Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e32362e302f32332d3332203d3e203531313637.roa
File: 3135352e3133332e32362e302f32332d3332203d3e203531313637.roa (raw, json)
Hash identifier: 6rQraWpeAZQQUF6o8/pCWUSvcElkwMYUelmajyv2SB8=
Subject key identifier: 2A:BE:52:66:86:EE:1A:7D:7D:CB:F2:A4:9A:CC:A9:14:59:27:6A:C7
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 52CACF0771A49CDD2B03F0858D48041205F29F52
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e32362e302f32332d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:24 +0000
ROA not before: Mon 26 Feb 2024 08:48:24 +0000
ROA not after: Mon 24 Feb 2025 08:53:24 +0000
asID: 51167
IP address blocks: 155.133.26.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:ca:cf:07:71:a4:9c:dd:2b:03:f0:85:8d:48:04:12:05:f2:9f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:24 2024 GMT
Not After : Feb 24 08:53:24 2025 GMT
Subject: CN=2ABE526686EE1A7D7DCBF2A49ACCA91459276AC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6f:eb:30:c0:60:bd:4c:c8:89:31:25:ef:04:
bf:5c:b5:56:16:42:c0:fd:c5:74:f9:a6:43:2e:e9:
8c:52:41:e2:cc:08:4e:d3:05:06:09:a4:91:f1:64:
7c:7d:1a:eb:85:22:7f:ac:89:40:74:00:b2:d8:57:
d8:5a:5d:98:36:4f:1c:78:0c:d7:8e:d5:63:4b:6d:
cb:a7:19:75:a2:b5:57:1a:a1:17:bf:dd:62:0c:3a:
89:4a:64:e6:56:16:48:8f:e8:f9:c5:b1:9e:2d:b5:
9d:4d:7c:b3:52:b6:f9:b3:c2:68:54:b9:4d:6f:d2:
c2:08:f0:23:79:d2:11:0c:d0:e2:3f:c9:8e:f1:be:
2e:fa:b3:b9:14:11:ca:00:fd:85:7b:45:e9:3a:a6:
3b:ec:45:1d:49:a5:89:6d:03:6f:e6:b9:f3:fc:e5:
9c:31:db:d8:ac:25:fd:90:e2:48:dc:bc:f9:30:47:
4c:80:16:24:33:d8:50:52:a1:6b:bf:13:84:bc:9a:
9d:a4:0b:cf:68:a0:f9:ac:84:f8:a0:d6:42:e3:a4:
36:51:de:0c:d9:71:4e:32:d8:de:c7:58:6f:bf:2e:
82:af:85:88:e8:b8:fb:07:64:5c:36:26:03:3a:f7:
0a:ba:b4:82:cd:01:78:96:e7:8a:03:0c:4a:da:3d:
0b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:BE:52:66:86:EE:1A:7D:7D:CB:F2:A4:9A:CC:A9:14:59:27:6A:C7
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e32362e302f32332d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.26.0/23
Signature Algorithm: sha256WithRSAEncryption
43:de:0d:53:e5:df:74:d6:1d:c4:07:81:e5:78:35:27:bc:a8:
ff:72:9c:94:bd:81:b6:d5:70:31:63:d5:5e:09:71:de:d3:17:
d3:46:e1:0d:b8:11:7a:9e:cb:7d:22:15:3d:19:5b:fc:62:86:
03:08:da:45:c6:ef:27:21:db:f5:4c:11:1a:79:ff:c9:43:45:
34:09:cf:04:e7:8d:ae:6c:36:39:cb:0f:8f:f7:ba:76:c6:78:
19:dc:b9:f1:1d:6c:ad:0b:09:2e:69:a6:b6:4f:a4:87:79:1e:
55:cd:5e:62:8b:6b:50:e9:71:ed:34:b8:9f:14:5d:57:75:2b:
ee:3e:af:4a:a2:ed:4d:cf:42:64:19:ca:da:5c:4c:01:4f:ad:
a8:9f:3d:b4:cc:c8:a7:95:c4:03:56:9e:51:3e:7c:40:3a:69:
55:e4:6f:e9:3b:36:9b:b2:07:93:27:81:1e:17:f0:77:74:2e:
d2:49:6d:70:b4:aa:97:cc:93:aa:91:2c:b1:e8:8c:ca:e9:7d:
45:21:24:e4:80:83:e3:dd:c5:cd:2c:a4:aa:57:6a:03:34:76:
7f:28:cc:6d:b1:58:f9:5f:1e:15:01:89:de:59:57:3a:b9:21:
cd:f0:ee:6a:65:3c:14:e6:df:cb:94:45:00:6b:c4:70:c1:b3:
fa:19:3b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 13:47:06 2024 by rpki-client on console-ams.rpki-client.org