Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e39302e302f32342d3234203d3e20313336373837.roa
File: 3135362e36372e39302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: NfBF0c87RfLSXQqd572lSB+8D10Cy9iBYKOaqKAu8tk=
Subject key identifier: B7:4D:16:35:0D:E3:06:22:53:8F:F0:10:75:F0:ED:D5:18:60:FE:CC
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 634E5701542EE6AD53D26EF80DE1419D77831B7D
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e39302e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 11 Jun 2023 11:01:10 +0000
ROA not before: Sun 11 Jun 2023 10:56:10 +0000
ROA not after: Sun 09 Jun 2024 11:01:10 +0000
asID: 136787
IP address blocks: 156.67.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:4e:57:01:54:2e:e6:ad:53:d2:6e:f8:0d:e1:41:9d:77:83:1b:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 11 10:56:10 2023 GMT
Not After : Jun 9 11:01:10 2024 GMT
Subject: CN=B74D16350DE30622538FF01075F0EDD51860FECC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:56:c2:4a:1e:52:40:d5:77:57:f5:d0:8c:d1:
40:a0:8e:64:5f:2b:07:85:1f:69:03:e9:34:61:d5:
93:82:4b:d9:e2:fa:0a:e7:f8:9d:5d:4b:f7:f3:6e:
c5:9c:22:29:ce:dc:0e:e2:5d:86:e5:49:11:29:81:
a1:f1:b2:db:2b:a1:8d:f5:ba:42:74:20:3c:e9:06:
34:56:f3:35:ee:10:04:d2:8f:44:64:52:1a:95:9d:
18:60:d9:bd:14:09:ca:4e:59:a7:61:e1:76:1a:1c:
74:a4:45:ce:e5:2c:08:89:4e:5e:33:e4:38:02:6b:
d1:c2:fb:b0:49:42:41:4e:6f:44:bd:10:fa:35:2b:
2e:f4:29:c9:34:4c:20:fb:14:24:e7:79:ba:a2:35:
04:33:90:14:c7:b3:8a:cc:60:5c:1d:3b:ba:60:f1:
9a:c3:27:3d:d5:20:0a:de:38:50:c3:95:f8:78:33:
24:bf:7f:df:30:d5:89:06:aa:d4:70:4d:11:e7:97:
e3:44:77:96:87:e9:89:de:54:ca:48:8f:8e:e3:66:
9b:38:05:13:55:2e:18:fa:68:11:23:20:a2:39:c6:
17:42:6c:ea:76:95:22:ea:4f:db:94:5c:dc:3a:df:
7e:8e:65:30:d5:7f:e9:1d:65:77:2f:b8:22:eb:e9:
c6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:4D:16:35:0D:E3:06:22:53:8F:F0:10:75:F0:ED:D5:18:60:FE:CC
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e39302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.90.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:df:41:32:1a:22:01:57:62:7a:29:ca:a2:49:6a:ef:c4:5b:
5f:df:af:5b:e4:3d:36:b2:8f:fa:a2:72:61:3b:61:30:93:61:
c9:29:36:d1:91:1b:c2:e9:cf:aa:b4:6d:01:63:4b:6c:92:b5:
9f:e6:ca:d3:db:49:f2:d9:c0:a1:4c:b7:48:59:80:da:0e:a3:
54:32:55:5c:8b:4d:e1:8b:d3:d7:3e:9c:d1:1d:df:7b:35:4d:
7f:3d:01:52:fd:ea:3c:43:4e:94:9f:1c:69:5d:06:4b:04:b7:
ad:25:fc:76:bf:e1:01:f2:1f:b0:74:93:96:95:e4:4c:2d:30:
dc:c8:a9:6b:45:72:e8:49:26:5d:55:e2:b9:40:7c:10:b3:62:
3c:a1:eb:71:74:8b:1a:24:2d:29:7b:6a:fc:ee:3b:1a:14:8c:
61:e2:5b:6f:c6:8e:13:b0:f2:a7:e1:72:af:ce:67:be:f3:f3:
91:db:0c:90:52:00:a5:7d:53:fb:76:22:cd:53:4f:71:a7:29:
51:d9:c0:92:b8:f1:41:7c:b0:ae:1a:75:f8:d9:8c:04:b8:a4:
ba:64:9b:24:c0:45:db:99:d1:0a:4d:28:d4:a0:85:b6:82:96:
c5:e9:ec:53:94:5c:de:f6:fb:89:61:ad:f0:56:bc:11:1c:a7:
e6:f7:30:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 19:21:53 2024 by rpki-client on console-ams.rpki-client.org