Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31362e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e31362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: wMV1LsXC70XPsa0l/3h3765l+uonhtyHTWG4xxiCXl4=
Subject key identifier: 67:F5:C3:0C:98:4C:45:AC:89:1C:A4:D2:FA:11:95:05:01:EE:A8:5E
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 09D895E3E091790B646A77A596B2630D59341A
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31362e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 26 Nov 2023 19:47:35 +0000
ROA not before: Sun 26 Nov 2023 19:42:35 +0000
ROA not after: Sun 24 Nov 2024 19:47:35 +0000
asID: 136787
IP address blocks: 155.133.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:d8:95:e3:e0:91:79:0b:64:6a:77:a5:96:b2:63:0d:59:34:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Nov 26 19:42:35 2023 GMT
Not After : Nov 24 19:47:35 2024 GMT
Subject: CN=67F5C30C984C45AC891CA4D2FA11950501EEA85E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a9:3f:6d:60:af:f6:a3:95:05:c1:fa:55:37:
fa:9b:da:4a:77:1b:05:30:b5:9a:68:a2:d9:92:f9:
72:b3:f7:10:1b:a8:70:32:2d:59:5b:f2:fc:6e:77:
cf:c0:eb:76:b2:b2:3c:3f:e8:f0:79:13:e5:a1:ae:
12:cc:6c:f7:d3:11:41:fe:9f:f3:7c:8b:fa:21:7a:
30:34:88:72:b8:17:71:06:06:fd:cf:56:c0:45:ae:
49:fe:85:11:eb:43:df:f4:58:ec:5f:88:55:d4:46:
c7:54:4d:ce:3f:73:9f:31:08:eb:02:df:f2:b3:ad:
ac:e3:8b:e8:86:df:85:1f:36:69:66:e3:bd:a4:5c:
14:cd:74:a0:cb:59:f0:f9:8d:5d:3d:7c:b2:6c:f0:
30:bc:9d:e3:bb:b9:61:ba:ef:ed:3f:f3:23:eb:57:
ec:49:9c:32:1a:70:02:6e:32:ac:60:67:19:87:ad:
dc:58:ab:e4:32:ff:b3:44:dd:71:c0:0f:30:66:3e:
b5:8c:c0:45:52:f8:87:75:3e:6e:57:57:94:5f:6b:
eb:c4:25:56:d3:3a:d9:6d:cd:83:21:d8:40:f2:12:
c1:3d:5b:f3:5b:15:e2:22:95:a6:63:2e:dd:0d:28:
66:59:af:95:ce:27:78:ac:50:04:33:c1:5b:59:80:
cf:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F5:C3:0C:98:4C:45:AC:89:1C:A4:D2:FA:11:95:05:01:EE:A8:5E
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.16.0/24
Signature Algorithm: sha256WithRSAEncryption
13:8e:6d:73:78:a2:5e:61:7a:6c:42:59:74:8a:e8:ad:4d:fc:
30:22:a4:aa:14:b7:21:35:7b:1a:c9:85:89:d4:d9:c2:91:3a:
38:1b:4e:7d:11:8f:0a:1b:de:7d:4d:e0:18:bb:56:73:98:9a:
3d:0f:1d:97:e2:78:66:49:d5:e5:e3:d7:8f:bb:12:f9:7e:0f:
75:ad:bf:4e:77:cc:0c:3b:88:c5:8c:4f:78:3c:96:46:21:23:
d2:05:c6:86:e2:c6:8f:c4:8e:f8:b9:a1:f7:3e:6e:3c:3f:3d:
a6:71:08:1f:73:3c:35:0b:16:51:ed:86:ed:25:6e:32:f8:64:
aa:c4:98:b6:91:14:33:b7:0d:18:ef:92:40:fb:c0:f0:61:a6:
cc:2f:b4:6f:74:6c:b3:c5:ac:26:61:4e:05:62:c4:d3:86:21:
5f:34:18:77:db:93:74:5e:32:6e:6a:5b:ee:42:2a:9a:16:19:
94:3b:2e:4c:02:09:cc:08:f6:c6:46:0f:27:8a:53:7d:dc:fc:
b0:62:8d:ed:ae:01:ad:ba:86:43:82:1c:47:6d:7f:d9:d2:ee:
20:68:92:15:72:14:80:a2:dc:f8:0c:da:c2:36:32:5d:39:53:
76:67:14:32:bb:ac:3b:31:dd:2f:59:c5:f3:1e:e9:bf:14:d0:
62:98:01:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:21:25 2024 by rpki-client on console-fra.rpki-client.org