Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3130382e302f32342d3234203d3e20313336373837.roa
File: 3135362e36372e3130382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 7Gut5tN7sTXRzO6m/yQTMpnJHm8nkbhLgDQM+1vk7jY=
Subject key identifier: 93:E9:E3:BA:98:E9:F6:89:D1:F6:FE:76:81:16:1C:9D:30:56:46:C9
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5640D64AB9FCD1FB3E7D7F8229FB5F324E77BAE7
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3130382e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 27 Oct 2024 20:05:16 +0000
ROA not before: Sun 27 Oct 2024 20:00:16 +0000
ROA not after: Sun 26 Oct 2025 20:05:16 +0000
asID: 136787
IP address blocks: 156.67.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 13:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:40:d6:4a:b9:fc:d1:fb:3e:7d:7f:82:29:fb:5f:32:4e:77:ba:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 27 20:00:16 2024 GMT
Not After : Oct 26 20:05:16 2025 GMT
Subject: CN=93E9E3BA98E9F689D1F6FE7681161C9D305646C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f1:71:e0:37:2f:3a:4c:11:7a:8c:2a:d5:22:
1e:75:51:7b:e9:ce:21:62:75:50:29:df:bf:d3:cf:
e4:f7:9a:4a:87:30:3c:06:c6:8b:51:2b:45:96:45:
83:2d:ac:78:03:17:7d:0a:12:a5:49:60:fb:e1:97:
3c:5d:a2:c7:ec:14:a3:e3:6b:47:63:e2:a3:cc:5c:
17:22:aa:0c:d5:91:ec:8a:5a:97:d9:e1:6f:10:48:
c6:e0:23:ff:4c:a4:d0:de:d4:89:bf:e2:40:8b:2b:
fe:1d:20:59:82:89:45:bc:72:2c:c0:9e:da:cb:02:
41:ff:48:1d:cd:c4:33:a3:4a:8f:75:9d:dc:b1:c5:
41:e1:d8:31:80:b6:52:4b:3e:c8:b1:fa:b9:32:6e:
f9:c5:e2:7b:b3:42:c2:11:25:f6:82:5f:46:26:49:
eb:67:2b:1b:06:17:80:0a:6e:36:41:23:e8:28:0d:
20:5b:ef:0e:15:3b:32:8a:42:97:36:72:2e:a6:72:
d5:1e:2a:96:48:e4:85:98:df:e4:0a:7c:72:32:96:
42:1d:58:21:88:22:c0:12:02:51:fb:46:d0:60:6e:
b6:a7:d7:c7:d5:fc:59:46:19:f1:e4:bc:5b:a7:1a:
27:45:62:6e:7e:52:41:4c:13:02:46:01:81:69:d3:
3a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E9:E3:BA:98:E9:F6:89:D1:F6:FE:76:81:16:1C:9D:30:56:46:C9
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3130382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.108.0/24
Signature Algorithm: sha256WithRSAEncryption
30:1f:9d:8c:52:d7:55:3c:f2:49:a1:04:61:8e:5a:64:9a:8a:
dd:6e:fa:be:26:50:a9:fb:69:73:a3:06:64:52:02:a7:18:c4:
17:e1:a1:a3:44:06:75:8d:90:5a:19:1b:05:ee:e7:9c:c9:9a:
b4:d5:ee:48:07:ec:fb:06:c6:66:1b:cc:65:9d:af:0a:fd:77:
53:d8:57:fc:4b:d2:e2:9a:45:d2:ba:b3:b3:87:cb:67:a6:d1:
ef:71:6a:b7:da:fc:4a:7a:4c:9c:48:32:bd:ba:1b:b8:26:59:
9b:56:b5:cf:1d:13:02:ad:66:40:95:0d:3a:7b:01:84:d5:0a:
81:b2:bd:1f:cb:85:27:9e:6c:74:9f:aa:4d:5c:5b:c2:c4:52:
5b:6d:34:fa:3c:cc:84:31:75:0a:37:b0:10:e4:fb:64:c7:6a:
9b:e6:14:b8:a7:2d:14:c2:18:2e:1f:4f:bf:2f:f5:f2:97:50:
32:4f:e8:b0:cb:63:c8:ab:f6:b2:46:fe:af:1e:8a:c3:86:20:
bc:bf:82:ce:26:dc:5f:76:89:00:1d:01:f7:89:3c:e6:d7:a2:
65:f1:17:a7:ff:5f:e7:8c:75:cb:da:2b:6e:f1:5b:dd:49:52:
95:3e:ee:5a:85:8c:52:1a:e1:a4:bd:9d:9a:ab:b0:b2:63:16:
d7:82:de:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:53 2025 by rpki-client