Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131382e302f32342d3234203d3e20323131393935.roa
File: 39332e39352e3131382e302f32342d3234203d3e20323131393935.roa (raw, json)
Hash identifier: DfBJXRquRaONfPWvSRI4vqW1BdJI44HPLEZDCQkTI/s=
Subject key identifier: DF:FA:30:B1:66:52:BF:03:35:B8:CC:2F:46:F2:C4:A5:7C:8F:1E:AA
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 3DC6FA20470ACDE4883CF678B2061B55FFB38BD0
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131382e302f32342d3234203d3e20323131393935.roa
Signing time: Wed 29 Nov 2023 14:11:48 +0000
ROA not before: Wed 29 Nov 2023 14:06:48 +0000
ROA not after: Wed 27 Nov 2024 14:11:48 +0000
asID: 211995
IP address blocks: 93.95.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 23:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:c6:fa:20:47:0a:cd:e4:88:3c:f6:78:b2:06:1b:55:ff:b3:8b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Nov 29 14:06:48 2023 GMT
Not After : Nov 27 14:11:48 2024 GMT
Subject: CN=DFFA30B16652BF0335B8CC2F46F2C4A57C8F1EAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:10:48:04:40:15:4c:33:c3:cf:fb:21:2b:6f:
f4:f3:b5:dc:bd:5f:90:cd:69:c1:a5:60:db:6f:ef:
50:6d:24:d9:91:b7:56:b0:8b:58:a3:e6:95:05:e0:
6c:43:ef:9a:3e:a0:fd:08:e4:c5:a0:87:99:cb:18:
76:35:ea:a0:29:8d:c5:ce:0e:3d:66:5f:16:b9:99:
9f:b2:62:6f:3c:7e:c4:f2:5c:3a:a7:f2:63:d6:1b:
52:18:20:09:95:c4:90:9f:4e:cd:04:94:04:3b:dc:
2a:be:f3:c5:aa:65:a9:3d:a5:16:af:9e:d8:d0:cf:
73:15:06:8b:33:b3:da:5c:06:bd:6c:fd:fe:f6:6c:
45:83:cf:6d:e9:11:78:62:27:15:1c:e0:46:e4:65:
00:75:5e:51:dc:81:fe:0a:b5:4c:06:42:2b:bd:fb:
9f:2e:e6:10:b7:fe:c9:87:c8:8d:77:bc:8e:f6:78:
22:f9:c4:d6:06:23:cc:be:40:d6:42:18:9c:c6:72:
89:98:9f:45:da:21:aa:9a:9d:09:22:2b:75:45:bb:
fc:af:74:5e:28:f4:c4:11:cf:11:93:df:78:c5:34:
93:3b:75:1a:e2:22:a8:c9:51:d9:0e:8b:ea:29:58:
53:a4:e7:5c:83:8d:aa:1f:a5:8f:e7:54:17:af:e6:
40:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:FA:30:B1:66:52:BF:03:35:B8:CC:2F:46:F2:C4:A5:7C:8F:1E:AA
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131382e302f32342d3234203d3e20323131393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.118.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:3c:90:59:4d:f8:5d:81:1c:f2:e8:1e:91:84:fd:8e:a8:f3:
20:2d:fb:05:43:00:58:45:19:03:2c:f8:29:6e:c5:8d:3b:f4:
b2:91:d6:ba:af:e0:62:43:ef:8a:50:91:49:fa:b4:46:46:cf:
6d:23:23:da:17:0e:05:d5:8b:76:8b:69:e2:d5:7c:e3:87:a2:
ec:a5:bc:35:52:ca:e4:fd:47:a6:b9:7c:e1:07:43:7b:3c:b2:
c5:ec:6a:f2:cd:c2:bf:69:02:06:da:43:4b:94:e1:a7:f7:ac:
4e:57:c6:a8:b8:03:a4:eb:0c:3f:21:0b:3b:d3:b4:c8:25:53:
c4:3b:48:fa:9c:cc:65:87:ef:4b:bc:4c:2d:35:c9:cb:6f:e7:
c5:6c:4f:b9:99:72:60:18:25:b5:48:3f:29:73:aa:8c:ab:83:
df:1b:f1:67:d4:08:4d:2a:5f:5f:07:c4:49:a4:20:cb:9e:3f:
ce:37:61:c0:1d:96:43:9a:53:3f:a2:d0:d4:43:23:92:6d:85:
a6:11:46:50:58:86:d3:ef:00:0c:44:78:ab:96:37:0e:89:c4:
71:d9:e2:b1:ac:50:a0:55:e4:b4:96:5c:ca:c0:9b:5c:10:7d:
26:85:bc:a0:c6:8b:11:a6:ce:f2:3a:7c:fe:c4:c8:cd:0d:29:
bf:e9:79:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 06:03:47 2024 by rpki-client on console-fra.rpki-client.org