Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS61112.roa
File: AS61112.roa (raw, json)
Hash identifier: 9a2Hq2p1sEH/5DKHbnUsRg8+/AqQ2DfJAc8pO1fpg14=
Subject key identifier: 6E:BB:CF:F1:F3:A1:5E:E3:70:15:0E:8F:01:4E:E4:72:D3:F0:45:C2
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 0160670A8B75D0B3E96CF40240045F6F09319367
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS61112.roa
Signing time: Thu 01 May 2025 13:26:20 +0000
ROA not before: Thu 01 May 2025 13:21:20 +0000
ROA not after: Thu 30 Apr 2026 13:26:20 +0000
asID: 61112
IP address blocks: 155.117.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 16:09:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:60:67:0a:8b:75:d0:b3:e9:6c:f4:02:40:04:5f:6f:09:31:93:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 1 13:21:20 2025 GMT
Not After : Apr 30 13:26:20 2026 GMT
Subject: CN=6EBBCFF1F3A15EE370150E8F014EE472D3F045C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:6a:e4:67:cf:75:82:4d:fb:cc:96:72:0d:5a:
fb:38:6d:40:fc:68:0f:e3:a4:e0:a3:7a:f3:d7:fe:
35:6b:8d:35:02:11:38:53:ca:6b:54:a1:e4:b3:8e:
ab:5a:84:95:11:3b:a1:7e:2e:ea:f8:a7:a8:4f:3e:
e5:6e:b8:7f:5f:19:6c:80:63:ff:59:b1:63:1c:ac:
b9:5c:e3:8c:1c:53:c4:f4:5b:82:39:21:28:20:1f:
a5:7b:c8:94:c5:bc:39:32:04:31:19:4a:b6:59:93:
02:90:ba:4f:89:51:0f:6a:01:16:45:f5:af:22:4f:
4f:97:5d:41:fa:0e:dd:1f:3e:74:a4:42:a9:de:ce:
7c:b1:a5:29:ac:37:97:b1:3a:05:5f:4e:b7:0c:a3:
07:a1:d1:2a:9e:8a:e8:fe:36:7c:57:f9:30:15:c0:
4b:43:04:bb:2b:40:c1:be:d9:f6:39:03:b7:4f:a9:
97:71:bb:25:11:d6:36:22:cd:7f:4f:cb:0a:ba:41:
d6:d0:b6:4f:7b:6b:c6:d5:c2:0d:9a:15:13:39:2a:
02:ff:2d:33:87:2e:f2:15:49:15:3e:4e:28:ba:98:
88:07:7c:f6:42:17:2b:b7:df:9c:6f:62:e1:1d:22:
3c:17:1f:b3:ad:ee:03:82:28:6b:c2:8e:c7:31:f2:
a5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:BB:CF:F1:F3:A1:5E:E3:70:15:0E:8F:01:4E:E4:72:D3:F0:45:C2
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS61112.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.117.228.0/22
Signature Algorithm: sha256WithRSAEncryption
82:c7:77:24:70:91:2a:31:5a:af:6e:e5:fb:f5:80:00:be:d7:
f4:7e:78:97:4c:7e:a0:82:3a:e1:a5:8e:42:80:83:1e:95:88:
0c:db:25:d8:8f:2a:dc:50:20:32:1a:22:3f:61:bf:af:bb:29:
d2:5a:aa:c7:e8:9d:5d:c2:61:08:ea:5c:ab:fe:43:78:d2:14:
71:79:ca:74:f7:a0:d8:9f:c9:92:53:26:48:3c:6b:6b:21:ef:
22:0f:4e:bb:b6:c6:65:19:73:33:14:b3:06:95:d1:0e:18:96:
4a:38:71:4f:76:5d:ab:88:a2:65:3d:b0:ee:90:5f:06:00:d6:
fb:6b:27:8f:5e:19:09:ea:2b:5c:74:6f:7e:26:c3:8c:51:41:
4b:49:3a:2e:20:e5:77:32:1b:d0:c0:06:dc:8a:2c:5b:e6:19:
81:73:d1:71:83:bb:21:b5:51:31:d2:68:ed:d1:f7:b3:3a:18:
81:46:a2:51:d6:ab:68:0a:39:1d:e9:45:36:9b:7f:fd:c1:f6:
0c:c9:d8:93:40:b6:00:af:90:39:06:d8:ce:60:c8:df:ee:21:
b7:ff:e8:f8:20:13:cb:cb:85:89:f5:47:01:53:21:23:7c:c0:
93:13:3d:71:54:60:f8:1b:90:d8:49:a1:5d:de:79:a7:49:87:
03:37:ba:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 08:18:19 2025 by rpki-client