Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS15083.roa
File: AS15083.roa (raw, json)
Hash identifier: i1ZpOhFRkxjsuwP4Ma7ZNhE+NHHHnxQKHZyrK0uzj2Y=
Subject key identifier: 4E:D3:D4:D6:00:88:D8:05:79:92:0A:DB:AA:06:EC:9A:74:15:4B:8F
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 5F551B5D92F6BCD960B4ED215AD801EA46B58E16
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS15083.roa
Signing time: Mon 22 Jul 2024 19:47:21 +0000
ROA not before: Mon 22 Jul 2024 19:42:21 +0000
ROA not after: Mon 21 Jul 2025 19:47:21 +0000
asID: 15083
IP address blocks: 141.11.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:55:1b:5d:92:f6:bc:d9:60:b4:ed:21:5a:d8:01:ea:46:b5:8e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jul 22 19:42:21 2024 GMT
Not After : Jul 21 19:47:21 2025 GMT
Subject: CN=4ED3D4D60088D80579920ADBAA06EC9A74154B8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:69:04:ac:a6:4e:65:be:0b:a4:98:01:4c:2d:
0e:f2:e7:cc:e2:cd:c3:75:f4:93:a6:5f:da:b5:25:
a1:12:a8:f8:de:be:4d:c8:b8:80:7a:7d:bd:84:be:
e1:65:47:35:10:41:2b:9a:b9:d3:e2:f9:6d:50:b5:
2f:cc:1c:73:65:f9:28:3c:8f:9c:c3:a6:e9:51:51:
2d:f4:29:ff:ee:22:b7:ca:1e:37:24:64:23:c9:fc:
db:29:08:d0:04:4b:cd:f1:13:6e:a9:41:0e:6d:77:
88:7a:f5:98:90:20:86:e4:04:7d:9a:01:51:e9:56:
51:7a:fa:3a:df:73:ab:60:18:ba:63:38:77:ef:8b:
10:1e:2e:1d:82:a7:3c:7e:70:34:71:0c:5b:76:2b:
8c:5b:6b:3d:6b:f3:7d:d6:c9:81:94:5f:ec:49:ed:
7b:f5:d0:bc:66:50:ed:15:24:f1:65:83:8a:a7:d2:
20:47:62:46:e8:d3:15:e4:d7:3d:d2:3e:ab:16:87:
77:cc:b5:54:43:66:98:f1:8d:87:fa:4e:67:f5:73:
f2:d1:b7:18:d8:46:79:d9:2a:99:8f:a6:70:12:dc:
e1:f0:70:a5:7a:a9:38:46:a4:a7:15:8d:ad:8f:fc:
74:6d:13:3e:dd:5a:85:50:1b:0d:4d:a7:51:25:88:
c4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D3:D4:D6:00:88:D8:05:79:92:0A:DB:AA:06:EC:9A:74:15:4B:8F
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS15083.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.188.0/24
Signature Algorithm: sha256WithRSAEncryption
40:72:c4:51:85:92:b8:fe:26:c3:fb:71:6b:80:af:0c:d4:3c:
c6:56:34:a5:c9:f2:9a:fd:39:e3:5a:f9:00:ac:97:9f:cd:63:
a9:71:40:bd:d4:c5:cb:ae:0c:21:19:6b:ab:90:10:6f:48:ad:
88:7b:00:39:c8:53:03:fc:6f:aa:4a:46:cd:93:66:68:f9:86:
4a:16:bd:a5:cc:f1:ff:12:7b:91:15:7d:8a:c5:a6:d9:7b:dd:
84:c9:6f:2a:45:4b:80:6c:00:3c:c0:d0:8c:97:b2:02:62:0a:
57:5b:cf:33:bf:26:ff:c9:1e:bc:63:6b:68:b7:9c:29:f3:2c:
bb:48:86:7a:9e:e9:cd:f2:b4:6f:98:6f:9f:9c:c1:d2:2a:f8:
cd:80:41:e9:19:98:d8:50:2e:ed:3b:08:62:5e:fd:3a:cb:fd:
e6:c1:c0:b4:cc:74:f2:72:f6:f4:2d:35:fd:1a:61:0b:9a:be:
22:fd:1f:37:b5:1c:08:eb:bb:2e:87:c2:9b:b5:3c:88:e5:0e:
ca:b5:6b:fe:4e:41:aa:9a:5b:fe:0c:7e:c0:8b:56:e9:05:14:
2d:90:f3:75:90:d3:f8:fc:44:1f:e7:77:57:f9:1d:ef:18:4f:
d2:f4:53:04:f5:86:89:cc:57:d9:10:8e:b6:7f:22:88:45:dd:
35:54:1c:22
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUX1UbXZL2vNlgtO0hWtgB6ka1jhYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yNDA3MjIxOTQyMjFaFw0yNTA3MjExOTQ3MjFaMDMxMTAvBgNV
BAMTKDRFRDNENEQ2MDA4OEQ4MDU3OTkyMEFEQkFBMDZFQzlBNzQxNTRCOEYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLaQSspk5lvgukmAFMLQ7y58zi
zcN19JOmX9q1JaESqPjevk3IuIB6fb2EvuFlRzUQQSuaudPi+W1QtS/MHHNl+Sg8
j5zDpulRUS30Kf/uIrfKHjckZCPJ/NspCNAES83xE26pQQ5td4h69ZiQIIbkBH2a
AVHpVlF6+jrfc6tgGLpjOHfvixAeLh2Cpzx+cDRxDFt2K4xbaz1r833WyYGUX+xJ
7Xv10LxmUO0VJPFlg4qn0iBHYkbo0xXk1z3SPqsWh3fMtVRDZpjxjYf6Tmf1c/LR
txjYRnnZKpmPpnAS3OHwcKV6qThGpKcVja2P/HRtEz7dWoVQGw1Np1EliMTfAgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQUTtPU1gCI2AV5kgrbqgbsmnQVS48wHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTMTUwODMucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACNC7ww
DQYJKoZIhvcNAQELBQADggEBAEByxFGFkrj+JsP7cWuArwzUPMZWNKXJ8pr9OeNa
+QCsl5/NY6lxQL3UxcuuDCEZa6uQEG9IrYh7ADnIUwP8b6pKRs2TZmj5hkoWvaXM
8f8Se5EVfYrFptl73YTJbypFS4BsADzA0IyXsgJiCldbzzO/Jv/JHrxja2i3nCnz
LLtIhnqe6c3ytG+Yb5+cwdIq+M2AQekZmNhQLu07CGJe/TrL/ebBwLTMdPJy9vQt
Nf0aYQuaviL9Hze1HAjruy6Hwpu1PIjlDsq1a/5OQaqaW/4MfsCLVukFFC2Q83WQ
0/j8RB/nd1f5He8YT9L0UwT1honMV9kQjrZ/IohF3TVUHCI=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:37:20 2024 by rpki-client on console-fra.rpki-client.org