Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e362e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: e7B9GldKE3/t6Ea1E0h2nTjH/q+/lRsVRJhpF4zKzsE=
Subject key identifier: 3E:36:8B:B8:FF:B4:4B:C5:7B:67:E3:54:49:9E:0C:3D:FE:BB:31:E4
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 03C1D56F5259A912580421EA1AB07D66F1574942
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e362e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 11 Jun 2023 11:01:50 +0000
ROA not before: Sun 11 Jun 2023 10:56:50 +0000
ROA not after: Sun 09 Jun 2024 11:01:50 +0000
asID: 136787
IP address blocks: 155.133.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:c1:d5:6f:52:59:a9:12:58:04:21:ea:1a:b0:7d:66:f1:57:49:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 11 10:56:50 2023 GMT
Not After : Jun 9 11:01:50 2024 GMT
Subject: CN=3E368BB8FFB44BC57B67E354499E0C3DFEBB31E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:69:57:e5:94:7e:36:8e:fa:92:ac:1f:9c:76:
18:34:64:55:d0:b5:53:6e:52:4c:87:b9:96:9c:79:
65:4f:df:a4:3b:b8:a4:6b:50:4c:5a:4b:86:cb:ff:
23:70:34:e7:05:d6:20:28:08:36:12:7a:4a:c3:f3:
40:9f:34:4c:45:cc:35:4b:a3:35:25:00:e4:8d:49:
eb:94:4c:39:31:37:33:df:c0:f0:b3:66:1c:2f:fb:
77:e1:ab:f5:24:80:9b:cf:4c:fc:fe:90:03:96:67:
79:40:4e:3d:27:a5:de:55:a6:e9:19:f1:6d:bd:e8:
6a:1d:8c:c2:cb:dc:c1:8f:ca:67:75:b6:fc:db:cc:
9f:e2:be:25:63:22:33:2d:21:d3:21:73:15:2c:2c:
da:3f:28:ba:8c:84:f2:f6:5a:07:d4:3d:1e:a0:42:
14:0a:5b:96:c6:ec:13:90:f5:c4:93:e2:3a:c2:5e:
ed:09:e4:3f:44:f9:bf:c8:e0:d7:96:51:9c:a1:3e:
0b:c1:4d:bc:15:43:e0:a9:24:09:61:59:b2:0a:bb:
1d:f8:33:11:4a:4d:a2:2b:85:c2:4e:a4:68:76:5f:
d1:64:30:f3:7c:d2:ff:a9:51:0e:c9:c8:39:b2:80:
0f:83:d3:6e:a7:41:54:9b:55:20:ab:b6:c1:69:47:
98:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:36:8B:B8:FF:B4:4B:C5:7B:67:E3:54:49:9E:0C:3D:FE:BB:31:E4
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.6.0/24
Signature Algorithm: sha256WithRSAEncryption
76:44:d7:6e:6f:51:6c:83:76:22:26:81:d8:12:60:ce:c3:e3:
d8:9f:03:37:b2:b2:fd:1f:d7:41:c2:44:4f:fe:92:4f:4e:3d:
38:54:94:aa:f2:59:bb:81:35:bb:70:58:69:47:05:99:a9:06:
81:2d:69:47:f2:c6:82:8a:d4:e7:29:0a:9e:8b:7d:90:22:5e:
cc:b6:3f:8d:b4:f6:36:42:f6:77:df:0d:c6:da:25:8f:4d:51:
99:75:60:80:47:90:cb:94:69:c3:f5:3e:c6:90:24:13:cd:de:
c6:04:eb:e0:ba:15:07:bc:92:e2:67:d3:fc:41:d2:0a:34:67:
16:72:8e:3a:db:d5:4d:3e:8b:a6:e1:3a:9e:cc:af:54:69:dc:
cc:cf:53:88:d9:16:47:68:75:a6:eb:c2:ab:7e:84:3a:dd:0a:
5d:0f:09:89:ed:69:44:87:9c:a9:af:d1:96:59:e4:df:70:11:
d4:52:b5:0a:61:a7:66:0e:ae:2c:57:d8:44:8c:b9:b3:b3:47:
ed:9d:55:4e:1a:1f:e3:bb:86:c5:d4:8a:48:b6:62:bd:83:83:
6b:a5:f7:7b:0c:9f:ed:37:95:97:5d:46:c8:4b:35:6c:1b:93:
94:39:9a:e3:0c:e8:24:79:98:0e:7a:90:e2:70:eb:5e:fb:bd:
a4:58:6e:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 19:21:53 2024 by rpki-client on console-ams.rpki-client.org