Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323134303235.roa
File: 39332e39352e3131332e302f32342d3234203d3e20323134303235.roa (raw, json)
Hash identifier: l30M1NazdLFetU2PNYzaRk4wQFhe4M2J09jdNUuszXc=
Subject key identifier: 33:BF:28:6F:8B:F4:46:A1:AB:A8:CC:F0:C2:13:D9:29:B6:17:F2:DE
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 604095DA24F948D0189C5A27646E600F14F8C41F
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323134303235.roa
Signing time: Mon 21 Oct 2024 07:38:10 +0000
ROA not before: Mon 21 Oct 2024 07:33:10 +0000
ROA not after: Mon 20 Oct 2025 07:38:10 +0000
asID: 214025
IP address blocks: 93.95.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:40:95:da:24:f9:48:d0:18:9c:5a:27:64:6e:60:0f:14:f8:c4:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Oct 21 07:33:10 2024 GMT
Not After : Oct 20 07:38:10 2025 GMT
Subject: CN=33BF286F8BF446A1ABA8CCF0C213D929B617F2DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b6:e2:71:99:64:ee:fc:d8:95:12:28:01:8e:
58:d6:2a:be:73:94:6b:4f:51:03:65:21:7a:b7:37:
1a:bd:e4:f5:f7:4b:27:30:e2:36:84:59:83:22:59:
5d:66:57:6b:9d:a5:b3:13:d7:41:81:3b:02:43:23:
ec:6b:e8:c7:16:9b:52:84:c4:90:41:86:c0:0f:26:
a6:a2:5f:d8:ba:5b:56:5b:0d:8b:f2:0b:e7:68:86:
80:57:b6:16:5d:9a:22:97:75:c0:82:74:09:5a:2e:
3a:fa:89:cc:99:ef:88:4d:ac:8d:a5:25:54:ba:53:
9e:6d:2e:a9:a5:05:87:49:fb:6b:ca:3d:b7:b4:20:
9b:88:6e:28:cd:4e:82:6e:28:7a:51:79:ec:7b:2c:
88:4f:c8:f8:9a:ae:33:ee:ec:e4:2b:a6:01:b8:fc:
7b:b3:02:7e:23:41:10:2e:54:47:bd:8e:c0:d2:c2:
28:7b:df:c3:a8:1e:9d:f1:d4:1f:16:9b:43:6b:2f:
ab:ea:06:fb:5d:0c:d5:b7:f9:86:4a:be:24:5d:a7:
67:78:58:47:c5:64:76:f5:44:95:11:00:07:71:a8:
0d:44:53:ed:2e:34:70:28:ef:29:a4:d6:e2:0b:f4:
8c:21:f1:15:88:29:77:a3:c3:c2:ea:a9:92:ff:5a:
f8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:BF:28:6F:8B:F4:46:A1:AB:A8:CC:F0:C2:13:D9:29:B6:17:F2:DE
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323134303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.113.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:34:03:f7:a6:a9:f3:ab:d4:ec:59:aa:19:dd:36:31:d9:b6:
13:26:0e:c8:c4:a5:cb:ae:13:70:ba:84:d9:68:67:e8:68:61:
0f:90:41:d3:8c:c7:b3:00:21:6c:be:a6:0a:a0:4e:74:13:a2:
da:c2:d6:48:2c:ca:90:28:ef:7b:f5:04:f9:b4:8d:0b:46:1e:
d0:4c:b8:81:16:0b:a8:b1:08:e6:17:28:27:8f:0c:0d:f2:7e:
c7:6a:36:d8:b7:fe:29:53:cb:82:a6:49:b1:b2:d7:d7:f1:3a:
f4:18:26:0e:99:b7:fb:25:8f:76:6c:5b:a3:83:74:c0:4e:5b:
99:a8:1f:48:dc:4c:38:de:20:9e:0f:53:ab:16:02:3e:f7:12:
10:79:38:91:74:e3:61:97:26:9a:80:90:41:d4:a8:af:9d:ac:
b9:10:c3:27:dd:dd:c9:1e:60:a1:85:90:c9:97:ee:cc:09:df:
71:54:b9:6c:d6:0a:71:30:e7:c3:e6:2d:1f:4b:75:2b:65:55:
74:2c:3f:ef:e8:2e:11:3f:f1:00:ea:a8:47:5a:06:b7:6e:d3:
ef:10:e0:a7:81:cc:62:4e:8f:63:4b:28:40:38:ee:b3:3f:59:
b9:9a:2c:ca:df:be:e1:0b:58:fb:e3:de:24:f3:b1:5c:07:a5:
26:58:8d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 11:54:14 2024 by rpki-client on console-fra.rpki-client.org