Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215224.roa
File: AS215224.roa (raw, json)
Hash identifier: LZq0EiPdo8xT/+0dNaQ5vwYOhsV0V1/ShqPmr695qMA=
Subject key identifier: EC:73:19:CE:D7:E7:4D:66:64:35:A6:67:51:33:A5:B2:64:38:47:F9
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 3D567E200EAB1879B2D265C7B0E9A4189DA28DF5
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215224.roa
Signing time: Tue 18 Feb 2025 15:19:47 +0000
ROA not before: Tue 18 Feb 2025 15:14:47 +0000
ROA not after: Tue 17 Feb 2026 15:19:47 +0000
asID: 215224
IP address blocks: 92.119.34.0/24 maxlen: 24
181.215.178.0/24 maxlen: 24
191.96.100.0/24 maxlen: 24
191.96.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 03:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:56:7e:20:0e:ab:18:79:b2:d2:65:c7:b0:e9:a4:18:9d:a2:8d:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Feb 18 15:14:47 2025 GMT
Not After : Feb 17 15:19:47 2026 GMT
Subject: CN=EC7319CED7E74D666435A6675133A5B2643847F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0f:b4:7e:48:df:d0:62:8a:d1:35:78:dc:44:
9f:c6:94:f0:11:3f:83:2a:de:35:ab:07:f4:94:ca:
1f:b9:98:7a:10:32:b4:c8:ee:58:99:d2:e1:09:08:
a8:35:d6:7d:9a:df:5a:de:1a:3a:d0:b3:1b:95:8d:
6e:a1:d4:87:9d:38:c6:04:27:0d:03:dd:a0:be:52:
02:c3:46:fc:22:e2:dc:d7:99:ec:ad:4f:cb:51:c7:
41:fa:c5:64:d5:8c:bf:a9:00:ca:55:2c:ad:e8:8a:
21:e5:f9:f6:3a:8c:a9:69:82:e1:45:e5:69:45:da:
6a:67:12:75:cf:1c:48:63:d8:3e:c9:2f:41:49:f8:
43:20:c0:c4:15:01:0b:79:c2:19:94:6c:f9:f6:43:
b9:85:ef:a7:b2:b9:1b:fe:c9:28:dd:2a:08:0e:82:
a0:28:06:22:e4:22:fc:a4:fb:ce:da:e5:34:2e:e1:
40:c8:18:83:28:6f:66:80:25:b6:c5:42:84:e7:61:
50:83:dd:13:ae:df:5e:73:b8:00:3a:50:cf:ca:7f:
8e:c0:0f:20:f9:49:0e:73:e3:2d:a3:a3:01:5c:60:
e5:cb:1d:eb:be:bf:4b:1a:06:48:63:ff:2d:41:98:
bb:0c:e1:eb:59:93:60:91:06:00:3f:52:d8:67:09:
2e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:73:19:CE:D7:E7:4D:66:64:35:A6:67:51:33:A5:B2:64:38:47:F9
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215224.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.34.0/24
181.215.178.0/24
191.96.100.0/24
191.96.136.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:76:03:a8:21:bb:f4:7a:b8:91:a4:e0:ad:5b:25:de:53:07:
6a:54:cc:ac:33:98:48:42:c5:a4:34:57:7e:f7:8c:38:0a:22:
c4:71:79:79:f6:82:fd:18:59:42:2b:07:f1:6b:3f:8f:14:12:
67:61:fc:68:6b:7a:68:de:1e:d4:72:5e:b2:e3:c2:de:83:58:
d1:b1:f6:08:0c:f0:64:3f:8d:fb:5a:9a:6b:65:f9:b5:e7:bb:
6d:d1:6b:d1:fe:6c:d0:cd:56:3f:64:08:27:84:72:ad:8d:ef:
1d:92:72:e3:b8:c8:7b:2b:42:21:49:07:e7:6d:ff:93:9a:b3:
24:60:b6:9c:74:7f:6e:0a:78:31:1b:f2:3b:c2:11:04:21:1a:
81:60:ae:77:54:fe:b0:99:67:d3:25:06:27:e2:34:30:7e:61:
ae:f6:3a:2a:6a:4d:69:db:41:55:4b:bb:81:e7:20:ac:d7:83:
30:ee:26:41:54:4c:49:8e:23:59:58:86:99:93:c5:b9:34:74:
f9:2f:f8:5d:30:8c:fd:e2:38:aa:b0:e3:d6:c0:37:f3:f2:94:
5e:ee:25:1d:87:84:97:1f:6d:fd:98:9c:3b:89:8b:11:9b:0c:
b8:6f:98:aa:0b:6f:5b:a0:ec:05:3f:b4:ba:6d:a6:03:08:94:
23:b6:3d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:16:44 2025 by rpki-client