Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e39302e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e39302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: fI0V9q09CByt5jW8FpxfE/bAc3G6bdvUEpi8SuL46lA=
Subject key identifier: 6E:90:AF:8B:0F:61:65:13:AA:A5:77:83:01:EF:56:CB:A3:2A:78:16
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 3871ACD9179D42D595B01FDB58F9D691BC3631C5
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e39302e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 27 Oct 2024 20:05:17 +0000
ROA not before: Sun 27 Oct 2024 20:00:17 +0000
ROA not after: Sun 26 Oct 2025 20:05:17 +0000
asID: 136787
IP address blocks: 155.133.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:71:ac:d9:17:9d:42:d5:95:b0:1f:db:58:f9:d6:91:bc:36:31:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 27 20:00:17 2024 GMT
Not After : Oct 26 20:05:17 2025 GMT
Subject: CN=6E90AF8B0F616513AAA5778301EF56CBA32A7816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b5:1a:b0:7c:73:68:52:db:2a:7f:23:5d:81:
ac:ef:cb:a8:f4:92:94:0e:7a:16:f3:5a:4f:ad:9d:
77:f4:0f:70:06:35:46:66:5b:1a:e0:f2:9c:e4:a1:
66:b6:28:99:e2:d3:0a:91:1e:1e:7a:e2:b0:62:75:
03:08:93:82:0e:e0:12:e2:40:fa:ee:af:21:5b:60:
13:f2:00:2d:55:70:9c:d9:16:2c:8a:ac:96:22:ed:
72:04:03:ff:c6:d0:43:ab:7f:4f:4d:02:ad:7b:b2:
7f:6b:73:a6:f1:b6:99:91:a3:0d:91:9f:fb:7b:92:
23:49:05:36:64:17:ac:1c:cc:ab:2e:dd:5f:11:90:
e8:75:84:49:46:6d:4c:09:96:f2:27:b0:d5:6d:b2:
6d:b5:96:91:2a:7d:2b:5f:f3:05:08:54:f0:f6:65:
e8:a7:51:6c:ce:44:b4:74:1e:e0:c8:e3:ef:2b:6a:
ce:f2:9d:6b:50:56:61:83:8b:0f:43:5e:d9:32:57:
64:77:15:14:d2:46:b3:e4:26:c3:25:b2:72:10:26:
3b:78:66:c4:c5:36:f0:27:79:8d:4e:9f:bc:77:4e:
d9:f5:da:85:c5:84:7c:1d:6c:b7:14:33:3e:d2:fa:
08:e6:0c:3b:08:19:09:5a:53:cd:1f:e1:55:48:de:
5f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:90:AF:8B:0F:61:65:13:AA:A5:77:83:01:EF:56:CB:A3:2A:78:16
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e39302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.90.0/24
Signature Algorithm: sha256WithRSAEncryption
23:83:78:f3:2f:8d:33:78:29:d1:e7:05:ea:a9:0b:56:f9:3e:
4a:8f:8c:76:2f:02:53:da:1e:46:8f:56:19:a8:ca:78:60:e4:
a9:73:91:f0:b0:9e:ed:4d:05:c4:ac:04:2d:06:f4:82:73:fe:
5c:7f:a2:33:26:ec:5d:d7:ae:c2:ef:5a:af:35:0e:20:28:1c:
d1:5e:ab:04:b6:ac:9f:fa:32:d1:d5:cd:fc:1d:ad:84:1f:38:
f3:63:b4:7a:e0:d3:93:05:93:a5:4a:13:db:27:92:bd:52:6a:
42:e1:83:1a:87:d8:bf:7b:17:47:3f:fb:02:62:1c:c2:ec:6e:
9d:6f:99:c3:61:4a:68:a7:51:50:4c:eb:c5:9d:a5:54:f1:6e:
64:71:e3:d5:5c:d0:93:dd:76:36:b2:72:f7:6c:51:b7:b9:96:
fa:a9:3c:75:30:ff:ac:a4:ba:33:72:3f:89:08:54:1b:4c:ab:
f8:62:e6:65:f6:ba:e1:61:8d:93:98:a4:ef:d9:c8:b1:3b:45:
93:6f:c1:6c:95:f0:69:1e:df:98:c3:42:1c:99:05:78:8d:bb:
7c:ae:df:1c:fe:36:a8:17:50:c3:31:0f:43:e5:b7:c1:5b:e7:
07:db:5b:c9:af:09:16:55:ed:7e:60:0d:a1:9b:ea:20:fe:5b:
91:a3:e9:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:42:55 2024 by rpki-client on console-fra.rpki-client.org