Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3130322e302f32342d3234203d3e20313336373837.roa
File: 3135362e36372e3130322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: ujjLqkrdwFctUaOUfsaxdccVGnOwW71rhE3OPpj/vuo=
Subject key identifier: E6:2A:E4:6E:0E:E2:60:A0:9C:32:EB:E3:33:2F:27:E9:08:AD:44:78
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2080F559118269384648B810EE77DE192375205B
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3130322e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 26 Nov 2023 19:49:15 +0000
ROA not before: Sun 26 Nov 2023 19:44:15 +0000
ROA not after: Sun 24 Nov 2024 19:49:15 +0000
asID: 136787
IP address blocks: 156.67.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:80:f5:59:11:82:69:38:46:48:b8:10:ee:77:de:19:23:75:20:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Nov 26 19:44:15 2023 GMT
Not After : Nov 24 19:49:15 2024 GMT
Subject: CN=E62AE46E0EE260A09C32EBE3332F27E908AD4478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:56:34:9c:69:89:95:d9:8e:1d:fb:e6:18:18:
f2:56:11:e0:ab:72:8f:4b:61:9f:a1:da:77:4e:c5:
58:08:35:85:40:98:7f:b5:dd:7d:af:a2:a7:62:41:
99:5e:14:21:60:71:10:80:2e:fe:81:3c:8c:3d:c2:
1c:f7:34:5e:4f:9d:f8:f0:65:5b:d6:a5:6e:98:d6:
b1:7e:de:d7:b7:5c:4c:62:73:71:a2:dd:72:89:96:
c5:32:64:47:b6:38:eb:23:ef:72:b4:90:c9:32:02:
b8:fc:b9:ea:7e:1a:19:0e:59:89:45:6d:a3:87:a5:
27:b5:1f:e7:86:ab:e2:d9:b1:26:cf:a8:86:41:ef:
6d:b9:74:af:08:bc:7e:ae:7d:07:f0:63:e7:d9:3a:
3a:a0:8f:70:5b:2d:14:52:53:f6:cf:34:fb:77:59:
aa:ec:82:1c:35:04:91:a8:e0:45:d8:5e:77:2c:9c:
8d:14:91:a3:38:95:df:51:5a:14:5d:e1:ad:62:4c:
44:90:90:14:b0:ab:03:3f:0c:ce:c1:0d:73:c8:67:
86:6f:3d:b5:a1:39:b1:c7:c7:08:2d:41:e5:3b:47:
ee:e2:05:22:47:01:d7:36:a1:07:b9:fc:8f:31:ab:
dd:d6:96:07:fe:f6:6d:d8:1c:dd:09:48:b1:f2:3e:
7b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:2A:E4:6E:0E:E2:60:A0:9C:32:EB:E3:33:2F:27:E9:08:AD:44:78
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3130322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.102.0/24
Signature Algorithm: sha256WithRSAEncryption
26:1a:66:6e:7b:da:68:32:e4:90:66:74:b0:f3:62:5e:ca:59:
b2:4f:3b:82:6f:54:a9:61:37:6c:eb:04:60:a6:fa:dd:31:d6:
09:a8:61:26:f2:ef:db:42:dd:3c:ce:8f:90:9a:6c:2b:13:8e:
b3:cd:a1:22:82:1a:55:70:b2:0e:21:1a:d2:36:73:52:9b:fa:
6f:6d:2a:74:95:05:30:fa:bd:c0:b3:7c:fa:9d:82:7d:67:9e:
0f:b8:37:7c:27:ca:df:4b:2d:ee:9e:24:e1:d9:ea:96:fa:d7:
f8:c2:74:9a:ea:0d:b0:82:fe:35:73:9f:d4:9c:b9:61:c0:e3:
62:02:56:80:df:93:33:53:50:e4:b0:da:99:08:5f:07:4a:f8:
73:1b:c5:e4:5b:be:b8:f2:ce:23:ec:22:31:c5:56:38:60:33:
5e:0b:9b:b5:a1:03:a3:f7:07:88:3e:0c:0e:e7:e5:ac:40:40:
4e:b1:e9:d1:0d:ec:60:d4:e0:03:b2:fb:be:32:7b:5b:23:8f:
57:5e:4e:aa:c0:be:b7:ef:cf:08:73:22:e0:83:ba:69:ae:b1:
05:f5:0b:db:89:36:ea:bf:98:9e:5b:c4:cd:ca:4b:b6:ae:6b:
be:4d:fb:34:56:6f:61:5e:9e:2f:a5:26:dc:fa:f9:53:16:cd:
54:b5:56:a6
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUIID1WRGCaThGSLgQ7nfeGSN1IFswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yMzExMjYxOTQ0MTVaFw0yNDExMjQxOTQ5MTVaMDMxMTAvBgNV
BAMTKEU2MkFFNDZFMEVFMjYwQTA5QzMyRUJFMzMzMkYyN0U5MDhBRDQ0NzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkVjScaYmV2Y4d++YYGPJWEeCr
co9LYZ+h2ndOxVgINYVAmH+13X2voqdiQZleFCFgcRCALv6BPIw9whz3NF5Pnfjw
ZVvWpW6Y1rF+3te3XExic3Gi3XKJlsUyZEe2OOsj73K0kMkyArj8uep+GhkOWYlF
baOHpSe1H+eGq+LZsSbPqIZB7225dK8IvH6ufQfwY+fZOjqgj3BbLRRSU/bPNPt3
Warsghw1BJGo4EXYXncsnI0UkaM4ld9RWhRd4a1iTESQkBSwqwM/DM7BDXPIZ4Zv
PbWhObHHxwgtQeU7R+7iBSJHAdc2oQe5/I8xq93Wlgf+9m3YHN0JSLHyPntRAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU5irkbg7iYKCcMuvjMy8n6QitRHgwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM2MmUzNjM3MmUzMTMw
MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACcQ2YwDQYJKoZIhvcNAQELBQADggEBACYaZm572mgy5JBmdLDzYl7KWbJPO4Jv
VKlhN2zrBGCm+t0x1gmoYSby79tC3TzOj5CabCsTjrPNoSKCGlVwsg4hGtI2c1Kb
+m9tKnSVBTD6vcCzfPqdgn1nng+4N3wnyt9LLe6eJOHZ6pb61/jCdJrqDbCC/jVz
n9ScuWHA42ICVoDfkzNTUOSw2pkIXwdK+HMbxeRbvrjyziPsIjHFVjhgM14Lm7Wh
A6P3B4g+DA7n5axAQE6x6dEN7GDU4AOy+74ye1sjj1deTqrAvrfvzwhzIuCDummu
sQX1C9uJNuq/mJ5bxM3KS7aua75N+zRWb2Feni+lJtz6+VMWzVS1VqY=
-----END CERTIFICATE-----
Generated at Tue May 7 21:04:27 2024 by rpki-client on console-fra.rpki-client.org