Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e36362e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e36362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Zo/wBXuig0PX1lqZij5t6c2IEOEG1QuSJMXcAcPAk/I=
Subject key identifier: 80:AE:2F:E0:60:7C:C7:CD:0F:8B:09:43:65:9D:64:03:45:79:4A:87
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6C1DFB3E9AB9DFD16593DA9EC5B58B140F717FA3
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e36362e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 27 Oct 2024 20:05:16 +0000
ROA not before: Sun 27 Oct 2024 20:00:16 +0000
ROA not after: Sun 26 Oct 2025 20:05:16 +0000
asID: 136787
IP address blocks: 155.133.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:1d:fb:3e:9a:b9:df:d1:65:93:da:9e:c5:b5:8b:14:0f:71:7f:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 27 20:00:16 2024 GMT
Not After : Oct 26 20:05:16 2025 GMT
Subject: CN=80AE2FE0607CC7CD0F8B0943659D640345794A87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b2:15:b6:9d:33:87:d9:a3:e0:35:b1:3a:e4:
45:da:ba:96:72:89:d5:83:5c:d5:d2:ed:6f:8b:95:
6a:02:9c:81:26:5f:fa:8c:47:c8:b5:2a:2c:30:d5:
e7:6e:83:ff:f8:bc:7c:02:a0:0f:32:5b:58:cf:86:
22:47:bd:1b:8f:6d:61:2d:52:7d:05:86:4f:05:f5:
1f:3f:21:f4:30:34:87:21:7d:09:b8:66:66:79:98:
98:47:e4:90:d5:28:21:45:24:ef:e7:df:bc:67:ff:
cf:07:66:b0:15:bc:77:fe:0f:66:6b:90:26:7f:ac:
d6:04:63:4a:bd:2f:a3:59:44:2c:7d:18:2d:f4:90:
3f:b9:38:be:72:f6:91:29:a3:ad:23:96:49:3d:80:
3b:2a:b1:22:f8:ac:9b:c1:82:a3:90:75:4a:df:73:
1b:f0:e6:c1:8b:50:64:44:da:0d:65:3a:b7:5d:b5:
cc:0b:a9:06:bf:ba:84:2a:ef:11:db:b0:b4:c3:e2:
28:27:66:27:fa:9a:77:ea:2b:db:fb:05:3b:9c:ba:
c4:c1:dd:c2:9e:94:7a:28:8d:5a:16:e5:14:ba:c3:
7a:1e:2b:b2:ca:4d:60:eb:4d:a9:a1:7f:4b:8f:3a:
fe:2e:5a:dd:67:93:42:3b:8d:f6:6d:14:8b:61:b5:
0a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:AE:2F:E0:60:7C:C7:CD:0F:8B:09:43:65:9D:64:03:45:79:4A:87
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e36362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.66.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:e9:85:19:a7:db:6e:d8:ad:1f:bc:f1:2f:e5:78:05:6f:7f:
c9:78:1d:65:f0:d8:3a:c8:b2:a4:66:87:5d:e6:1a:4c:4b:b9:
74:be:92:98:de:92:d3:af:7c:1b:69:07:d1:d8:11:ee:cb:0f:
fb:be:00:5a:8d:04:b9:1a:96:7e:af:91:a0:b4:4d:e5:c4:01:
15:c3:cf:92:ed:db:7f:4b:cd:f8:b3:e2:e9:b8:6b:ed:a6:03:
9e:6e:0c:98:57:5e:7f:3a:74:1c:59:14:95:88:18:9e:43:b9:
b0:ec:29:ab:cd:48:55:dc:65:b0:25:fa:d6:45:c9:c0:5b:5d:
3c:63:10:f7:9d:25:56:67:a4:dd:2d:ec:3a:fc:40:4f:42:f2:
39:2d:2a:1c:98:3c:84:cf:5b:8c:08:d6:8e:6d:a4:6c:4e:5e:
87:9c:75:29:0f:fb:e6:ae:16:e1:28:fd:e5:ce:40:6f:67:6b:
df:8a:17:8f:0b:8e:48:10:1a:13:90:77:a9:f0:27:f9:fe:33:
17:67:ee:0b:c0:f0:d4:f4:12:c2:3f:47:36:24:25:74:a5:82:
47:0e:6a:9a:a6:ca:35:00:dd:70:19:79:9a:c1:06:e4:b7:58:
89:43:c3:11:06:b4:f2:16:8e:09:0e:91:eb:b3:5a:2f:af:4d:
a6:42:f9:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:29:12 2024 by rpki-client on console-ams.rpki-client.org