Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e39342e302f32342d3234203d3e20313336373837.roa
File: 3135362e36372e39342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Rydr2hizUudTG34DVpXKZXTY5bpMS3FYn9RK4S/mDAg=
Subject key identifier: 66:8F:03:27:32:67:4E:FF:3C:FA:E5:A5:4E:9B:5D:8A:E7:4D:97:8B
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4811434A382A89E8DA56C1DAEB2406F24C0CD7E1
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e39342e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 19 Jun 2023 16:33:32 +0000
ROA not before: Mon 19 Jun 2023 16:28:32 +0000
ROA not after: Mon 17 Jun 2024 16:33:32 +0000
asID: 136787
IP address blocks: 156.67.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:11:43:4a:38:2a:89:e8:da:56:c1:da:eb:24:06:f2:4c:0c:d7:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 19 16:28:32 2023 GMT
Not After : Jun 17 16:33:32 2024 GMT
Subject: CN=668F032732674EFF3CFAE5A54E9B5D8AE74D978B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a3:19:53:2f:fc:99:a6:b2:c1:b3:e7:58:00:
bf:f9:9a:fe:51:fc:77:2b:bf:a3:ca:f2:9f:49:02:
83:4e:6c:49:4c:02:3c:23:fc:b1:5d:1e:89:b7:22:
4e:58:88:1c:ae:0b:5a:67:ea:71:aa:e6:19:36:fa:
79:a7:83:4a:2a:26:e8:40:76:e2:88:d0:88:7e:1b:
bc:8b:ba:d4:be:46:48:16:2f:b1:06:b1:07:2c:57:
6e:84:99:1e:5b:d0:47:47:b9:b4:20:a4:4e:33:31:
35:de:f4:65:0d:ab:e0:26:af:36:ea:3a:f7:cb:c5:
77:72:31:85:f3:d8:24:12:51:83:50:7f:62:b9:bd:
e6:44:ad:15:f9:8d:83:e3:6f:6b:da:09:8b:a5:2f:
cf:f3:c1:29:da:c7:4a:f0:98:d5:81:26:b6:6c:f8:
97:26:f2:d3:7f:cb:42:d4:22:5a:62:ab:d0:1f:81:
0b:c5:6f:e0:56:64:21:41:14:4f:ce:2b:60:d2:b5:
a7:cf:a5:88:28:80:c1:c9:5b:db:bf:00:c3:e3:75:
bf:af:a0:53:16:a8:16:c3:ea:0a:99:89:2c:52:ab:
96:13:c2:94:fa:e4:ab:c3:03:3f:e6:84:8d:f3:74:
50:22:e1:27:30:b0:80:64:66:f6:80:f5:3c:29:8d:
2e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:8F:03:27:32:67:4E:FF:3C:FA:E5:A5:4E:9B:5D:8A:E7:4D:97:8B
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e39342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.94.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:1e:8e:27:e5:f6:2b:31:43:da:5a:2a:00:45:70:f9:26:b1:
98:de:d3:b9:b3:7d:82:79:6a:4c:8a:33:9a:88:9f:3b:c7:db:
e8:2d:8a:0a:0c:ac:22:e8:5e:cb:17:57:de:61:55:ef:2a:6d:
ff:b2:4a:98:f4:1c:23:10:04:e9:50:92:d4:94:1f:d3:d4:09:
b9:79:33:8f:b9:07:d6:e4:a2:5f:e6:f3:aa:bc:7b:6e:5a:97:
52:86:59:25:c8:8e:a0:e6:c4:17:27:e4:d3:f4:36:0d:f2:54:
23:22:5b:5f:ad:7c:cd:e9:ce:f3:2f:d3:61:a7:cb:1f:d1:88:
18:af:bc:e1:69:2f:7f:da:ba:07:1d:28:e9:d7:fe:85:f0:5c:
96:b2:ad:34:69:17:a8:31:87:db:77:2f:02:d3:3c:e0:f2:b5:
c1:98:0f:81:2e:50:81:8d:5e:f9:35:62:77:bb:66:d9:50:99:
96:8f:ea:db:0e:e0:c0:8d:55:7a:d5:50:e3:f4:40:2b:bc:13:
f8:22:e3:26:4d:7b:a7:eb:1e:c8:ca:31:db:a4:fa:ef:eb:27:
83:fd:b8:6e:93:8b:bf:57:48:33:d9:6b:a8:06:1c:7c:45:8f:
8b:63:49:0c:3a:3d:7b:a0:69:47:88:e7:92:15:ac:d3:37:2f:
86:c2:5b:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:21:25 2024 by rpki-client on console-fra.rpki-client.org