Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS13335.roa
File: AS13335.roa (raw, json)
Hash identifier: p4/AmGr4wAAF3gPdfWIBoqJaWooDvuQGd+roWjdlB40=
Subject key identifier: 31:DF:2E:3E:2A:4D:93:F9:90:ED:DB:95:A7:FA:CD:28:A1:A4:32:CB
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 14D7B3F603209660E840F9969595AB98921A1EF1
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS13335.roa
Signing time: Tue 28 Nov 2023 15:05:05 +0000
ROA not before: Tue 28 Nov 2023 15:00:05 +0000
ROA not after: Tue 26 Nov 2024 15:05:05 +0000
asID: 13335
IP address blocks: 141.11.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:d7:b3:f6:03:20:96:60:e8:40:f9:96:95:95:ab:98:92:1a:1e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Nov 28 15:00:05 2023 GMT
Not After : Nov 26 15:05:05 2024 GMT
Subject: CN=31DF2E3E2A4D93F990EDDB95A7FACD28A1A432CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:58:67:08:8b:58:10:7f:9c:51:8f:97:9c:6f:
6e:12:90:1f:a1:72:9a:0c:65:5a:1d:c1:75:c7:d0:
ee:04:cf:25:4c:ec:60:2c:f4:fe:4a:71:31:f5:26:
56:31:6c:2c:35:ef:ee:24:eb:3a:ef:b0:ec:e1:a3:
32:42:97:28:3d:da:64:89:5c:e4:6e:f9:09:e2:d4:
99:6e:57:16:85:a4:9f:7b:c1:07:23:be:6f:86:75:
9e:da:0b:89:1a:3f:50:cf:ab:5b:cd:92:fe:19:f2:
50:6e:09:13:bd:90:4b:ff:94:0f:0d:ca:84:ca:65:
35:4a:fc:54:d3:72:01:07:2a:2f:74:bf:13:62:4e:
32:2d:ac:d9:02:80:a5:2b:de:c0:59:f2:df:ea:b0:
4b:85:b9:55:62:74:ad:5c:ff:05:8f:70:2c:3a:2f:
14:53:16:98:eb:be:92:8a:7a:f4:7b:0e:03:0f:b0:
92:5a:44:3a:d0:77:6d:ba:35:62:ed:03:f0:bc:b2:
c2:f3:c9:74:2e:31:5b:a8:fb:29:cc:d8:a1:03:a9:
a8:a7:5e:a5:f4:6b:ac:a3:75:2b:6d:c9:e7:96:14:
55:b1:a3:c6:7c:51:d7:9c:65:06:52:72:7e:0f:b1:
fc:27:4b:c2:7c:99:99:fe:f7:a6:a7:5d:93:9f:36:
0c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:DF:2E:3E:2A:4D:93:F9:90:ED:DB:95:A7:FA:CD:28:A1:A4:32:CB
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS13335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.71.0/24
Signature Algorithm: sha256WithRSAEncryption
08:b0:a6:c2:76:a3:37:4b:f1:ce:a8:a3:bd:d8:6c:05:d5:d7:
42:6a:b4:d4:58:9d:a4:08:e9:d2:f5:7f:20:41:d8:03:70:11:
c3:2d:93:65:f2:6f:fd:a9:a4:c0:5c:2c:27:5f:fb:a6:ef:f9:
d7:dd:b0:94:ea:a1:05:24:94:60:22:ad:a3:12:50:ce:21:c0:
32:ed:3c:a0:0e:85:83:e9:72:b5:f4:b5:bb:a1:8c:8e:83:cc:
a3:e1:18:b3:20:ce:d5:af:6b:5e:2c:e7:bb:a9:40:59:a0:e7:
e5:01:ee:05:ee:fd:7d:a0:fe:88:b4:78:c6:1b:d6:0c:e7:86:
8d:87:53:21:0d:62:37:ac:bc:16:e0:b9:ba:61:d8:5d:89:ee:
8c:e6:16:2a:36:02:15:88:21:3d:2b:5e:da:d6:3c:1b:82:68:
01:d0:46:b5:17:9c:8e:95:ef:eb:21:a2:11:8b:84:2c:97:3c:
a6:2a:9d:c7:22:e7:94:03:ec:00:fc:c0:b1:d8:0e:38:69:73:
2e:40:f3:ee:4c:e0:24:96:fb:da:37:63:00:7d:90:ed:10:14:
8c:4a:59:fa:39:d9:7b:13:20:4a:7e:a0:2f:02:45:ba:46:0f:
23:07:ee:2c:a8:0b:57:da:fe:80:ae:cc:3a:87:17:4a:1b:d8:
ab:b2:5a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 15:51:35 2024 by rpki-client on console-fra.rpki-client.org