Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37342e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e37342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: SeUnFqVoVf2017LtuCV4tU02vguoBePydvBJMkMUhg4=
Subject key identifier: A5:F5:53:EA:5C:1E:C8:CD:9A:64:C7:F6:A5:FF:26:BE:59:36:84:24
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 788B771CEDBBC02EB3AC06AE2EE4C6167302F30F
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37342e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 27 Oct 2024 20:05:20 +0000
ROA not before: Sun 27 Oct 2024 20:00:20 +0000
ROA not after: Sun 26 Oct 2025 20:05:20 +0000
asID: 136787
IP address blocks: 155.133.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:8b:77:1c:ed:bb:c0:2e:b3:ac:06:ae:2e:e4:c6:16:73:02:f3:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 27 20:00:20 2024 GMT
Not After : Oct 26 20:05:20 2025 GMT
Subject: CN=A5F553EA5C1EC8CD9A64C7F6A5FF26BE59368424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2b:35:8f:d6:f8:ed:23:3c:86:10:00:62:86:
08:5a:75:74:4b:2b:b7:c8:74:f0:3d:67:87:3b:ab:
72:24:4c:47:96:1d:ab:66:42:97:df:f3:33:d6:97:
ec:b8:08:bf:95:ed:e1:92:b1:00:bf:e0:d0:ff:75:
f1:0e:11:aa:97:77:8b:b3:37:7b:f1:bf:4a:c3:6a:
37:24:51:c0:61:cf:73:06:21:eb:2d:19:3a:c5:54:
34:fb:15:4a:7f:a3:49:f1:ac:ed:70:41:77:02:03:
8f:5a:e3:3c:ee:5e:76:b1:b2:b9:1b:f0:a0:c7:13:
37:2a:b4:c5:06:c2:9e:d9:2f:f8:2c:45:c3:25:b1:
67:61:73:fd:31:12:6d:65:74:6d:73:9c:b0:f9:cd:
3c:1a:91:ac:c9:d5:b4:1a:7b:44:7b:f8:7f:c1:59:
fa:ad:c7:66:d4:e8:5e:23:8a:0c:6b:f3:4e:2e:ea:
12:8b:c8:d1:05:42:54:e0:ce:bf:45:54:7e:ee:9e:
f8:aa:3d:5e:0b:c7:45:49:db:be:12:3e:43:e3:c4:
f7:84:27:ea:7b:a1:60:1f:12:a1:79:90:60:d3:52:
4d:86:f8:5a:e7:75:47:60:f5:0d:39:a3:8d:ff:b0:
17:2d:37:b6:f6:91:5e:80:69:86:21:f3:41:ca:12:
72:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F5:53:EA:5C:1E:C8:CD:9A:64:C7:F6:A5:FF:26:BE:59:36:84:24
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e37342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.74.0/24
Signature Algorithm: sha256WithRSAEncryption
01:af:24:38:37:c6:2d:86:0a:8a:dd:30:42:5c:f3:6f:ca:1d:
50:f2:a9:1e:df:05:81:e5:bc:46:3b:1c:3d:03:0a:3b:91:8e:
a6:b3:dd:18:62:10:ad:6d:a7:93:60:a7:03:8b:05:cf:40:b4:
eb:ce:29:e1:b0:da:98:a9:4a:1b:d5:68:87:05:90:29:49:19:
81:91:f3:20:53:33:f1:64:0b:45:d1:96:c4:90:d8:8d:35:4c:
b4:eb:c6:2e:f1:d6:39:fd:55:b6:34:e5:af:b8:14:1b:e7:e5:
49:0d:ab:27:3f:5a:49:57:03:7f:51:4c:ea:ec:3e:75:77:2f:
82:e5:30:71:77:ed:b8:a6:c8:05:5a:f2:cc:23:a7:92:0b:2b:
07:e0:0d:a8:08:53:b2:eb:13:58:37:5a:f7:df:5d:6e:70:68:
1d:c8:e5:8b:fe:94:15:17:d4:20:e1:44:d5:06:da:9e:64:33:
84:5d:6f:1f:84:a6:cf:4f:a4:00:0e:27:f6:d5:be:9f:86:f2:
e6:59:4f:05:a3:c6:19:71:d0:6e:7f:b8:e2:c9:87:12:64:b4:
06:bc:9a:39:26:32:38:00:ea:d3:c3:72:dd:db:0f:c5:60:2b:
bd:1e:16:c8:a0:79:56:fb:66:b1:21:30:c5:08:51:f7:f0:6e:
26:d9:29:0f
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUeIt3HO27wC6zrAauLuTGFnMC8w8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDEwMjcyMDAwMjBaFw0yNTEwMjYyMDA1MjBaMDMxMTAvBgNV
BAMTKEE1RjU1M0VBNUMxRUM4Q0Q5QTY0QzdGNkE1RkYyNkJFNTkzNjg0MjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdKzWP1vjtIzyGEABihghadXRL
K7fIdPA9Z4c7q3IkTEeWHatmQpff8zPWl+y4CL+V7eGSsQC/4ND/dfEOEaqXd4uz
N3vxv0rDajckUcBhz3MGIestGTrFVDT7FUp/o0nxrO1wQXcCA49a4zzuXnaxsrkb
8KDHEzcqtMUGwp7ZL/gsRcMlsWdhc/0xEm1ldG1znLD5zTwakazJ1bQae0R7+H/B
Wfqtx2bU6F4jigxr804u6hKLyNEFQlTgzr9FVH7unviqPV4Lx0VJ274SPkPjxPeE
J+p7oWAfEqF5kGDTUk2G+FrndUdg9Q05o43/sBctN7b2kV6AaYYh80HKEnKLAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUpfVT6lweyM2aZMf2pf8mvlk2hCQwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTM3
MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACbhUowDQYJKoZIhvcNAQELBQADggEBAAGvJDg3xi2GCordMEJc82/KHVDyqR7f
BYHlvEY7HD0DCjuRjqaz3RhiEK1tp5NgpwOLBc9AtOvOKeGw2pipShvVaIcFkClJ
GYGR8yBTM/FkC0XRlsSQ2I01TLTrxi7x1jn9VbY05a+4FBvn5UkNqyc/WklXA39R
TOrsPnV3L4LlMHF37bimyAVa8swjp5ILKwfgDagIU7LrE1g3WvffXW5waB3I5Yv+
lBUX1CDhRNUG2p5kM4Rdbx+Eps9PpAAOJ/bVvp+G8uZZTwWjxhlx0G5/uOLJhxJk
tAa8mjkmMjgA6tPDct3bD8VgK70eFsigeVb7ZrEhMMUIUffwbibZKQ8=
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:02 2024 by rpki-client on console-fra.rpki-client.org