Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131352e302f32342d3234203d3e20313938353834.roa
File: 39332e39352e3131352e302f32342d3234203d3e20313938353834.roa (raw, json)
Hash identifier: oaLDq7aS5NFaYNW1gUs7MDdZL5P0TUUEDkjRyQGla3w=
Subject key identifier: 0D:C5:A9:C7:6C:C4:08:CD:0A:18:38:62:B0:59:C4:D7:48:42:A2:4F
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 55EE484A1FCD2488B9BD2F631008E7D7F948A97F
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131352e302f32342d3234203d3e20313938353834.roa
Signing time: Fri 01 Nov 2024 14:43:27 +0000
ROA not before: Fri 01 Nov 2024 14:38:27 +0000
ROA not after: Fri 31 Oct 2025 14:43:27 +0000
asID: 198584
IP address blocks: 93.95.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:ee:48:4a:1f:cd:24:88:b9:bd:2f:63:10:08:e7:d7:f9:48:a9:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Nov 1 14:38:27 2024 GMT
Not After : Oct 31 14:43:27 2025 GMT
Subject: CN=0DC5A9C76CC408CD0A183862B059C4D74842A24F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:24:7b:8a:be:be:7a:0f:db:e1:18:f5:8c:48:
37:05:a8:1c:e0:96:d6:32:c5:ab:7f:5b:56:8c:1f:
4d:3d:6c:5c:b7:f6:77:50:6d:56:6d:4f:4b:f6:9a:
7a:a4:93:ca:fb:ce:81:9e:4d:c1:81:1a:3c:37:a6:
60:83:4d:7a:29:93:1c:50:90:26:d6:d8:a0:da:01:
fc:e7:64:1d:f7:d6:f8:24:5c:a0:bf:59:0c:1c:1b:
43:0f:4f:48:70:80:bc:ed:bb:d1:b7:0d:1d:a4:d0:
7f:e6:cc:5a:05:e4:a6:14:cb:e4:95:3a:d0:3a:9b:
75:8f:d1:0e:55:2f:ac:34:e8:61:b3:b7:76:1b:c0:
72:d9:98:97:27:b0:93:dc:38:d2:11:ca:64:f7:c2:
86:b8:45:48:0a:aa:a7:d5:2d:81:d9:27:ca:1f:27:
d5:b1:b0:8b:d5:39:d6:cb:60:44:08:79:7b:d2:fd:
de:4a:88:65:b1:de:82:42:38:7a:61:79:23:b7:02:
5c:77:5f:c1:1a:25:80:78:6c:4b:a9:d5:68:7d:24:
97:33:92:40:bc:15:a8:5d:f7:04:57:5c:71:1d:c5:
13:62:4d:d1:3b:bd:21:2a:41:b4:42:65:0b:8b:c4:
06:0f:78:3d:fd:ef:2a:5f:72:e8:a0:46:65:b2:3c:
5e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:C5:A9:C7:6C:C4:08:CD:0A:18:38:62:B0:59:C4:D7:48:42:A2:4F
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131352e302f32342d3234203d3e20313938353834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.115.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:04:31:61:a8:fc:e9:60:dc:0c:bc:26:ca:54:d3:5a:01:da:
46:74:17:5e:a3:39:31:d0:34:a0:12:ab:58:3b:4c:c7:88:f7:
40:ed:09:6c:a6:11:42:cf:5b:da:b1:c4:69:8a:a3:a3:58:ae:
b8:c9:06:8e:e8:62:90:5d:47:cf:1d:2a:dc:21:2f:86:84:73:
f7:57:37:c2:1f:0c:16:5e:a3:d6:c2:84:2a:da:8e:3e:02:38:
c1:3a:4f:4c:26:ac:29:ad:00:f7:c3:bd:1f:fa:f9:7d:79:a4:
ec:a1:94:2f:f9:78:2c:d9:b3:0b:d3:ea:76:de:9d:e5:6a:c2:
16:d5:52:6f:3f:05:fb:dd:6e:c9:df:40:01:fd:92:bb:52:80:
b5:c8:6f:25:6b:15:28:06:90:8a:a9:f6:74:5f:8d:57:a5:78:
bf:94:0e:83:b9:6d:48:91:6e:3b:6d:5b:89:63:56:09:8f:b7:
18:8f:d9:e9:bc:db:d7:72:49:86:be:ac:aa:bf:c4:19:52:5b:
68:c1:49:ed:98:ed:cd:67:73:2a:63:77:6c:64:50:b0:f6:13:
81:3f:f1:a3:23:df:1f:00:10:0f:b8:99:97:04:e8:e9:e4:c4:
3d:6e:81:c0:8f:c5:ee:0a:bf:05:89:4f:7c:6b:87:56:76:58:
12:6d:b0:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:43 2024 by rpki-client on console-ams.rpki-client.org