Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e38332e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e38332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: A43jX26plYkxS2blO+8CfhxsR/unEfKg70rLd5ufVC0=
Subject key identifier: E2:B3:6E:07:18:1F:4C:EB:76:BE:45:4C:50:D7:70:80:56:1D:5C:CE
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1958F414D24E8CC25D445F9F32344D77CDAAF1D3
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e38332e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 27 Oct 2024 20:05:16 +0000
ROA not before: Sun 27 Oct 2024 20:00:16 +0000
ROA not after: Sun 26 Oct 2025 20:05:16 +0000
asID: 136787
IP address blocks: 155.133.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:58:f4:14:d2:4e:8c:c2:5d:44:5f:9f:32:34:4d:77:cd:aa:f1:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 27 20:00:16 2024 GMT
Not After : Oct 26 20:05:16 2025 GMT
Subject: CN=E2B36E07181F4CEB76BE454C50D77080561D5CCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:22:3d:74:c3:96:53:dd:34:3a:54:21:91:2a:
56:9d:55:2a:0c:df:de:dc:20:1c:73:bd:6c:25:b6:
aa:c1:e8:79:43:c2:8f:84:f9:83:9e:00:6a:d4:3f:
78:48:c9:a7:09:99:a5:cc:86:84:1e:d7:22:11:4e:
0e:33:9b:88:d2:7f:e4:02:ab:c2:de:4c:86:e5:91:
bb:bb:24:88:a0:75:d0:a8:cd:9d:0b:f4:ab:dd:af:
01:63:88:c5:a7:9a:22:8f:ce:5e:20:b2:36:b1:d1:
8a:91:d0:4f:cf:6d:f7:25:07:64:df:12:1a:84:76:
7e:dc:02:2c:76:e2:41:63:78:51:4d:9a:89:7d:7c:
7c:e1:e2:d7:14:1c:1a:1f:55:b1:7d:4a:0f:13:1d:
fb:fe:3f:ba:a6:94:06:3c:a4:49:39:cb:d8:20:cf:
97:1b:26:b7:40:77:b6:1e:99:19:21:f9:8a:ae:6f:
0a:bb:4e:d4:bd:06:4a:dd:fb:1f:0a:fc:72:38:21:
3c:1c:31:1c:0d:94:bd:23:dd:2f:25:50:ee:bc:dc:
18:f1:3b:9b:8d:c7:9a:c5:8c:97:cd:62:97:34:8c:
e1:46:f5:67:be:c4:fa:15:05:b5:9d:c8:53:9f:5b:
f8:3f:40:fe:2d:5b:65:ae:55:74:52:ee:53:34:68:
1e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:B3:6E:07:18:1F:4C:EB:76:BE:45:4C:50:D7:70:80:56:1D:5C:CE
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e38332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.83.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:2d:93:7e:03:04:54:c9:55:ac:05:fa:ba:ab:55:bb:fd:52:
f6:5a:e6:f7:1b:8c:13:eb:68:c8:36:86:4e:c8:ab:72:87:be:
6c:e0:1c:70:77:68:6a:19:1f:49:f5:3c:05:10:c9:ec:4f:83:
73:82:64:b3:2e:60:8a:7a:0b:33:d7:fe:1f:93:e4:65:d6:bb:
a7:f4:0e:6f:88:42:bc:5b:53:5a:d4:37:0d:c5:f8:d4:ab:cf:
9e:6a:17:6b:da:cb:64:5c:b2:91:b2:9d:11:e5:f2:e6:e0:63:
b8:db:1f:6e:50:d7:62:43:26:24:47:5a:f0:63:92:9e:86:7e:
33:35:ff:c9:e5:a6:50:5e:a7:85:0c:fb:ea:c7:c2:d5:d4:d5:
ac:4b:02:ef:31:55:cb:16:96:30:c6:d1:46:77:ca:03:ed:c6:
ce:ba:96:87:e5:4a:7a:d1:9b:0f:86:d1:46:f9:27:7e:b6:50:
36:05:ab:5a:27:9c:59:7e:8b:03:81:8c:ed:7b:b2:ce:0f:45:
af:45:fc:84:54:8b:f3:31:dc:23:cf:a1:a3:5c:0e:d8:82:cc:
00:4d:b1:7c:49:eb:6a:c1:7c:23:71:9b:48:f4:a6:f8:2e:e2:
62:cc:59:66:6a:23:f0:bf:a9:26:e8:9a:99:35:0d:95:16:94:
19:c4:e3:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:29:12 2024 by rpki-client on console-ams.rpki-client.org