Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131352e302f32342d3234203d3e20313938353834.roa
File: 39332e39352e3131352e302f32342d3234203d3e20313938353834.roa (raw, json)
Hash identifier: y54tpTyh0qp2oCavdaiKGuYHehY4iQ8k8IzXh+B5EXY=
Subject key identifier: 09:26:36:A2:7C:7B:8F:DD:2D:28:A1:4B:D7:C9:FE:35:31:8C:66:F9
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 1A446F4401CED8B7CEBBEDB011822411F84ED51E
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131352e302f32342d3234203d3e20313938353834.roa
Signing time: Fri 01 Dec 2023 14:16:58 +0000
ROA not before: Fri 01 Dec 2023 14:11:58 +0000
ROA not after: Fri 29 Nov 2024 14:16:58 +0000
asID: 198584
IP address blocks: 93.95.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:44:6f:44:01:ce:d8:b7:ce:bb:ed:b0:11:82:24:11:f8:4e:d5:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Dec 1 14:11:58 2023 GMT
Not After : Nov 29 14:16:58 2024 GMT
Subject: CN=092636A27C7B8FDD2D28A14BD7C9FE35318C66F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8c:e5:6a:7b:16:d8:4d:55:d0:15:94:c6:fe:
eb:5d:77:60:73:e1:f1:7b:93:8d:5d:13:e8:81:61:
81:8a:a1:29:0d:54:e1:df:90:a6:25:11:de:9a:8c:
a7:0c:7a:67:af:a5:e4:7e:db:26:50:0c:41:3c:75:
30:ce:06:e1:bc:4d:ab:99:3b:43:c3:51:d7:18:24:
dd:69:d3:25:f7:bb:5e:40:f3:7d:55:da:a0:cb:63:
10:21:2f:2e:51:ce:09:f4:94:de:fc:df:b1:26:a0:
79:22:7e:d0:63:76:88:17:22:97:65:f3:42:fb:80:
94:13:20:5d:f7:05:4c:97:d6:a2:a5:3a:e6:c2:67:
84:4c:0e:3c:5a:88:0a:a7:54:58:75:f0:3b:89:a7:
b8:ee:b0:80:fa:5f:0a:1a:43:23:96:ce:2d:c0:69:
61:63:4f:03:9f:57:bd:c8:98:39:4c:b7:e7:02:da:
ae:ef:c2:86:74:ae:8a:34:47:e5:1d:75:72:11:d1:
1b:30:82:21:48:7c:d5:f9:10:18:0f:26:02:a3:6a:
c8:94:c6:dd:40:a8:60:ce:8e:07:b9:84:b7:28:e7:
27:71:83:09:f2:69:78:64:e6:60:db:16:5c:ff:d8:
13:f5:36:a5:a6:1e:74:af:14:79:b4:cd:0a:0b:a5:
31:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:26:36:A2:7C:7B:8F:DD:2D:28:A1:4B:D7:C9:FE:35:31:8C:66:F9
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131352e302f32342d3234203d3e20313938353834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.115.0/24
Signature Algorithm: sha256WithRSAEncryption
f8:d3:73:b3:3c:23:5b:51:fd:30:6f:bc:3c:a2:0a:f1:f4:52:
79:99:ed:fb:f2:c8:62:09:ae:c3:de:db:6c:cd:d6:2f:0a:fe:
96:df:82:76:8c:7a:fb:b4:9f:3e:1b:0b:38:0f:11:e1:06:a8:
35:48:9c:1c:91:f6:96:2d:b0:ca:3d:d5:26:91:b3:de:59:7f:
b3:22:92:95:30:c7:5e:fa:a5:bc:ed:45:02:25:28:85:b5:fc:
29:b2:85:3d:c1:a7:5e:92:30:81:83:13:47:47:68:cb:30:2a:
a2:3a:6b:67:60:76:57:cd:92:bf:85:ec:5f:7d:f3:af:ad:d0:
c2:88:ce:28:98:f0:21:47:f5:47:f6:f1:8a:63:cd:86:68:fb:
db:e0:5f:9c:d4:8c:1a:ed:1e:32:fd:32:64:97:3b:d1:86:ca:
45:23:f8:17:2d:53:85:56:80:d9:23:33:dd:84:31:05:d0:1e:
48:62:ac:22:01:33:0e:01:9a:22:64:62:67:f0:1e:42:07:b8:
7d:28:41:38:64:b1:30:53:00:98:8b:62:9a:5a:ff:8f:cd:b2:
e0:30:6b:36:1c:cc:5d:87:a8:f6:27:5a:b0:ae:25:14:51:45:
30:50:2c:ca:3b:5d:4b:fb:c0:c7:77:3d:df:37:d6:f3:05:f0:
f9:a2:98:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 03:24:19 2024 by rpki-client on console-fra.rpki-client.org