Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323134303234.roa
File: 39332e39352e3131332e302f32342d3234203d3e20323134303234.roa (raw, json)
Hash identifier: RX1VQVxHd6lh9s8b7wmLkuV+OsyxwFV/2OP06vKykwg=
Subject key identifier: 52:FC:A9:26:22:27:B2:63:47:73:BD:01:DC:67:D3:B6:22:C9:89:51
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 1D82CDADD9106C0FC0A0DDB465C8FD92F3FA258D
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323134303234.roa
Signing time: Mon 21 Oct 2024 07:38:10 +0000
ROA not before: Mon 21 Oct 2024 07:33:10 +0000
ROA not after: Mon 20 Oct 2025 07:38:10 +0000
asID: 214024
IP address blocks: 93.95.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:82:cd:ad:d9:10:6c:0f:c0:a0:dd:b4:65:c8:fd:92:f3:fa:25:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Oct 21 07:33:10 2024 GMT
Not After : Oct 20 07:38:10 2025 GMT
Subject: CN=52FCA9262227B2634773BD01DC67D3B622C98951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fa:0a:82:b4:2c:13:1c:5e:af:4e:08:24:ac:
ba:83:9b:8a:d1:2f:91:03:0d:3f:52:72:2b:3b:6b:
c1:0b:be:e1:cc:0d:c3:c7:4c:01:52:62:bd:f9:ea:
0a:4e:42:b6:6d:7e:57:e8:f3:3a:b7:c2:ca:8e:69:
e6:2e:c0:d9:69:ca:8f:10:2c:7e:21:e6:54:dc:37:
91:5b:ec:51:b9:90:bd:47:c8:2c:54:c4:46:6d:79:
5e:3f:ca:f2:d0:67:37:ef:27:ac:36:02:8d:c5:c0:
8f:bc:7a:e4:b3:44:86:eb:6c:c2:b8:39:40:b8:3f:
2d:f2:ea:a3:ef:93:54:e8:1e:d8:f1:5f:64:cc:3a:
92:f0:ab:d1:e4:fd:f8:ef:e5:5d:82:87:5e:1c:c9:
a7:d2:a9:e4:a7:8c:2a:2c:21:cc:5a:08:77:97:6b:
39:b6:97:df:f9:6a:cc:df:c9:63:1b:b5:a4:f9:19:
8b:f9:60:8a:0e:20:75:8e:bd:90:47:f4:1e:79:36:
45:cf:5f:b0:51:f8:f7:ef:b9:89:5f:b4:de:eb:b9:
c7:6e:f9:48:de:92:28:46:5a:26:79:d5:34:1f:91:
ba:66:d3:26:39:f8:34:de:11:27:62:8a:8d:e6:92:
1b:53:13:78:e5:b2:13:e8:57:1f:2f:3b:a3:93:74:
7a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:FC:A9:26:22:27:B2:63:47:73:BD:01:DC:67:D3:B6:22:C9:89:51
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323134303234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.113.0/24
Signature Algorithm: sha256WithRSAEncryption
e6:74:e8:d4:bf:42:71:28:1d:70:ee:79:a9:86:5c:f5:68:4f:
1f:37:13:2d:93:a4:c8:e4:f2:22:01:04:6e:63:25:a3:44:38:
64:a8:38:fa:58:b3:49:42:e0:15:37:a3:77:6f:1e:63:5d:dc:
e1:9f:e1:6f:b8:68:61:eb:b3:b6:2e:33:b2:17:e8:57:3f:7b:
1c:5e:f5:7e:89:42:8a:53:5c:1e:08:c9:91:7e:a4:37:78:2c:
32:2e:e8:0a:1c:2b:b3:12:82:d4:55:4d:be:9c:d6:b0:ed:3b:
db:0f:41:fa:cb:03:f3:4f:30:85:ca:59:41:72:a3:ce:d3:d6:
7f:9f:d0:43:00:30:c4:87:a6:14:f3:8c:ba:58:02:f1:40:42:
ca:cb:d6:02:08:e5:ed:46:1b:70:72:8e:3d:cd:18:90:61:62:
d2:94:7f:b8:e7:5f:53:fc:d5:a2:99:e8:44:c2:82:a0:bb:61:
ab:30:a8:5a:fa:dd:26:98:96:3b:02:c0:9a:25:f6:81:a6:1c:
27:e7:e5:09:d8:e9:94:fb:4c:d6:2d:38:f8:3f:2e:91:62:44:
7c:4f:31:b3:ff:f3:dd:a7:64:a2:f6:8b:8f:8b:dc:64:28:8c:
a7:e6:01:22:66:03:eb:9c:4d:9f:b4:df:9e:3e:f7:a6:82:d3:
5a:a2:eb:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 14:22:19 2024 by rpki-client on console-ams.rpki-client.org