Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131352e302f32342d3234203d3e20313335333932.roa
File: 39332e39352e3131352e302f32342d3234203d3e20313335333932.roa (raw, json)
Hash identifier: dZz+Pu0AfYMa3fgfd+XvJQ7wuBgLY4+kFJeH5ywENAw=
Subject key identifier: E1:0C:CB:9D:12:72:A2:6B:47:91:4D:B0:4C:2A:1B:D7:BD:9E:14:01
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 60CE1CFE5C526A02A30A5F93FCA270357FCFC791
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131352e302f32342d3234203d3e20313335333932.roa
Signing time: Fri 01 Dec 2023 11:45:01 +0000
ROA not before: Fri 01 Dec 2023 11:40:01 +0000
ROA not after: Fri 29 Nov 2024 11:45:01 +0000
asID: 135392
IP address blocks: 93.95.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:ce:1c:fe:5c:52:6a:02:a3:0a:5f:93:fc:a2:70:35:7f:cf:c7:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Dec 1 11:40:01 2023 GMT
Not After : Nov 29 11:45:01 2024 GMT
Subject: CN=E10CCB9D1272A26B47914DB04C2A1BD7BD9E1401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:01:14:2f:30:2f:05:e4:b8:03:10:17:5d:3e:
45:0d:b8:ac:85:d8:90:06:a6:17:38:2f:aa:c1:13:
90:b2:61:ad:aa:26:06:5b:cf:73:e3:89:1d:61:24:
91:d5:91:80:69:b6:5e:1d:1a:ac:51:62:9f:2d:f8:
b5:0b:04:ae:a5:c8:e2:e3:9a:e6:0a:b1:39:03:1a:
79:e2:ce:8e:bc:24:7c:30:b6:48:ca:71:49:b1:1b:
b5:ec:76:74:00:01:91:a4:7c:42:07:e2:22:8b:1b:
79:33:f0:cc:ed:8a:52:33:16:b0:64:0d:d3:b3:12:
65:84:1a:ec:14:a8:b8:04:e8:3c:7a:8a:0b:c5:32:
aa:f0:20:df:e0:be:26:7d:21:57:de:b5:13:8c:dd:
ff:46:83:aa:71:27:43:75:dd:59:ee:34:09:9a:2c:
2d:61:1e:75:55:de:ed:2a:9b:38:72:f1:4d:1a:b7:
48:3e:c0:88:66:8d:b6:be:39:5f:a8:a7:48:23:c7:
99:bd:a2:a7:ea:54:a5:b1:4b:37:e6:bc:da:d5:52:
e0:96:9a:f8:1a:a4:8c:64:31:71:65:a6:77:54:33:
60:42:ad:e2:3a:06:84:b3:07:e1:45:ee:53:6a:f8:
9f:8b:f5:1d:a3:40:0f:68:ed:17:5e:c3:3d:90:51:
fc:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0C:CB:9D:12:72:A2:6B:47:91:4D:B0:4C:2A:1B:D7:BD:9E:14:01
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131352e302f32342d3234203d3e20313335333932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.115.0/24
Signature Algorithm: sha256WithRSAEncryption
28:83:e9:dc:45:06:a8:b9:72:88:3b:fb:d8:02:7f:6d:d0:89:
63:6c:eb:7d:62:7c:44:84:5c:da:22:d2:ee:5a:27:72:a0:bd:
3b:d5:2c:2d:85:ca:64:2b:68:d9:38:aa:59:8a:5d:0c:b3:e3:
81:f0:02:a0:6a:3f:ee:c9:41:40:fa:ba:70:94:a4:f9:f1:c0:
0b:b5:b3:94:3a:31:79:fd:52:bb:9b:7f:00:25:07:d7:dc:0d:
ac:ce:39:f1:d4:04:8f:cc:c4:98:f8:cf:b5:86:59:50:06:64:
3a:a9:1a:39:91:10:0a:57:56:e7:ba:39:83:fe:2d:fe:20:fc:
7c:b2:38:8e:a7:2e:96:90:47:af:87:22:8b:37:db:6e:a3:66:
7a:37:ae:f6:64:e2:1f:c3:3b:40:8e:87:a1:7a:75:17:31:54:
01:65:79:fa:83:03:4e:f6:c3:61:f4:4a:62:04:41:63:f6:bc:
00:a8:7d:50:76:de:53:28:ab:35:40:8f:c3:69:88:4f:91:a6:
5f:ba:94:b9:d9:da:0e:71:b4:12:1c:63:c5:63:6d:dd:1f:0d:
e0:75:3a:e6:18:14:01:d8:aa:43:06:38:75:eb:2c:d5:db:9d:
c4:58:c1:b0:46:9f:43:77:b3:09:d3:f4:53:db:bc:a2:87:b3:
21:fe:75:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 03:24:19 2024 by rpki-client on console-fra.rpki-client.org