Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31372e302f32342d3234203d3e203632323430.roa
File: 3135352e3133332e31372e302f32342d3234203d3e203632323430.roa (raw, json)
Hash identifier: TVeCU9gH+QF7wjY0kcL9J+mAwYMxRwc7a6oL9aBy+Ts=
Subject key identifier: C8:21:92:CB:BF:F8:E7:50:76:C3:76:90:33:9A:A5:68:BD:03:A4:A5
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 60CBA675B840AAE3D7B7FF961DEF8DDA2D3DA012
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31372e302f32342d3234203d3e203632323430.roa
Signing time: Tue 05 Dec 2023 08:53:57 +0000
ROA not before: Tue 05 Dec 2023 08:48:57 +0000
ROA not after: Tue 03 Dec 2024 08:53:57 +0000
asID: 62240
IP address blocks: 155.133.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:cb:a6:75:b8:40:aa:e3:d7:b7:ff:96:1d:ef:8d:da:2d:3d:a0:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 5 08:48:57 2023 GMT
Not After : Dec 3 08:53:57 2024 GMT
Subject: CN=C82192CBBFF8E75076C37690339AA568BD03A4A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:52:d0:97:fd:8c:26:31:ff:fc:65:5d:33:02:
59:4b:96:ec:a6:fa:cd:4a:0d:ba:f4:35:13:9a:ce:
66:dd:c7:25:2f:e5:88:91:7d:45:75:d0:10:c1:e8:
5e:da:ab:63:0f:26:51:4a:dc:77:fa:5c:ca:75:79:
43:6f:05:22:49:67:f1:d8:b0:e1:eb:54:ce:fe:b1:
a3:25:9f:f3:80:4b:ca:2a:9c:43:db:3d:08:c7:41:
db:5a:c0:70:86:53:66:8c:13:e6:f3:6e:66:6b:4f:
96:cf:94:c3:78:81:2a:42:04:d0:73:4b:20:8f:43:
6a:c6:11:06:91:cf:de:31:50:ea:5b:2f:ea:32:d4:
25:1d:05:99:84:30:78:f4:ee:cf:a8:63:93:ad:be:
84:9a:6c:ad:22:a6:a6:52:4b:12:b5:c8:ae:ad:7f:
de:79:0a:f2:f1:12:d2:c2:29:38:34:53:bd:2d:aa:
40:a8:6d:96:c7:18:8d:43:d2:bc:8f:4c:0b:cc:28:
50:a7:8a:1a:34:83:17:10:32:e6:cb:db:c1:ab:c6:
7e:ef:f2:80:60:86:35:27:bf:6f:18:3a:fc:04:c6:
23:2c:92:4c:45:30:31:7a:83:a2:71:96:f5:1f:9a:
a5:6b:3c:5a:d0:dd:d2:d2:a3:43:83:c7:4c:59:df:
9b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:21:92:CB:BF:F8:E7:50:76:C3:76:90:33:9A:A5:68:BD:03:A4:A5
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31372e302f32342d3234203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.17.0/24
Signature Algorithm: sha256WithRSAEncryption
59:b2:7d:3c:74:eb:a4:1c:d4:f3:9c:5e:b6:26:a8:b8:b3:d3:
ce:21:ef:1e:3c:52:5e:10:a1:25:2c:5a:3c:ca:74:d1:56:1a:
df:20:04:02:a5:52:cc:25:fe:7d:f1:31:03:9d:7d:01:3e:db:
83:b7:93:b8:98:a0:f2:5e:cd:15:0a:5e:10:43:40:28:38:21:
f5:b6:39:8b:eb:94:c0:29:97:a6:ae:dc:65:e2:ef:45:c0:a3:
1a:ad:06:fc:f7:7b:a8:f6:fd:c0:27:8e:0c:80:4f:0a:01:a7:
1e:23:1f:e3:43:60:d8:2c:64:2b:da:1d:5b:87:e0:b1:89:c6:
11:81:dc:fc:53:20:b0:4f:32:d6:7e:b7:a1:a5:f4:d7:95:7d:
06:a1:48:42:69:4b:76:f1:f0:de:08:86:e1:c0:ad:c5:47:d8:
5b:17:8e:f7:3e:8f:2d:d4:4b:6a:9c:b5:9d:53:3c:e4:4e:dc:
52:b9:c0:27:6b:f8:04:53:da:07:af:2c:f3:79:33:ed:dd:0a:
f4:3c:e4:eb:ac:01:a6:09:79:ef:59:71:81:60:3a:40:09:9f:
b2:11:29:33:fa:24:68:88:76:1c:4c:70:10:4f:88:a3:b3:e1:
f6:50:43:6a:ee:04:41:7f:a8:ae:07:ca:b0:11:41:b2:03:72:
5d:cc:bb:51
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUYMumdbhAquPXt/+WHe+N2i09oBIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yMzEyMDUwODQ4NTdaFw0yNDEyMDMwODUzNTdaMDMxMTAvBgNV
BAMTKEM4MjE5MkNCQkZGOEU3NTA3NkMzNzY5MDMzOUFBNTY4QkQwM0E0QTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsUtCX/YwmMf/8ZV0zAllLluym
+s1KDbr0NROazmbdxyUv5YiRfUV10BDB6F7aq2MPJlFK3Hf6XMp1eUNvBSJJZ/HY
sOHrVM7+saMln/OAS8oqnEPbPQjHQdtawHCGU2aME+bzbmZrT5bPlMN4gSpCBNBz
SyCPQ2rGEQaRz94xUOpbL+oy1CUdBZmEMHj07s+oY5OtvoSabK0ipqZSSxK1yK6t
f955CvLxEtLCKTg0U70tqkCobZbHGI1D0ryPTAvMKFCniho0gxcQMubL28Grxn7v
8oBghjUnv28YOvwExiMskkxFMDF6g6JxlvUfmqVrPFrQ3dLSo0ODx0xZ35tvAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUyCGSy7/451B2w3aQM5qlaL0DpKUwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTMx
MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMyMzIzNDMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
m4URMA0GCSqGSIb3DQEBCwUAA4IBAQBZsn08dOukHNTznF62Jqi4s9POIe8ePFJe
EKElLFo8ynTRVhrfIAQCpVLMJf598TEDnX0BPtuDt5O4mKDyXs0VCl4QQ0AoOCH1
tjmL65TAKZemrtxl4u9FwKMarQb893uo9v3AJ44MgE8KAaceIx/jQ2DYLGQr2h1b
h+CxicYRgdz8UyCwTzLWfrehpfTXlX0GoUhCaUt28fDeCIbhwK3FR9hbF473Po8t
1EtqnLWdUzzkTtxSucAna/gEU9oHryzzeTPt3Qr0POTrrAGmCXnvWXGBYDpACZ+y
ESkz+iRoiHYcTHAQT4ijs+H2UENq7gRBf6iuB8qwEUGyA3JdzLtR
-----END CERTIFICATE-----
Generated at Sun May 5 03:07:02 2024 by rpki-client on console-fra.rpki-client.org