Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS917.roa
File: AS917.roa (raw, json)
Hash identifier: yuEsk65BRvRf8WYJlLwNXOlN0oXzJ9ICL4TECC8brGw=
Subject key identifier: 84:D2:7A:F0:F8:5C:2E:C2:B3:37:DC:43:5E:01:4B:E9:3D:9E:6B:4A
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 3A806F355D721E890F61A671AE40734A29D46107
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS917.roa
Signing time: Wed 20 Dec 2023 21:30:10 +0000
ROA not before: Wed 20 Dec 2023 21:25:10 +0000
ROA not after: Wed 18 Dec 2024 21:30:10 +0000
asID: 917
IP address blocks: 45.11.104.0/22 maxlen: 24
45.131.68.0/22 maxlen: 24
45.142.246.0/24 maxlen: 24
45.142.247.0/24 maxlen: 24
45.150.242.0/23 maxlen: 24
185.189.72.0/24 maxlen: 24
185.234.213.0/24 maxlen: 24
194.45.101.0/24 maxlen: 24
194.156.162.0/23 maxlen: 24
2a0b:4341::/32 maxlen: 48
2a0b:4342::/32 maxlen: 48
2a0d:5641:2100::/44 maxlen: 48
2a0e:6901::/32 maxlen: 48
2a0e:6902::/32 maxlen: 48
2a11:6e01::/32 maxlen: 48
2a12:8d00::/29 maxlen: 48
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:80:6f:35:5d:72:1e:89:0f:61:a6:71:ae:40:73:4a:29:d4:61:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 20 21:25:10 2023 GMT
Not After : Dec 18 21:30:10 2024 GMT
Subject: CN=84D27AF0F85C2EC2B337DC435E014BE93D9E6B4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fd:f3:6b:58:64:91:c0:90:ab:c3:54:ac:c2:
bc:5b:e0:ed:2f:1c:d7:d3:22:bc:de:b9:16:2b:d8:
16:c0:2c:1a:b8:2b:3b:32:d0:60:67:cc:9c:ef:36:
92:55:a0:c1:ae:46:73:1d:b4:73:a9:c2:af:ba:25:
a0:d7:c6:f5:c8:be:14:a2:f1:fb:3c:51:d7:ad:14:
c3:86:71:56:7d:19:cf:b1:f6:6c:0a:9c:d4:9d:98:
25:1b:0d:cf:45:b2:65:11:8f:9a:34:ab:6a:1c:5e:
f4:d2:24:21:14:1a:c8:b5:f0:f7:da:02:6d:9f:10:
89:b7:5d:81:8a:36:af:40:83:78:a6:20:0a:5a:4d:
c7:61:df:a8:98:7c:ee:dd:8d:a7:27:93:56:81:b8:
79:7c:ad:31:d0:27:c6:68:e5:d8:d9:db:e0:4a:16:
bb:42:5e:3d:87:b4:12:c7:93:78:7f:97:72:59:ba:
2f:b5:21:c5:8b:87:f4:82:3c:c1:02:fe:81:60:24:
d3:c0:98:85:0d:be:e7:b6:d3:df:48:86:7b:de:6b:
42:0b:af:75:18:6d:04:3e:94:94:cb:9d:47:7d:8b:
33:d7:36:cf:72:ce:c8:9a:d6:a6:20:a8:00:5e:cd:
81:1d:34:5b:f5:1e:b6:86:c3:72:cb:28:e0:e3:7e:
51:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D2:7A:F0:F8:5C:2E:C2:B3:37:DC:43:5E:01:4B:E9:3D:9E:6B:4A
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS917.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.104.0/22
45.131.68.0/22
45.142.246.0/23
45.150.242.0/23
185.189.72.0/24
185.234.213.0/24
194.45.101.0/24
194.156.162.0/23
IPv6:
2a0b:4341::-2a0b:4342:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:5641:2100::/44
2a0e:6901::-2a0e:6902:ffff:ffff:ffff:ffff:ffff:ffff
2a11:6e01::/32
2a12:8d00::/29
Signature Algorithm: sha256WithRSAEncryption
bb:26:13:7b:b1:fc:b1:63:5c:c9:fa:6e:ef:eb:98:7f:8c:b7:
48:b5:c1:70:19:f4:1a:b4:8d:20:69:1f:70:ee:8f:5a:00:4c:
a5:69:60:2d:16:82:34:08:cb:2a:38:40:5c:56:81:4a:82:b8:
ae:69:d2:26:47:71:81:c4:bd:16:4e:7c:b7:a2:cd:60:2f:cf:
21:37:6b:5b:20:b4:93:07:c1:f3:33:dd:17:13:b0:7b:e3:11:
14:a3:02:f3:0c:41:3c:4d:4a:7e:2a:8c:d6:e5:a5:a4:22:a7:
2b:d7:54:1b:8e:c7:b5:30:11:b0:c5:3b:6b:98:6a:5c:e2:f3:
f8:db:1b:a8:39:0e:bf:c0:16:d3:51:19:98:5c:95:db:6d:17:
1f:3a:e0:6c:ca:34:46:01:cd:a9:42:ef:6f:41:7b:e2:da:e0:
b0:b3:02:b4:7d:9a:ae:e8:36:52:19:19:d1:e0:f4:47:8b:73:
c5:a0:ba:8b:c1:61:94:ef:fe:16:85:06:68:bd:13:eb:93:ab:
57:1f:7d:2a:65:16:f2:8d:b0:3f:1b:41:73:33:1b:29:bf:83:
66:40:03:df:29:4e:b0:ae:1a:95:20:35:b9:6c:ed:af:d5:5b:
da:85:4a:fd:45:c8:54:b8:2a:35:4a:64:6c:00:bf:e7:8c:92:
d3:39:7a:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 10:59:18 2024 by rpki-client on console-fra.rpki-client.org