Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3135332e39322e34302e302f32342d3234203d3e20313437303439.roa
File: 3135332e39322e34302e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: A503di7uDXe3BAGZSGDBqvjh6Y/sgCvwVi9LY9jAYfM=
Subject key identifier: FA:DC:52:6E:2D:9C:39:13:E9:1E:6F:0C:D0:06:D8:95:48:81:24:99
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 688FD1B1C1DD40DA06827218B7D73EFF62FCE17A
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3135332e39322e34302e302f32342d3234203d3e20313437303439.roa
Signing time: Mon 26 Feb 2024 08:53:44 +0000
ROA not before: Mon 26 Feb 2024 08:48:44 +0000
ROA not after: Mon 24 Feb 2025 08:53:44 +0000
asID: 147049
IP address blocks: 153.92.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:8f:d1:b1:c1:dd:40:da:06:82:72:18:b7:d7:3e:ff:62:fc:e1:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Feb 26 08:48:44 2024 GMT
Not After : Feb 24 08:53:44 2025 GMT
Subject: CN=FADC526E2D9C3913E91E6F0CD006D89548812499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f0:75:61:f6:db:36:57:90:b2:bd:ff:b7:15:
85:14:c9:b4:dc:87:61:01:80:02:2f:ce:6c:95:2d:
65:f6:c4:b0:36:f9:b7:42:02:2f:1c:3e:6a:09:e9:
60:bf:12:3f:18:d1:a1:68:fb:ec:80:99:73:7b:b8:
c6:10:09:b0:4f:df:ac:bb:e7:b3:23:31:d8:f1:5c:
55:fd:d9:72:36:38:e1:05:6c:23:35:da:d3:75:87:
de:b3:14:ec:7d:73:af:e6:db:af:48:1c:74:8c:d2:
61:74:8b:bf:6f:bc:4b:52:bb:09:70:ae:04:a6:be:
e7:ec:51:e3:5d:51:77:34:ee:94:f4:84:64:1c:fc:
8a:53:19:f5:26:ea:ac:52:36:08:cb:cf:b3:b2:70:
6f:60:d3:d2:e2:60:db:1f:0a:34:db:f2:ee:df:96:
3d:42:fc:43:ce:8c:58:40:e7:80:f5:ea:d6:54:97:
b9:79:e0:f5:4f:04:57:ef:ee:97:cb:96:9b:4c:8f:
72:f1:47:22:7b:3a:56:e2:eb:15:33:fb:5c:48:61:
f2:85:05:b3:0d:c1:53:02:e7:07:60:33:96:a8:a2:
be:79:49:34:62:0f:8f:a1:13:fa:c2:30:3a:5c:b5:
4a:c5:42:df:22:09:16:49:87:14:9b:cb:11:ee:e3:
3a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:DC:52:6E:2D:9C:39:13:E9:1E:6F:0C:D0:06:D8:95:48:81:24:99
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3135332e39322e34302e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.92.40.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:31:09:3a:ab:0c:1a:4f:3e:d8:09:6b:31:b7:af:ca:f9:ef:
53:1d:f8:36:22:7a:83:5f:a5:46:1a:a4:a2:db:1c:38:4a:08:
27:9e:56:04:d4:71:c8:69:08:9d:9d:b8:20:9c:43:4e:dd:71:
5f:af:a8:21:e8:1b:28:ad:2d:96:c0:70:4a:84:db:9d:ac:56:
6b:c0:8c:8c:1a:75:3f:6d:fa:38:2b:d0:56:30:22:8e:3f:67:
be:bd:b7:60:d9:ac:21:a8:1a:a1:2b:16:1a:08:8c:98:4c:41:
7b:df:22:cb:56:7f:cc:b6:ff:80:00:21:32:99:a6:93:1b:cd:
da:e8:81:ac:9e:06:07:57:3c:3d:70:ee:13:9d:06:ef:07:18:
1e:45:ec:00:2a:ec:23:17:e0:75:0b:49:a1:4d:29:52:bc:c8:
3d:ab:01:32:0e:94:ea:eb:16:c8:d1:8b:8f:70:35:62:69:10:
4c:2e:50:cb:d9:79:72:d7:c9:1d:78:b5:71:4f:88:ed:df:c9:
94:47:85:39:13:5b:4a:d7:f6:67:e1:dd:92:01:76:5d:38:4e:
d3:67:e5:c3:d9:d8:81:f9:44:36:94:08:d1:3f:50:95:3a:5e:
ad:a6:78:c1:bb:74:5d:d7:a2:bc:a0:e7:51:ad:32:00:a8:67:
1d:82:33:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:07:17 2024 by rpki-client on console-ams.rpki-client.org