Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37342e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e37342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: ihCh/0wqGSJoi6RDbTME5BTUfDAmu0niGzVbSaykd1k=
Subject key identifier: 75:35:98:B1:F8:26:54:AA:05:85:BB:FF:7A:E8:AC:26:E8:53:A1:80
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 67489EAC0AB826B6326E4B94E2E78A5AABE3D99A
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37342e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 26 Nov 2023 19:48:10 +0000
ROA not before: Sun 26 Nov 2023 19:43:10 +0000
ROA not after: Sun 24 Nov 2024 19:48:10 +0000
asID: 136787
IP address blocks: 155.133.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:48:9e:ac:0a:b8:26:b6:32:6e:4b:94:e2:e7:8a:5a:ab:e3:d9:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Nov 26 19:43:10 2023 GMT
Not After : Nov 24 19:48:10 2024 GMT
Subject: CN=753598B1F82654AA0585BBFF7AE8AC26E853A180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:59:8e:c0:bb:4d:fc:cf:53:e1:21:ab:b1:47:
41:7c:1a:52:1e:c4:11:70:57:ee:4e:15:eb:7e:cf:
ad:29:96:d0:a2:f8:1e:e7:37:33:12:81:62:0b:e4:
18:03:df:6f:3d:2c:8e:37:5f:05:f2:b9:de:c2:47:
f1:49:59:ca:8e:ad:54:ac:a1:08:42:26:9c:58:66:
4d:20:e8:0f:fb:5c:29:3e:2a:ee:27:ae:2c:91:0e:
71:41:0b:09:93:9b:29:5c:ef:ea:0d:21:99:ce:b6:
db:27:2b:0c:0f:59:a2:07:91:86:95:07:e5:7c:5a:
e9:c7:8d:42:ca:2a:24:56:bd:d7:81:53:0f:03:8f:
4c:60:50:e0:a8:2f:59:8d:47:aa:45:39:f7:31:20:
17:a7:22:41:c8:f2:b6:6e:83:8c:4b:d3:fc:8c:31:
51:32:e5:97:c9:96:b3:0e:ca:6f:31:e9:10:7f:12:
e0:71:ca:33:21:4a:08:6c:11:cb:11:54:7a:2a:e3:
04:8a:82:60:f7:0d:b5:b9:74:ed:c8:e1:46:77:96:
76:fb:e1:e0:21:e9:d2:c0:d7:3e:47:cb:94:cf:50:
60:a8:75:d7:cf:37:a9:4a:62:fb:98:2f:56:cc:88:
8f:62:6b:2b:34:42:ef:ae:50:8c:45:ff:fd:69:2c:
73:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:35:98:B1:F8:26:54:AA:05:85:BB:FF:7A:E8:AC:26:E8:53:A1:80
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.74.0/24
Signature Algorithm: sha256WithRSAEncryption
77:a3:be:66:a6:e4:f7:9c:df:d3:58:67:7c:cc:54:84:d3:ca:
e2:39:72:09:a6:25:14:28:cd:c2:64:23:d4:b5:2d:9b:6f:4c:
48:8b:a6:08:2c:1d:22:94:fa:46:4d:db:a2:54:63:5e:9e:53:
41:26:b4:2c:5f:d1:72:25:48:9e:22:73:b6:a1:8f:ef:d8:52:
97:c5:4d:52:ad:7d:cf:a9:bb:76:18:31:3b:27:9a:48:9f:e0:
bf:31:e4:37:33:3f:5e:d8:f6:11:9d:f8:18:57:65:5c:80:ca:
32:05:00:b5:8a:c5:0b:f9:f0:06:0e:01:5b:22:84:74:82:af:
9c:16:d3:ff:1e:c6:73:18:7f:99:f5:56:af:89:cc:61:0e:88:
50:2a:c8:4c:99:63:1b:47:e7:f7:b7:f7:10:9b:1a:d5:8d:d3:
a8:87:a9:78:31:9b:89:5c:3e:06:74:0b:18:35:de:57:2f:52:
6b:5e:4e:9f:0b:eb:38:77:b5:c2:1a:8d:ab:7c:29:e1:97:2c:
be:aa:6c:f0:de:25:81:59:52:2d:21:1b:7f:2f:7a:35:47:d6:
23:ec:26:8c:9f:2c:9f:c3:08:6a:52:aa:3d:a6:b5:ae:fc:cf:
be:af:ff:48:7e:a7:bc:f7:44:5c:e5:f7:32:60:fd:5f:cb:c3:
25:6c:17:43
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUZ0ierAq4JrYybkuU4ueKWqvj2ZowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yMzExMjYxOTQzMTBaFw0yNDExMjQxOTQ4MTBaMDMxMTAvBgNV
BAMTKDc1MzU5OEIxRjgyNjU0QUEwNTg1QkJGRjdBRThBQzI2RTg1M0ExODAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6WY7Au038z1PhIauxR0F8GlIe
xBFwV+5OFet+z60pltCi+B7nNzMSgWIL5BgD3289LI43XwXyud7CR/FJWcqOrVSs
oQhCJpxYZk0g6A/7XCk+Ku4nriyRDnFBCwmTmylc7+oNIZnOttsnKwwPWaIHkYaV
B+V8WunHjULKKiRWvdeBUw8Dj0xgUOCoL1mNR6pFOfcxIBenIkHI8rZug4xL0/yM
MVEy5ZfJlrMOym8x6RB/EuBxyjMhSghsEcsRVHoq4wSKgmD3DbW5dO3I4UZ3lnb7
4eAh6dLA1z5Hy5TPUGCoddfPN6lKYvuYL1bMiI9iays0Qu+uUIxF//1pLHNNAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUdTWYsfgmVKoFhbv/euisJuhToYAwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTM3
MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACbhUowDQYJKoZIhvcNAQELBQADggEBAHejvmam5Pec39NYZ3zMVITTyuI5cgmm
JRQozcJkI9S1LZtvTEiLpggsHSKU+kZN26JUY16eU0EmtCxf0XIlSJ4ic7ahj+/Y
UpfFTVKtfc+pu3YYMTsnmkif4L8x5DczP17Y9hGd+BhXZVyAyjIFALWKxQv58AYO
AVsihHSCr5wW0/8exnMYf5n1Vq+JzGEOiFAqyEyZYxtH5/e39xCbGtWN06iHqXgx
m4lcPgZ0Cxg13lcvUmteTp8L6zh3tcIajat8KeGXLL6qbPDeJYFZUi0hG38vejVH
1iPsJoyfLJ/DCGpSqj2mta78z76v/0h+p7z3RFzl9zJg/V/LwyVsF0M=
-----END CERTIFICATE-----
Generated at Wed May 8 20:21:25 2024 by rpki-client on console-fra.rpki-client.org