Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131372e302f32342d3234203d3e20323032363733.roa
File: 39332e39352e3131372e302f32342d3234203d3e20323032363733.roa (raw, json)
Hash identifier: hYLJnHllC0sHxmQAAenMx8CFuD/Z7wXW9O22u6JOXOc=
Subject key identifier: 81:7A:D7:A4:59:DE:E2:19:76:8F:F0:07:15:14:C6:17:E4:8D:C4:D6
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 348CDEEB798000E126686783B97367C70FE0097F
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131372e302f32342d3234203d3e20323032363733.roa
Signing time: Wed 29 Nov 2023 18:29:38 +0000
ROA not before: Wed 29 Nov 2023 18:24:38 +0000
ROA not after: Wed 27 Nov 2024 18:29:38 +0000
asID: 202673
IP address blocks: 93.95.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 May 2024 07:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:8c:de:eb:79:80:00:e1:26:68:67:83:b9:73:67:c7:0f:e0:09:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Nov 29 18:24:38 2023 GMT
Not After : Nov 27 18:29:38 2024 GMT
Subject: CN=817AD7A459DEE219768FF0071514C617E48DC4D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b7:db:89:80:0d:4e:cc:22:0b:b2:66:c7:f8:
7b:d6:01:c0:0c:c1:2f:d3:81:11:84:57:66:72:a9:
3a:1d:d3:7a:a2:5f:30:9c:a3:76:b0:0e:18:35:55:
dc:f9:6c:03:c8:c0:36:fa:84:66:ac:83:90:77:ec:
5b:ad:51:b8:3b:f8:7b:92:b4:63:2d:7f:ae:b3:5c:
98:18:22:21:82:56:1a:ba:a7:26:c6:6a:07:53:87:
c2:84:dd:1f:86:ad:63:de:7b:50:5d:fa:07:ae:02:
98:34:40:91:1b:01:b9:35:08:cb:79:62:57:0d:b0:
4a:25:93:ba:6b:b2:30:b7:a7:8e:78:2e:23:d5:a8:
2d:cf:93:ad:7b:9e:90:02:a9:03:e5:5b:06:49:30:
d1:d8:10:d4:c9:82:37:b9:fa:12:79:4f:01:12:cf:
52:e9:5a:07:c8:e7:c9:d3:d4:5e:64:33:d1:5a:71:
fc:38:d2:d8:a9:91:17:54:0b:9a:3c:0d:c3:26:fe:
a0:41:63:d5:a0:07:80:c9:8c:16:a8:c7:a1:6a:ca:
2f:c3:74:e2:6a:a5:dc:ff:fd:69:a2:a0:da:bd:d4:
5c:7a:4a:ad:16:5c:b4:7e:6c:02:16:64:c7:ba:ec:
46:0e:f8:5a:e0:e2:f0:01:1a:17:0d:bc:6f:32:81:
69:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:7A:D7:A4:59:DE:E2:19:76:8F:F0:07:15:14:C6:17:E4:8D:C4:D6
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131372e302f32342d3234203d3e20323032363733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.117.0/24
Signature Algorithm: sha256WithRSAEncryption
63:bc:70:55:bd:f6:c7:c3:07:61:00:ee:15:e8:53:aa:f3:3a:
82:b3:49:32:c1:d5:9e:a0:44:dc:52:1e:24:04:89:77:24:27:
e4:e4:d6:4f:df:32:b6:8d:7c:0a:8b:50:1f:3c:ce:7e:37:01:
f1:2a:00:80:b0:a0:13:25:fd:8e:fa:e8:86:df:d2:36:66:8e:
54:a2:bf:21:85:78:cf:05:0a:9b:03:bc:42:8b:36:ac:a5:c2:
23:a2:a9:4c:1b:13:f1:dd:79:66:1f:34:26:6e:57:29:57:21:
c6:c1:1c:ab:c9:d6:be:dc:39:62:52:d3:73:02:fb:ee:27:73:
92:ff:da:f8:b9:e0:36:71:6f:ce:36:28:f2:df:95:8b:19:5c:
bc:5a:fa:5d:1b:ff:16:e9:38:d9:04:90:96:62:22:95:3c:de:
a0:73:f3:6c:1a:46:85:95:6c:33:fa:20:3a:af:e9:6d:5c:4c:
d5:8b:39:cd:b9:d2:7d:b8:5d:18:09:c8:4a:7d:85:6a:53:6a:
8e:2a:42:32:c4:12:b7:9d:5f:67:33:e9:53:57:f1:98:8c:84:
ad:ff:59:83:17:57:a0:0b:91:ea:af:69:7d:48:0a:0a:c7:5f:
f2:e6:93:fb:43:97:e1:ce:13:45:f4:ac:6e:c6:8d:a4:d2:27:
c4:6a:fc:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 11:27:18 2024 by rpki-client on console-fra.rpki-client.org