Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS151338.roa
File: AS151338.roa (raw, json)
Hash identifier: YLSnhU5zXeIxwkuFbiLodR7NRLS9zkNVtpSRghw+5Fc=
Subject key identifier: E5:11:E9:FA:E4:48:C3:C0:71:8C:AA:AC:95:CB:25:24:2D:25:D9:73
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 5CCC53DA12474950EB9BFF0644139019E8FC2EBC
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS151338.roa
Signing time: Tue 06 Feb 2024 02:25:31 +0000
ROA not before: Tue 06 Feb 2024 02:20:31 +0000
ROA not after: Tue 04 Feb 2025 02:25:31 +0000
asID: 151338
IP address blocks: 141.11.132.0/23 maxlen: 24
141.11.238.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:cc:53:da:12:47:49:50:eb:9b:ff:06:44:13:90:19:e8:fc:2e:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Feb 6 02:20:31 2024 GMT
Not After : Feb 4 02:25:31 2025 GMT
Subject: CN=E511E9FAE448C3C0718CAAAC95CB25242D25D973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:82:8b:c2:e4:bd:bf:ab:70:40:80:b9:16:8f:
0f:a7:c8:dd:b9:a5:9d:0e:4e:96:c6:37:d1:12:69:
fa:6c:8a:17:a7:51:82:bb:45:fd:0d:b4:5c:20:22:
76:b9:10:59:d2:72:8d:fb:01:ab:0a:b9:3b:ab:4b:
69:b2:b2:04:ae:be:cf:54:d1:84:3c:75:3d:db:f8:
39:38:e4:e0:30:7a:da:a6:7c:0b:30:d1:82:c0:79:
b6:f6:e6:22:e7:51:80:70:34:07:cb:03:33:f9:81:
04:e5:4b:c0:27:6f:a0:5f:60:61:4f:82:b7:c6:48:
9c:92:37:d4:91:a7:50:7c:3f:e9:f9:17:86:b6:54:
9a:26:43:01:c7:92:bf:a9:e8:c9:4d:2a:18:00:1b:
f4:26:c5:c6:00:d5:06:00:77:35:dd:d2:f9:e2:90:
45:26:e6:6a:5b:db:9e:97:f7:19:53:a5:f8:ca:b7:
ee:c2:79:e1:c5:4f:c0:dc:20:fb:d0:5c:59:b4:bf:
33:ce:bc:19:02:fc:25:7d:2b:a8:a6:73:5f:36:c2:
a6:6d:21:3f:e1:44:ec:8f:99:d3:08:5d:73:80:ac:
ff:15:2f:a8:1d:a0:b7:55:b0:b9:a9:3d:44:bf:87:
bf:99:9f:21:ab:56:dc:4e:6c:bb:91:0a:d9:66:bf:
e3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:11:E9:FA:E4:48:C3:C0:71:8C:AA:AC:95:CB:25:24:2D:25:D9:73
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS151338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.132.0/23
141.11.238.0/23
Signature Algorithm: sha256WithRSAEncryption
72:b5:74:36:83:8b:f4:bf:70:12:94:ac:cc:63:bf:99:be:a1:
5f:7e:2a:ad:65:ce:11:4d:65:0f:1c:d8:80:91:00:a3:ce:f2:
49:e8:cb:c4:0d:58:e4:ef:21:e6:87:5c:c8:e4:dc:49:8c:fd:
67:98:66:d0:9c:5e:d3:b6:a6:62:21:49:c5:2b:63:a5:36:99:
19:d8:83:60:1a:33:7a:9f:e0:1b:68:35:7b:c8:27:18:b1:3d:
24:f2:c5:87:dd:33:58:79:88:e7:b6:5a:11:2f:0c:70:47:9c:
24:2a:76:8c:a1:c4:9e:e9:06:a9:e2:b9:ee:e2:4e:a7:82:76:
f1:f1:34:b1:48:62:e0:e4:63:52:77:e5:89:f2:6a:e2:98:d0:
84:a6:b8:07:1e:81:ac:db:5d:3a:48:b5:62:cd:7c:ee:26:bb:
26:5f:4f:56:c0:0f:55:03:1e:65:a2:3a:5f:75:86:5b:72:56:
32:43:2a:76:fa:16:9d:7f:22:dd:ed:72:56:ce:f4:32:b1:32:
30:1e:2a:cc:68:a9:19:c2:4d:fd:bd:28:1a:56:2c:af:a6:31:
d1:2f:6a:77:15:66:cb:b2:47:16:3e:c7:2f:e9:bc:df:7f:6b:
a5:ed:ae:95:15:5d:f0:0f:e9:0b:98:e6:0a:c7:12:3b:9c:4f:
f2:6c:fc:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 15:51:35 2024 by rpki-client on console-fra.rpki-client.org