Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e39312e302f32342d3234203d3e20313336373837.roa
File: 3135352e3133332e39312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: pL5Jr8YIUUyPNooJSTh9vB4mMZCMOuStHjOnMsmwxrw=
Subject key identifier: 32:40:4F:3D:25:A2:21:AC:2E:DC:A0:3E:79:23:A1:B5:27:75:60:7B
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 79BF3241B58199F2D0CEAEEDB7EEA992CF5F5C14
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e39312e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 27 Oct 2024 20:05:19 +0000
ROA not before: Sun 27 Oct 2024 20:00:19 +0000
ROA not after: Sun 26 Oct 2025 20:05:19 +0000
asID: 136787
IP address blocks: 155.133.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:bf:32:41:b5:81:99:f2:d0:ce:ae:ed:b7:ee:a9:92:cf:5f:5c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 27 20:00:19 2024 GMT
Not After : Oct 26 20:05:19 2025 GMT
Subject: CN=32404F3D25A221AC2EDCA03E7923A1B52775607B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d7:91:29:54:a1:26:ef:4a:73:b8:03:86:66:
6d:8a:fa:e9:c3:81:6a:85:a7:ac:08:04:b6:c0:7b:
5d:38:2e:b9:38:38:4f:85:4f:6d:df:ab:d7:06:f9:
83:a3:fc:d4:22:95:14:8c:8c:36:fe:af:3f:af:dd:
30:c9:30:be:a7:49:e0:42:04:e5:ca:0c:02:98:fb:
47:04:52:93:16:44:80:1c:83:62:22:a8:6a:b2:11:
51:bc:58:59:4d:5d:1f:ae:5f:3f:51:56:fb:8b:69:
eb:4a:ff:c7:31:d3:69:5b:78:6f:81:45:61:af:a6:
20:62:2a:22:b7:3b:f1:94:41:35:c0:3e:e0:21:e7:
a8:2c:cf:ad:b8:34:91:3d:d1:9f:d0:26:5e:61:86:
dd:c8:88:41:e8:09:8f:ef:af:6c:30:72:f2:2a:a0:
e3:30:0e:d9:22:58:05:d0:db:29:6e:a4:48:cf:88:
04:b4:e4:dc:b3:d5:0b:57:04:7a:b3:78:39:5c:8b:
59:a7:dc:b0:e7:7b:b0:02:b1:2d:f1:0a:98:55:54:
e2:a9:93:c4:f7:44:3d:39:1b:8c:33:1f:e5:93:b5:
cc:bd:47:dd:74:cf:39:99:47:f9:9d:20:76:10:59:
e2:6b:54:f3:0d:24:16:ff:20:43:b8:f1:80:5f:24:
c2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:40:4F:3D:25:A2:21:AC:2E:DC:A0:3E:79:23:A1:B5:27:75:60:7B
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e39312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.91.0/24
Signature Algorithm: sha256WithRSAEncryption
26:ff:80:92:84:7a:79:bf:34:55:50:d7:3a:f2:cb:76:03:f9:
7f:e1:be:8a:3c:99:dd:55:b8:7f:e2:b4:7f:9c:f9:d0:9a:56:
cd:b4:e6:23:a5:1e:85:cc:0d:31:51:de:9c:cc:ae:04:6f:8a:
e9:f3:21:c8:eb:22:96:ab:0b:3f:3b:8d:64:a7:34:90:34:0e:
66:5f:2e:93:67:a8:9b:a6:f8:51:1d:f9:1f:e7:44:1a:88:5d:
b9:e9:95:1e:da:22:9d:55:4a:91:52:77:52:34:14:fe:15:f2:
cf:01:0b:7d:2a:d0:2c:ee:1d:1e:d3:a4:68:15:64:f4:2a:b1:
c1:5a:6d:a0:11:3c:18:32:fb:44:c1:9f:1f:3a:0f:38:45:0c:
fc:91:3e:df:5f:28:14:d5:9b:97:05:4e:c1:78:43:7c:93:44:
b9:8f:2a:40:63:a7:84:20:27:a7:1d:4c:31:63:ff:93:5c:32:
19:31:0e:09:02:a4:28:88:f3:6b:82:6a:79:cc:38:9c:31:f8:
fd:30:91:7f:3d:27:97:9d:51:25:f1:29:95:94:8a:b1:8d:55:
d9:4d:96:c7:f2:54:4b:58:97:43:dc:75:80:df:20:53:4a:0f:
2b:30:bc:64:97:25:33:10:14:fe:8b:f2:9e:ea:92:c8:f7:04:
84:b2:fb:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:29:12 2024 by rpki-client on console-ams.rpki-client.org