Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32342d3234203d3e203531383437.roa
File: 39332e39352e3131322e302f32342d3234203d3e203531383437.roa (raw, json)
Hash identifier: UFvambNtXO6Urpp1/AsAsKt1tqnfELc2YM+OADP3uKM=
Subject key identifier: 37:65:57:EE:D6:08:9E:14:C8:7B:03:22:B7:34:0B:26:96:53:C8:65
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 1CFE6A97BD101A0603ABB6829890921E5D988324
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32342d3234203d3e203531383437.roa
Signing time: Sun 05 May 2024 16:35:56 +0000
ROA not before: Sun 05 May 2024 16:30:56 +0000
ROA not after: Sun 04 May 2025 16:35:56 +0000
asID: 51847
IP address blocks: 93.95.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Jun 2024 20:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:fe:6a:97:bd:10:1a:06:03:ab:b6:82:98:90:92:1e:5d:98:83:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: May 5 16:30:56 2024 GMT
Not After : May 4 16:35:56 2025 GMT
Subject: CN=376557EED6089E14C87B0322B7340B269653C865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0e:9d:19:6e:71:8e:a5:22:62:2c:47:f4:eb:
c9:98:3f:6b:13:60:e6:eb:08:e5:04:bc:48:34:d7:
e1:94:e0:de:7c:08:26:b7:a4:14:d3:d9:f3:89:2b:
62:00:b1:98:45:5a:8c:30:1a:3c:ee:65:12:be:7b:
29:c0:ba:dc:38:d8:82:73:0c:90:e7:66:81:ff:92:
97:0b:e9:b6:f1:2f:16:de:cf:cf:31:cc:c0:bd:ae:
e7:ff:ed:f8:27:ca:5c:b1:ca:f9:19:2c:04:20:a7:
ce:ef:4d:e8:65:50:62:1d:4b:d7:c9:83:af:e3:3a:
ea:6c:25:d2:46:66:56:01:e5:fb:c3:da:d7:9c:f6:
ca:59:e2:a1:87:ed:13:6f:22:cd:5b:84:f4:6a:35:
2a:2b:34:ae:43:5d:16:f0:6d:49:a0:86:52:31:33:
f6:eb:df:8b:46:32:20:f6:99:3b:c9:3b:34:93:a3:
60:87:ed:1b:95:34:2c:7c:bb:70:a8:fd:07:d3:2f:
97:0f:aa:42:6a:3a:30:2a:04:18:fc:6f:69:24:89:
ff:a3:a4:2e:a9:7b:0d:2f:68:f7:8d:c9:e1:36:cd:
7c:00:73:97:d9:1c:e2:e2:95:b3:b2:77:27:fa:3f:
cf:2e:23:03:23:37:82:c6:74:4e:53:31:f3:a7:59:
e2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:65:57:EE:D6:08:9E:14:C8:7B:03:22:B7:34:0B:26:96:53:C8:65
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32342d3234203d3e203531383437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.112.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:73:98:03:58:6c:09:02:37:2d:9b:8e:85:54:c0:72:ba:76:
5b:e8:55:b1:1a:24:11:96:49:61:09:9d:18:c4:9d:20:0c:b7:
dc:8e:70:7f:a2:3d:3d:b8:98:a2:e4:78:8e:2a:4c:48:98:47:
1e:de:c9:d8:a2:5e:45:70:8e:bd:d5:be:89:9a:d8:50:71:ee:
bf:e5:ed:de:e4:2a:4c:29:05:8c:6d:b4:b4:0b:70:09:69:0e:
bc:e4:6c:0a:c6:db:f7:e6:ea:3d:34:b2:23:92:06:0e:b0:58:
c3:9d:84:3f:35:77:77:84:b9:d6:53:19:34:e9:0f:91:da:84:
3e:58:f0:fa:47:5d:a2:87:a3:59:21:0b:80:f7:74:c4:32:10:
3a:4b:1f:3e:45:59:87:26:83:43:66:e5:8b:37:c7:fe:a4:3f:
0c:8a:87:52:ba:51:e4:2e:8e:92:cf:b0:17:58:5a:7c:5f:bc:
6f:27:35:97:8a:de:88:32:bd:38:94:c8:e0:e5:44:a0:6a:5f:
c6:34:85:ff:cf:9c:bb:83:68:5f:c5:b3:2b:b7:46:5e:9f:20:
9c:f7:13:fd:de:11:9c:19:1e:ba:ce:04:8b:bc:73:c3:31:dc:
30:3a:5f:62:ab:db:05:41:85:af:75:12:da:45:c3:38:79:dd:
5a:db:20:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 03:29:00 2024 by rpki-client on console-fra.rpki-client.org