Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32342d3234203d3e20313336303131.roa
File: 39332e39352e3131322e302f32342d3234203d3e20313336303131.roa (raw, json)
Hash identifier: uoAP2MPsw6BFBAfJPf5eeovVwAKmeWFYw7/1r1K1k14=
Subject key identifier: 98:AD:A1:9C:49:B5:D2:CE:CA:45:25:43:40:E6:40:54:82:56:F9:BC
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 2F7AAB8181B2C3B4C0B5831D261B98630208153C
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32342d3234203d3e20313336303131.roa
Signing time: Sun 19 Nov 2023 06:17:32 +0000
ROA not before: Sun 19 Nov 2023 06:12:32 +0000
ROA not after: Sun 17 Nov 2024 06:17:32 +0000
asID: 136011
IP address blocks: 93.95.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:7a:ab:81:81:b2:c3:b4:c0:b5:83:1d:26:1b:98:63:02:08:15:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Nov 19 06:12:32 2023 GMT
Not After : Nov 17 06:17:32 2024 GMT
Subject: CN=98ADA19C49B5D2CECA45254340E640548256F9BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b1:08:e3:02:03:e5:3e:eb:a3:42:c7:0b:dc:
98:a4:0e:d7:e1:41:cd:e6:4f:12:22:d1:cb:34:6c:
49:be:e3:52:88:c0:3d:c9:41:99:2d:9b:e0:b0:08:
3e:58:8b:e7:b1:9f:bf:10:f2:25:3f:01:13:39:2f:
6a:b7:11:ff:3a:43:51:12:68:48:bf:2e:1c:73:59:
48:84:8a:4b:2d:b4:69:36:44:51:56:dc:77:ad:6e:
1b:ce:65:db:6e:64:1b:b5:f3:f8:2c:57:66:56:50:
f5:90:ea:c2:e6:c0:13:c5:c6:49:6e:ff:99:2f:a2:
5b:15:f7:67:2a:33:33:b2:b5:9f:d0:9d:1d:a1:80:
d4:42:0f:92:21:a7:aa:a7:7b:82:f1:e6:ae:d8:6e:
82:2e:af:7e:ad:c8:02:c8:73:c0:39:74:82:31:e3:
dd:6c:ed:6f:a3:46:72:3d:c6:a4:bc:7a:41:ef:46:
7d:ff:bb:82:56:8d:e9:52:d9:25:d4:20:ed:58:01:
41:c1:f9:3c:49:a1:ec:27:11:f3:21:41:68:d8:ab:
cc:d6:2c:7a:59:8f:c1:67:b1:ae:12:ba:9f:ae:f8:
5c:da:d7:55:4f:5c:6f:f1:dc:6d:2f:d6:3a:1c:02:
e6:24:42:21:d9:6d:67:f3:19:e6:f1:4e:0d:88:99:
0d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:AD:A1:9C:49:B5:D2:CE:CA:45:25:43:40:E6:40:54:82:56:F9:BC
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32342d3234203d3e20313336303131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.112.0/24
Signature Algorithm: sha256WithRSAEncryption
51:f5:a4:cc:a1:ab:ce:8c:62:57:29:ee:f3:54:3e:0a:3c:5b:
3a:49:54:eb:3b:0a:fc:fe:17:1c:f0:16:f4:93:d0:79:e5:09:
b9:4c:51:4b:9f:31:09:88:26:d7:31:f6:6d:ae:1b:fc:f5:13:
b4:7e:b4:03:b7:c3:82:a8:5b:08:5a:ec:62:d4:88:28:97:ce:
32:eb:b1:a3:92:96:d9:0e:53:bf:1e:32:b0:33:36:78:59:4a:
4f:e7:3d:12:4a:50:48:72:ae:55:09:a9:b5:21:7c:e2:c3:6a:
9b:64:81:f4:76:82:6d:13:18:12:5f:ee:c3:9f:54:50:e2:7e:
1b:ee:6d:cb:fb:48:df:7e:6d:61:93:a8:9f:c8:ea:a9:c6:05:
90:29:71:4e:bf:7e:da:78:6b:2d:8f:5a:5c:04:5d:61:64:87:
f4:a5:d5:9e:34:76:f5:c9:f5:a2:28:8d:b1:a0:9e:56:cf:3d:
a4:49:43:38:fe:3a:8d:fd:45:87:f0:e6:ac:e2:9f:08:0a:f8:
cd:42:8c:09:7d:f5:22:97:66:68:b5:a4:ca:68:0c:db:05:1d:
5a:aa:0b:d3:da:b1:58:06:fd:2f:e4:86:9f:be:8c:9c:0e:8d:
e2:f5:37:9a:b4:e8:0d:44:b5:16:c5:76:da:60:50:c6:c2:83:
ec:4b:e5:0e
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUL3qrgYGyw7TAtYMdJhuYYwIIFTwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjE3MjU0OGZhM2M0NjBlMjZjYjUxOWVlNTI0MzYxYmNh
NmM3MTMyZTAeFw0yMzExMTkwNjEyMzJaFw0yNDExMTcwNjE3MzJaMDMxMTAvBgNV
BAMTKDk4QURBMTlDNDlCNUQyQ0VDQTQ1MjU0MzQwRTY0MDU0ODI1NkY5QkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdsQjjAgPlPuujQscL3JikDtfh
Qc3mTxIi0cs0bEm+41KIwD3JQZktm+CwCD5Yi+exn78Q8iU/ARM5L2q3Ef86Q1ES
aEi/LhxzWUiEiksttGk2RFFW3HetbhvOZdtuZBu18/gsV2ZWUPWQ6sLmwBPFxklu
/5kvolsV92cqMzOytZ/QnR2hgNRCD5Ihp6qne4Lx5q7YboIur36tyALIc8A5dIIx
491s7W+jRnI9xqS8ekHvRn3/u4JWjelS2SXUIO1YAUHB+TxJoewnEfMhQWjYq8zW
LHpZj8Fnsa4Sup+u+Fza11VPXG/x3G0v1jocAuYkQiHZbWfzGebxTg2ImQ2FAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUmK2hnEm10s7KRSVDQOZAVIJW+bwwHwYDVR0j
BBgwFoAUsXJUj6PEYOJstRnuUkNhvKbHEy4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOTY1NzNlODgtZGFiYS00YWM3LWEyZWQtMzIxYzgyNzdk
MjVlLzAvQjE3MjU0OEZBM0M0NjBFMjZDQjUxOUVFNTI0MzYxQkNBNkM3MTMyRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3NYSlVqNlBFWU9Kc3RSbnVVa05odkti
SEV5NC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOTY1NzNlODgt
ZGFiYS00YWM3LWEyZWQtMzIxYzgyNzdkMjVlLzAvMzkzMzJlMzkzNTJlMzEzMTMy
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzMTMxLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
XV9wMA0GCSqGSIb3DQEBCwUAA4IBAQBR9aTMoavOjGJXKe7zVD4KPFs6SVTrOwr8
/hcc8Bb0k9B55Qm5TFFLnzEJiCbXMfZtrhv89RO0frQDt8OCqFsIWuxi1Igol84y
67GjkpbZDlO/HjKwMzZ4WUpP5z0SSlBIcq5VCam1IXziw2qbZIH0doJtExgSX+7D
n1RQ4n4b7m3L+0jffm1hk6ifyOqpxgWQKXFOv37aeGstj1pcBF1hZIf0pdWeNHb1
yfWiKI2xoJ5Wzz2kSUM4/jqN/UWH8Oas4p8ICvjNQowJffUil2ZotaTKaAzbBR1a
qgvT2rFYBv0v5IafvoycDo3i9TeatOgNRLUWxXbaYFDGwoPsS+UO
-----END CERTIFICATE-----
Generated at Sun Jun 23 04:48:15 2024 by rpki-client on console-ams.rpki-client.org