Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323135333034.roa
File: 39332e39352e3131332e302f32342d3234203d3e20323135333034.roa (raw, json)
Hash identifier: 63nnYoRw8lqbfs9sYSKLfv3rVQPobl25Gf5ifR4SF58=
Subject key identifier: FB:F3:6F:26:ED:67:E8:05:21:26:E9:B3:3D:25:9A:CE:AC:57:A5:36
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 7F10752F1DE6256618EE8C019A6340F131D01CD1
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323135333034.roa
Signing time: Fri 11 Oct 2024 10:47:31 +0000
ROA not before: Fri 11 Oct 2024 10:42:31 +0000
ROA not after: Fri 10 Oct 2025 10:47:31 +0000
asID: 215304
IP address blocks: 93.95.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:10:75:2f:1d:e6:25:66:18:ee:8c:01:9a:63:40:f1:31:d0:1c:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Oct 11 10:42:31 2024 GMT
Not After : Oct 10 10:47:31 2025 GMT
Subject: CN=FBF36F26ED67E8052126E9B33D259ACEAC57A536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4d:7e:e3:1c:2f:5a:c8:35:6d:e3:5d:53:50:
45:bb:f8:37:85:68:a4:2a:cb:0b:02:16:e3:41:57:
03:6a:dc:f8:04:cd:d0:25:34:37:1a:c4:17:2c:bb:
fb:fe:d5:51:d0:db:74:03:36:1c:0f:b2:ea:47:0b:
b7:ff:bf:3b:27:cf:4a:1c:6b:ee:84:9b:2c:92:62:
8a:60:32:06:64:ce:52:2e:26:be:98:d5:79:3d:01:
a8:90:e8:3d:3c:77:39:c4:3f:3b:2a:eb:cd:a9:fd:
09:0a:b1:b0:c6:ac:ce:b1:ef:fb:4b:1a:65:bb:58:
f4:92:66:71:5d:97:cc:d8:2b:61:09:89:87:2e:78:
03:c9:35:39:f5:97:e4:5f:93:b6:98:0d:9a:af:0d:
57:f0:ee:fe:b2:61:4b:55:fd:97:98:64:09:d7:22:
f8:ad:d2:a4:48:cb:a5:b3:d6:ff:cb:16:19:68:72:
b2:de:47:47:d3:b2:25:54:9e:1a:74:39:35:e3:9d:
f4:65:d1:60:4d:dc:42:ce:e5:1f:75:5a:93:53:0c:
9f:07:bd:04:e5:78:7d:6a:d0:f5:ca:46:27:62:ad:
49:37:eb:b7:42:10:83:44:f7:74:f0:ff:24:fc:98:
a6:86:07:0f:5b:8e:48:25:0e:c2:64:41:85:75:f0:
14:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:F3:6F:26:ED:67:E8:05:21:26:E9:B3:3D:25:9A:CE:AC:57:A5:36
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323135333034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.113.0/24
Signature Algorithm: sha256WithRSAEncryption
54:9d:2a:6d:5f:9d:45:53:dc:c6:77:26:3f:e3:30:b2:5b:4c:
f5:61:3e:ab:a9:cb:6b:38:4a:ba:1e:83:af:be:32:97:55:fa:
7b:df:2e:8e:8e:f5:94:30:a3:09:6e:49:6d:59:ab:72:d8:1d:
ce:6c:6e:74:1b:da:68:dc:48:17:8e:f7:f1:f2:ac:2b:3f:55:
ac:45:df:22:cc:45:22:ab:9e:fb:e0:0a:2f:1d:08:90:f9:8c:
05:7b:4f:eb:6a:f8:b0:26:57:e7:04:a6:42:5b:da:d1:70:62:
15:21:bb:29:da:8e:16:9a:b4:e3:af:6f:05:91:7b:70:d1:02:
3d:69:8f:aa:bb:97:dc:c6:47:1d:0c:b0:d3:b5:4e:b8:25:36:
85:b9:d4:11:d1:b5:65:39:06:7f:e2:f2:8b:27:38:5d:f6:3e:
1d:f2:ec:31:83:c9:e0:a3:c2:02:41:4d:9a:f9:39:b6:1d:b2:
0e:b3:31:59:9e:d1:bd:20:05:7a:50:c9:6a:00:fa:6d:e7:2e:
d7:61:f9:40:4f:61:b0:9c:4a:90:2a:e3:93:41:73:82:6b:9c:
41:74:49:6d:e1:a9:be:99:dc:d0:65:9f:39:9c:6c:5e:41:20:
59:a3:c2:f1:83:1c:16:1a:93:7f:eb:2f:b7:2b:77:8e:b5:e3:
84:f3:94:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org