Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e312e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: TVBwStxUNUdSWHHxSm5our5wBYgCaUOj5ilu1oUC9N0=
Subject key identifier: A9:33:D0:BB:14:77:2A:0F:9D:81:07:D1:3F:B7:20:7C:FF:D7:05:8C
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 313D5161E48AF0D52C420FCD7781640EB647C73A
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e312e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:53:31 +0000
ROA not before: Mon 26 Feb 2024 08:48:31 +0000
ROA not after: Mon 24 Feb 2025 08:53:31 +0000
asID: 136787
IP address blocks: 155.133.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:3d:51:61:e4:8a:f0:d5:2c:42:0f:cd:77:81:64:0e:b6:47:c7:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:31 2024 GMT
Not After : Feb 24 08:53:31 2025 GMT
Subject: CN=A933D0BB14772A0F9D8107D13FB7207CFFD7058C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c0:8a:ac:ce:e4:4b:aa:fb:db:ae:64:4a:3a:
48:28:bb:ed:66:01:05:62:d8:ca:c7:51:22:0a:53:
f2:ab:88:e9:a8:16:96:69:47:78:5a:3a:b1:ee:6f:
c0:31:68:4a:20:fb:b2:65:05:96:c6:69:ac:fe:d6:
f5:cd:e3:60:eb:97:83:6d:6d:02:a0:32:57:24:bb:
77:a6:e7:40:11:0c:88:15:14:12:1d:96:9d:d6:d0:
64:45:45:53:d5:94:52:04:99:54:4b:b5:76:72:b9:
28:1b:7e:c8:49:0e:c0:3f:75:b2:6b:86:cc:9a:1a:
2f:1f:8c:b3:65:c9:bb:c0:26:25:df:05:ef:f9:58:
ff:65:14:c0:ea:c2:12:74:bf:f1:2c:b0:dc:23:85:
76:85:d3:b6:dd:b6:89:79:da:a7:42:c0:42:b3:32:
bb:8b:2a:0b:fb:e6:c7:7d:82:0f:0f:28:79:82:50:
dd:b1:00:78:de:c0:58:85:b3:50:59:1f:85:8a:ed:
78:49:32:2b:8b:63:bc:b4:13:85:2a:ce:16:4f:46:
ab:0b:fb:79:63:dc:f9:a3:0d:dd:09:b7:99:a2:37:
f6:8e:ab:db:bd:d1:7f:c3:b2:a7:a3:8e:67:5c:a0:
b0:0a:34:45:1c:93:f7:79:66:58:df:0d:40:95:f8:
e1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:33:D0:BB:14:77:2A:0F:9D:81:07:D1:3F:B7:20:7C:FF:D7:05:8C
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.1.0/24
Signature Algorithm: sha256WithRSAEncryption
60:c6:30:3d:0a:7c:1f:14:1e:63:86:2f:6e:31:43:b0:92:f8:
0b:22:99:60:52:50:12:11:97:c6:c6:78:89:8c:48:f6:42:aa:
04:8e:b6:48:d5:9e:41:9f:b0:26:1f:8d:c5:d0:3d:a1:c5:66:
c7:17:fa:cd:ca:e0:d5:17:10:4f:97:e6:0f:8d:36:90:b2:6c:
ea:16:fd:74:5e:18:44:8f:b5:ef:d2:2a:2f:73:ad:d8:81:1a:
42:e7:66:31:f2:5d:79:82:03:67:d9:a7:43:a3:34:2f:b9:ae:
fd:89:0e:82:e4:d2:7d:33:69:99:bb:25:8a:f1:53:13:11:50:
a8:45:8f:8a:35:b7:6b:0f:61:0d:e7:ff:c1:52:b3:f9:ee:5b:
20:59:e5:a7:89:9b:7d:f8:50:42:27:ad:d1:9e:8e:0a:1c:7e:
2a:32:55:63:e7:45:3d:fe:8b:22:d2:b0:6f:a4:31:a9:82:a1:
e0:7d:79:5c:7a:ea:18:58:be:09:5a:87:a9:2f:a8:a6:cc:1f:
99:91:24:75:10:9b:9e:2e:ed:cd:c5:6a:48:af:d3:17:bc:9c:
ef:5a:0e:23:95:2e:03:63:4e:b5:0b:11:db:8d:31:69:81:d1:
02:c5:2e:91:8a:9c:0a:15:06:3f:a4:94:1e:08:48:c1:e1:72:
9f:59:97:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:29:12 2024 by rpki-client on console-ams.rpki-client.org