Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
File: AS54339.roa (raw, json)
Hash identifier: LMOAjbBIe31yY229F26gFkffTVlwdQ454dgY4BwD2dU=
Subject key identifier: 30:7B:B9:FC:27:F8:D7:24:C5:F9:74:32:21:5A:A2:32:9D:5C:76:84
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 7256C376C9A2ABEDC206090D9A13562BF56ABD84
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
Signing time: Fri 18 Apr 2025 12:47:47 +0000
ROA not before: Fri 18 Apr 2025 12:42:47 +0000
ROA not after: Fri 17 Apr 2026 12:47:47 +0000
asID: 54339
IP address blocks: 46.203.107.0/24 maxlen: 24
46.203.114.0/24 maxlen: 24
46.203.145.0/24 maxlen: 24
46.203.146.0/24 maxlen: 24
46.203.168.0/24 maxlen: 24
46.203.169.0/24 maxlen: 24
46.203.171.0/24 maxlen: 24
46.203.174.0/24 maxlen: 24
46.203.177.0/24 maxlen: 24
46.203.179.0/24 maxlen: 24
46.203.199.0/24 maxlen: 24
46.203.235.0/24 maxlen: 24
92.112.55.0/24 maxlen: 24
92.113.4.0/24 maxlen: 24
92.113.6.0/24 maxlen: 24
92.113.9.0/24 maxlen: 24
92.113.15.0/24 maxlen: 24
92.113.40.0/24 maxlen: 24
95.134.184.0/24 maxlen: 24
95.134.206.0/24 maxlen: 24
95.134.221.0/24 maxlen: 24
95.134.223.0/24 maxlen: 24
95.135.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:56:c3:76:c9:a2:ab:ed:c2:06:09:0d:9a:13:56:2b:f5:6a:bd:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 18 12:42:47 2025 GMT
Not After : Apr 17 12:47:47 2026 GMT
Subject: CN=307BB9FC27F8D724C5F97432215AA2329D5C7684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d4:04:a7:7a:cb:56:43:44:54:21:2d:f0:17:
8f:9a:f7:23:8a:69:47:d7:05:63:1d:a2:df:d0:b7:
3f:78:2d:11:cb:ac:72:f4:75:56:2d:dd:de:8b:dd:
bb:cd:d7:e2:ec:82:d7:2d:17:8f:38:4d:e7:49:32:
ed:ef:6b:eb:90:bf:f1:ec:fa:a7:db:9d:60:3d:71:
53:e8:4b:66:67:dc:ea:b0:d3:06:bc:cd:26:e5:91:
52:51:2c:88:19:de:f7:23:bd:6a:72:20:ee:55:c0:
30:df:46:64:ee:3d:6e:52:e8:26:88:9f:57:c6:68:
34:c1:93:7a:fd:b9:a9:19:80:1d:7a:d6:88:69:26:
1d:c4:d2:87:49:ae:b2:9b:d0:3b:60:73:52:8b:ee:
62:d1:78:10:76:e0:17:ff:f4:27:f1:a9:b2:61:83:
0d:ca:2c:a1:66:c4:5d:d3:aa:d5:40:8d:7d:a5:d9:
5b:9f:40:99:e2:02:c8:01:03:03:4c:0b:2c:ea:6e:
39:41:12:e3:6a:25:0c:e7:72:71:f2:4f:93:95:e0:
3f:3e:14:1c:4f:c8:4e:e0:50:6d:ae:71:b2:2f:e5:
0d:b1:41:38:90:e3:39:aa:00:b8:60:cd:79:e2:6b:
b5:e4:f2:f3:92:dc:8b:ea:21:45:cb:8b:b6:9e:19:
97:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:7B:B9:FC:27:F8:D7:24:C5:F9:74:32:21:5A:A2:32:9D:5C:76:84
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.107.0/24
46.203.114.0/24
46.203.145.0-46.203.146.255
46.203.168.0/23
46.203.171.0/24
46.203.174.0/24
46.203.177.0/24
46.203.179.0/24
46.203.199.0/24
46.203.235.0/24
92.112.55.0/24
92.113.4.0/24
92.113.6.0/24
92.113.9.0/24
92.113.15.0/24
92.113.40.0/24
95.134.184.0/24
95.134.206.0/24
95.134.221.0/24
95.134.223.0/24
95.135.72.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:52:69:e6:62:24:5e:fe:b9:b8:32:4e:05:cc:8c:71:37:06:
bb:7e:e5:45:81:7b:a1:d7:36:bf:52:47:46:7c:c9:35:ac:e8:
6c:4c:40:9c:fb:6f:62:41:04:8a:25:f2:89:ac:27:59:3e:3f:
a6:63:75:72:be:9a:87:92:e8:a3:62:b4:f0:26:fa:c5:5b:d3:
e2:31:23:86:3e:f9:f0:63:cd:72:71:c3:29:e7:28:a9:da:04:
79:d8:0e:70:9d:91:7d:1e:8b:31:55:47:5e:11:da:a6:6c:5f:
17:69:5e:0c:17:20:cd:df:e3:71:d4:c2:83:07:3f:d6:d9:1b:
57:be:6c:b9:e6:a7:b6:e0:ee:e7:59:68:5f:9b:e9:74:cf:0f:
05:22:b5:34:45:b6:a3:ea:6a:89:2e:2a:3e:da:07:1e:22:ae:
2a:a0:5e:cb:5b:ce:17:10:6f:cc:84:3c:c3:d8:98:01:68:5d:
7c:49:fb:57:85:14:81:57:21:fe:cf:f0:43:df:d4:e9:9b:f0:
25:77:b4:9e:7e:47:c6:c8:09:0d:49:98:61:8b:3e:57:69:70:
c4:24:80:cb:17:30:d1:ce:e4:c4:c7:9b:86:cd:29:a6:37:ee:
49:f1:c0:6e:58:78:a8:5c:f5:af:39:4c:93:d4:c7:71:73:0f:
f9:8e:f1:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 06:00:30 2025 by rpki-client