Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20313335393833.roa
File: 39332e39352e3131332e302f32342d3234203d3e20313335393833.roa (raw, json)
Hash identifier: frQ4y2txd/x3BBbAjFEioUBqBE01+6y28k5i+bMGCbU=
Subject key identifier: 05:AE:AC:7F:B5:D4:F2:3E:D4:CF:68:22:58:EC:9C:E6:63:C0:3E:BC
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 3F9EC5806D2ECA56F06968792FAA8B8789665A13
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20313335393833.roa
Signing time: Wed 10 Jan 2024 04:36:47 +0000
ROA not before: Wed 10 Jan 2024 04:31:47 +0000
ROA not after: Wed 08 Jan 2025 04:36:47 +0000
asID: 135983
IP address blocks: 93.95.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:9e:c5:80:6d:2e:ca:56:f0:69:68:79:2f:aa:8b:87:89:66:5a:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Jan 10 04:31:47 2024 GMT
Not After : Jan 8 04:36:47 2025 GMT
Subject: CN=05AEAC7FB5D4F23ED4CF682258EC9CE663C03EBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:25:74:a8:ff:84:38:20:23:67:f3:84:16:3e:
7e:eb:a5:73:7a:fe:6b:ae:36:67:6e:79:e4:70:a3:
21:4f:c5:3f:8b:1d:2a:52:b9:8e:34:ea:47:7d:1f:
4d:42:b8:71:08:3e:a7:bc:a8:d3:74:3b:8d:b8:31:
ae:1c:43:75:4f:5d:81:ea:5c:fe:f0:9d:38:2e:8e:
a6:7d:e9:a2:1a:f9:5b:3f:22:5c:20:d0:58:be:18:
96:06:e8:6b:e6:8a:c1:45:ef:69:a9:d5:86:19:cc:
9b:73:74:ea:2d:65:86:22:9a:4d:51:5b:ab:ff:63:
99:2a:53:63:8c:bd:73:6d:4b:b4:4c:a8:39:9a:fb:
63:8a:e3:55:75:f2:2e:e0:30:01:a5:ce:7e:a2:d3:
a8:35:34:c6:c3:d4:0b:34:eb:4f:ab:f1:e9:d3:5b:
93:fb:a7:1f:79:7c:e6:2b:91:af:34:82:55:ab:0a:
30:ee:32:4d:13:d1:8a:6f:a3:64:6e:91:f4:43:56:
7f:8e:48:0d:72:c5:3c:36:d8:ce:13:5a:aa:4c:be:
de:02:fc:5a:0d:03:b1:76:e4:2b:92:30:ca:69:2c:
f3:32:13:4d:db:47:0d:20:cb:dd:0f:5d:e3:87:d1:
00:e7:74:0b:a0:5b:c8:5c:55:43:2d:1a:32:77:34:
f1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:AE:AC:7F:B5:D4:F2:3E:D4:CF:68:22:58:EC:9C:E6:63:C0:3E:BC
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20313335393833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.113.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:20:0a:34:dd:e2:71:aa:ab:33:f9:da:51:1e:24:46:a1:fc:
17:80:09:75:3d:00:dc:6c:9e:47:dd:7c:3a:5d:5f:f0:5e:bc:
a6:85:f4:24:62:90:c4:f7:74:dc:e1:91:35:ea:d0:fe:38:51:
32:ca:2e:28:2d:52:c7:0c:94:ee:9f:2b:f4:99:af:ab:ed:17:
f1:ca:dd:b3:18:3e:42:96:ce:95:0f:80:61:ee:5f:c9:8c:8e:
aa:7a:af:e7:26:ab:da:26:80:60:6a:fe:62:55:81:48:10:1b:
29:12:ce:97:42:ed:38:67:0b:11:32:2d:e2:0a:63:2f:6b:5d:
e7:3a:c3:77:c4:7c:8e:a9:8f:df:8a:cf:d8:28:0d:7c:63:2a:
4d:ac:30:1d:c6:ab:07:85:f1:38:b7:c1:88:20:11:1d:9a:b6:
47:2e:ab:21:a7:e0:b5:f6:7a:ad:a3:14:4b:45:50:6d:c9:61:
a2:a9:72:ee:04:e1:d9:c1:91:58:56:84:98:d6:c9:d1:25:56:
fd:3e:4c:b7:a3:97:88:4d:23:c4:c1:99:6d:22:7a:53:e2:ba:
82:f4:ac:4b:2b:0a:fa:93:ce:e7:57:1c:e6:e5:a4:64:f2:f4:
b0:fb:a6:6a:20:40:1b:cd:5d:54:b9:e0:27:3d:fd:fd:9c:ab:
ca:71:41:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 09:37:34 2024 by rpki-client on console-ams.rpki-client.org