Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e312e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: vvHFmP1cTrv0AR4fXzKhJV6oMUvGDZinfrS9vdfyQ3E=
Subject key identifier: 76:07:BF:AB:88:DD:B7:BB:D3:CC:CE:9B:09:18:CF:8B:D0:27:35:26
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7B4A39AF4904C6952D59EE1E68540582E38E098A
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e312e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 27 Jan 2025 09:45:29 +0000
ROA not before: Mon 27 Jan 2025 09:40:29 +0000
ROA not after: Mon 26 Jan 2026 09:45:29 +0000
asID: 136787
IP address blocks: 155.133.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 10:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:4a:39:af:49:04:c6:95:2d:59:ee:1e:68:54:05:82:e3:8e:09:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 27 09:40:29 2025 GMT
Not After : Jan 26 09:45:29 2026 GMT
Subject: CN=7607BFAB88DDB7BBD3CCCE9B0918CF8BD0273526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8b:1c:ae:6e:ae:64:6d:14:05:9d:65:df:71:
6f:36:fb:de:36:ec:a8:4f:3a:6a:41:b0:f4:b7:22:
94:23:8b:ea:61:f7:5d:ac:1d:4e:e6:04:76:94:b0:
65:07:c2:c3:4a:dc:b4:87:ad:28:2b:ae:d0:10:59:
fa:7d:0a:24:20:2f:36:59:41:eb:1e:c0:2d:33:ee:
f3:0a:79:de:9e:65:f3:59:5d:2c:fc:e0:7a:17:4d:
7c:6a:01:1f:d0:ae:73:db:05:62:3f:dd:eb:c7:69:
1d:e1:4a:05:d1:6f:fb:a3:c7:b8:32:d6:c6:93:32:
a7:62:44:c3:c1:a2:04:9d:11:82:b2:da:41:a9:39:
44:df:fb:83:5b:4a:75:83:9c:dc:49:b1:52:66:86:
52:dd:2c:3f:77:5b:ca:8f:fe:43:6f:41:08:f5:9c:
79:6e:0d:28:e0:2d:42:fb:de:70:13:1d:52:2c:b4:
eb:b8:8e:c1:7a:5c:1f:b0:37:ee:bb:ca:8c:7f:70:
be:aa:42:94:30:12:ee:32:f0:3d:95:d0:d0:7b:a4:
b2:ee:43:bf:d6:00:11:fa:49:a3:4b:57:4b:db:5c:
0d:ca:46:12:e2:4b:3e:00:10:7d:80:57:b0:3c:80:
ab:8a:2d:be:36:1e:c6:15:70:74:49:fb:cd:d1:4c:
65:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:07:BF:AB:88:DD:B7:BB:D3:CC:CE:9B:09:18:CF:8B:D0:27:35:26
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.1.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:47:52:2c:0b:6c:0f:bd:74:01:fc:29:ce:44:f0:6b:82:e0:
f5:84:70:49:14:4b:7e:b9:71:5a:9a:50:4f:11:e1:72:bd:e0:
2a:8c:76:f8:cd:c2:c7:33:fb:0d:e1:17:90:a9:f3:cf:12:97:
25:31:56:3c:7b:fd:3a:1c:05:e1:ba:65:60:f1:7e:71:11:f4:
33:32:68:a8:fd:91:87:d1:c7:ce:00:a5:bb:ed:c5:7d:87:b3:
42:1b:a8:55:b9:54:55:ac:9b:34:c2:13:84:18:ee:96:d6:97:
60:fb:9e:dd:93:ef:aa:49:d8:f5:bc:ee:82:42:4a:31:bc:e7:
18:0a:7f:b4:d5:b3:63:63:94:ef:b3:7b:4d:62:f3:16:3c:c1:
00:21:0b:ec:e2:5c:1b:8a:17:dd:25:4b:fe:26:e4:3a:21:d2:
84:a8:dc:9e:cd:96:67:ba:b4:dc:66:65:54:b3:ac:58:ed:d2:
13:29:ec:b0:44:63:50:d3:64:eb:5d:92:b5:33:dc:15:5a:61:
b7:64:15:a5:08:cc:7f:c7:c8:ef:22:db:c6:5a:d5:44:42:08:
fd:39:d0:d1:21:60:3a:8b:3c:3a:90:4e:fd:d4:03:5d:2c:11:
25:5b:45:22:4e:55:5a:19:21:00:6c:7e:6d:e7:26:f6:04:5e:
2c:35:e4:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:14:23 2025 by rpki-client