Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e36382e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e36382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: LSD1gsesBJJS01uyPAiZNRZio0ddIMse8w9cwpvAljM=
Subject key identifier: 75:73:18:7C:87:6E:8D:FF:75:2B:90:4C:79:0D:B5:B8:63:0C:FB:E1
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 73E996D0F4C1346ACBFE39A07090655EBC1DCF59
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e36382e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 26 Nov 2023 19:48:05 +0000
ROA not before: Sun 26 Nov 2023 19:43:05 +0000
ROA not after: Sun 24 Nov 2024 19:48:05 +0000
asID: 136787
IP address blocks: 155.133.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:e9:96:d0:f4:c1:34:6a:cb:fe:39:a0:70:90:65:5e:bc:1d:cf:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Nov 26 19:43:05 2023 GMT
Not After : Nov 24 19:48:05 2024 GMT
Subject: CN=7573187C876E8DFF752B904C790DB5B8630CFBE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:62:82:98:91:50:7a:dc:7f:fa:7d:80:5d:56:
c0:1b:a0:9f:10:04:34:53:73:96:fe:34:80:36:e7:
43:60:8e:5f:61:84:90:91:38:22:a0:f9:2b:f9:0f:
eb:28:47:e8:23:a2:9b:b0:04:11:7b:bc:e2:c6:ba:
06:dd:65:c3:f8:2c:67:23:05:cd:ff:0e:4f:99:78:
5f:fd:e3:41:5b:65:f6:c2:cb:ec:c2:91:33:9b:1c:
58:c9:8e:84:e8:04:c4:a9:10:cf:8c:96:e0:23:10:
c5:fc:01:ba:96:22:cc:0a:1f:5c:11:8b:91:ef:a8:
17:46:f8:dd:a8:0e:bf:ff:b1:55:6a:2b:00:68:a9:
a6:4f:ea:1e:72:60:af:b7:46:eb:ba:ec:c3:33:bd:
0d:d5:47:05:81:51:d7:18:2d:63:fe:7c:9a:78:de:
ed:92:28:9e:81:3e:fe:5c:bd:66:37:17:54:a2:c7:
a6:17:f4:95:f3:8e:95:8c:50:f9:35:b8:34:1b:66:
c8:c1:b3:6c:2c:d1:cf:44:77:82:3c:6f:27:28:cc:
34:b8:ec:57:fb:61:08:cf:4f:34:81:6d:ce:6b:09:
0b:5b:06:9e:ff:4e:94:57:1c:3b:b8:46:01:c9:84:
d4:78:59:f7:7d:c8:54:a0:bb:22:42:c8:27:ac:26:
13:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:73:18:7C:87:6E:8D:FF:75:2B:90:4C:79:0D:B5:B8:63:0C:FB:E1
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e36382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.68.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:90:d4:4a:31:86:00:cb:ea:d2:2c:d8:01:0b:be:e2:12:e3:
7b:95:3f:d2:94:43:92:0e:0d:1b:69:b2:1a:20:98:d7:33:48:
4f:84:95:c1:47:71:fa:75:55:3f:4c:14:e2:2a:4a:f2:8b:f8:
34:c3:dd:74:aa:6d:73:79:e2:74:54:eb:c5:5c:4c:2d:e6:01:
55:05:3e:69:88:68:12:c6:e6:38:7c:b7:0e:6b:cd:56:5e:fe:
d8:16:61:4f:e4:5e:40:e2:78:4d:cb:56:7c:ce:c8:cd:c2:03:
c4:a6:a5:05:30:58:f3:fd:6f:34:77:62:58:46:eb:b9:d3:9b:
67:b1:95:9c:27:49:c6:3c:32:e1:0b:24:ba:cc:25:c1:39:41:
55:38:d1:96:83:77:ad:f3:ab:b7:54:f6:d4:58:e0:cd:b9:eb:
14:73:ae:03:8b:2e:c8:e0:f1:82:c2:db:be:fd:de:dc:8e:c6:
06:22:ce:ba:c8:af:c4:dc:d9:a1:d6:d5:6e:be:39:a8:d5:70:
35:36:b8:47:e4:29:f4:5c:28:f9:69:d9:9a:fa:c4:08:0f:c8:
ad:24:a9:a0:51:d3:cd:86:c3:a0:1c:c1:c6:01:87:d4:fc:38:
52:c8:85:85:41:2a:80:db:82:25:76:64:c2:4a:2c:ee:61:32:
67:e0:81:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 21:49:14 2024 by rpki-client on console-ams.rpki-client.org