Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e39302e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e39302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: zN63KFO3EScAMzh8w4n+ZetB1sCoQ5BihNDiZRkIRK8=
Subject key identifier: A7:50:87:5B:4B:33:7C:ED:91:9B:72:FF:7D:1F:0E:0C:90:3B:66:F1
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4C454ABBA641FEB29A08FB00FC9BB496A0DF0138
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e39302e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 26 Nov 2023 19:48:30 +0000
ROA not before: Sun 26 Nov 2023 19:43:30 +0000
ROA not after: Sun 24 Nov 2024 19:48:30 +0000
asID: 136787
IP address blocks: 155.133.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:45:4a:bb:a6:41:fe:b2:9a:08:fb:00:fc:9b:b4:96:a0:df:01:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Nov 26 19:43:30 2023 GMT
Not After : Nov 24 19:48:30 2024 GMT
Subject: CN=A750875B4B337CED919B72FF7D1F0E0C903B66F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:80:7a:4b:4c:eb:02:ae:2c:6c:8e:5e:ef:07:
97:5e:ea:bb:73:bb:50:2d:d5:ea:76:50:fb:4e:b5:
ca:ae:49:20:3c:0f:e9:33:49:20:7b:ba:a8:0b:82:
af:df:3d:f1:67:f9:9a:44:45:32:58:c3:56:c8:6c:
79:a6:cc:38:bd:3a:66:e5:97:e3:57:7d:52:1c:53:
4c:d0:b3:d1:9b:8e:ab:e2:84:46:df:a5:84:c7:5e:
96:ba:89:a5:2b:4b:a2:b0:91:c2:9b:60:3d:32:99:
a1:b3:9d:41:04:96:b9:a7:32:f2:b2:12:a9:40:73:
22:d9:36:a8:eb:a7:80:d7:cf:d0:7e:d0:11:6c:39:
a8:61:40:c5:0a:81:81:c6:a8:57:3e:5d:bf:28:ef:
fd:69:e3:96:0f:f3:d5:30:85:ca:a0:2c:bd:43:20:
cf:ea:ea:ff:3a:bd:ea:b6:de:c3:2d:7a:9c:ae:2b:
49:a5:0e:ae:12:82:f1:f8:3b:fc:40:07:05:54:df:
fd:7d:be:27:49:fc:45:c3:9b:aa:00:fb:69:81:05:
63:91:9b:df:82:9c:fe:6e:d4:e0:8a:3f:fc:3d:9a:
f7:d4:83:9d:46:21:33:7b:75:0a:76:1c:1b:4b:51:
95:d2:55:54:b4:2c:09:af:b8:64:88:ed:10:a6:0c:
52:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:50:87:5B:4B:33:7C:ED:91:9B:72:FF:7D:1F:0E:0C:90:3B:66:F1
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e39302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.90.0/24
Signature Algorithm: sha256WithRSAEncryption
89:6b:7a:47:54:c0:3a:bb:39:e5:57:f2:70:cf:2f:12:de:53:
03:64:6e:3d:9d:c9:f5:dd:de:90:c6:f4:22:1a:f3:92:13:0e:
3e:5e:79:71:5c:50:3d:b6:e6:ca:20:52:60:0e:c5:d8:19:91:
8e:9f:2b:9f:8b:de:d3:25:91:55:9e:26:6c:60:a6:45:bc:8d:
7b:fa:f2:27:61:2d:05:fc:fe:50:fa:95:45:11:c0:96:eb:fa:
d4:17:f1:3d:07:ff:82:19:a8:58:d3:41:ef:b4:28:cc:65:43:
d2:e3:e5:ef:02:b3:04:ce:cc:9e:d0:0f:d1:e6:c5:f4:df:5b:
03:b5:51:b0:90:23:80:7b:c1:13:ad:eb:4c:0c:a4:79:fe:e7:
61:39:60:e3:64:01:b6:cd:90:d1:9d:0b:f0:c9:26:32:3a:f9:
b9:c8:c9:bf:57:34:92:8f:7d:53:11:d5:f0:69:69:7c:be:73:
28:2b:af:47:a7:73:8d:f1:b1:2c:f8:38:ce:57:bb:7f:20:1e:
a2:53:a4:bd:40:4b:50:6a:4c:85:f7:e0:5a:e8:d4:d1:ff:54:
c4:59:95:9e:3d:de:1e:21:8c:3d:8a:18:a0:64:9c:5b:c2:fd:
a8:40:40:a6:7e:7a:9c:2f:bd:88:7f:57:d1:7d:ae:40:62:f7:
62:d4:56:94
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUTEVKu6ZB/rKaCPsA/Ju0lqDfATgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yMzExMjYxOTQzMzBaFw0yNDExMjQxOTQ4MzBaMDMxMTAvBgNV
BAMTKEE3NTA4NzVCNEIzMzdDRUQ5MTlCNzJGRjdEMUYwRTBDOTAzQjY2RjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSgHpLTOsCrixsjl7vB5de6rtz
u1At1ep2UPtOtcquSSA8D+kzSSB7uqgLgq/fPfFn+ZpERTJYw1bIbHmmzDi9Ombl
l+NXfVIcU0zQs9GbjqvihEbfpYTHXpa6iaUrS6KwkcKbYD0ymaGznUEElrmnMvKy
EqlAcyLZNqjrp4DXz9B+0BFsOahhQMUKgYHGqFc+Xb8o7/1p45YP89UwhcqgLL1D
IM/q6v86veq23sMtepyuK0mlDq4SgvH4O/xABwVU3/19vidJ/EXDm6oA+2mBBWOR
m9+CnP5u1OCKP/w9mvfUg51GITN7dQp2HBtLUZXSVVS0LAmvuGSI7RCmDFLlAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUp1CHW0szfO2Rm3L/fR8ODJA7ZvEwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM1MmUzMTMzMzMyZTM5
MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACbhVowDQYJKoZIhvcNAQELBQADggEBAIlrekdUwDq7OeVX8nDPLxLeUwNkbj2d
yfXd3pDG9CIa85ITDj5eeXFcUD225sogUmAOxdgZkY6fK5+L3tMlkVWeJmxgpkW8
jXv68idhLQX8/lD6lUURwJbr+tQX8T0H/4IZqFjTQe+0KMxlQ9Lj5e8CswTOzJ7Q
D9HmxfTfWwO1UbCQI4B7wROt60wMpHn+52E5YONkAbbNkNGdC/DJJjI6+bnIyb9X
NJKPfVMR1fBpaXy+cygrr0enc43xsSz4OM5Xu38gHqJTpL1AS1BqTIX34Fro1NH/
VMRZlZ493h4hjD2KGKBknFvC/ahAQKZ+epwvvYh/V9F9rkBi92LUVpQ=
-----END CERTIFICATE-----
Generated at Wed May 8 19:21:53 2024 by rpki-client on console-ams.rpki-client.org