40:9b:05:5b:98:
5c:1a:cb:f6:10:ec:73:34:e0:e0:d1:09:7d:c9:f4:
85:68:0b:fe:cd:0d:e5:49:cb:b4:93:00:b2:bc:98:
ef:b9:94:68:7a:d7:45:6a:68:05:e3:4e:5c:d3:43:
2d:84:98:76:36:98:85:e5:cd:1c:68:48:72:6b:7a:
17:b8:9a:47:3e:db:fb:ff:bf:e3:8e:d1:5e:e4:7d:
8c:0c:d1:d2:a7:30:30:85:d0:cd:9e:f3:d9:d6:3b:
6b:65:1f:9a:1d:4c:f6:90:b4:75:b5:c3:70:61:a8:
62:54:08:98:df:d4:a3:3f:af:d1:d7:8f:d2:83:13:
21:31:e8:9f:8b:db:61:d0:98:41:c9:de:59:72:c0:
bf:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:6D:A4:FF:04:8F:22:1A:96:75:DB:9B:FE:68:29:A3:D9:99:E5:AC
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS917.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.104.0/22
45.131.68.0/22
45.142.246.0/23
45.150.242.0/23
185.189.72.0/24
185.234.213.0/24
194.45.101.0/24
194.156.162.0/23
IPv6:
2a0b:4341::-2a0b:4342:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:5641:2100::/44
2a0e:6901::-2a0e:6902:ffff:ffff:ffff:ffff:ffff:ffff
2a11:6e01::/32
2a12:8d00::/29
Signature Algorithm: sha256WithRSAEncryption
2d:be:6a:2e:7f:e8:7d:ed:3a:c1:75:8d:89:06:1f:d6:a3:4b:
82:79:fb:11:4b:22:5b:6d:9d:e7:78:a9:1a:64:9a:09:ac:a9:
96:03:0b:be:80:fa:b7:bd:ca:bd:d3:db:b9:76:b7:2b:f0:7f:
61:61:d1:5e:88:91:95:5b:6d:97:be:f8:c5:94:db:aa:d0:fd:
1e:cd:12:ac:d8:23:03:9f:77:1f:f5:a6:06:2e:85:74:61:5d:
13:e7:d9:32:cf:0d:a2:83:ff:0e:e0:60:87:89:1a:44:c6:bb:
b5:cb:67:ce:1d:ca:f0:3e:9b:7d:bb:bf:39:48:3e:19:9f:c4:
83:d8:44:5d:2e:52:36:25:b4:5a:73:21:5b:0f:d7:ac:4a:6d:
4e:ad:34:0e:d4:93:d6:99:43:18:0e:0b:ca:83:cb:1d:7a:90:
e2:4a:ac:a6:91:a2:f3:c8:6d:b0:23:f2:bf:75:20:7a:18:7f:
d9:34:b6:89:14:9b:d8:ab:b4:d5:7f:9c:a2:8f:98:12:93:fb:
2b:96:4c:e2:4e:18:8e:b6:48:59:a1:cb:5d:3d:55:95:71:be:
ab:5e:7a:b6:54:2a:e3:a1:e1:81:03:53:6e:56:20:0d:c9:f3:
01:aa:bb:4f:ec:a6:c7:b9:83:e2:47:fc:b7:93:f3:a0:cc:c6:
45:f6:7c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org