Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131392e302f32342d3234203d3e20323135343337.roa
File: 39332e39352e3131392e302f32342d3234203d3e20323135343337.roa (raw, json)
Hash identifier: iuam+Y72SFbVuzZ6DMbPvd9+i2O4uNgJ9aW8l1vNV9U=
Subject key identifier: BA:2E:A4:A4:6C:6D:23:1A:F2:8C:4E:66:AD:4E:27:82:76:6F:62:84
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 79DBEDB4640AA79AA16CC670F427CEE2B1F6F130
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131392e302f32342d3234203d3e20323135343337.roa
Signing time: Fri 24 Jan 2025 17:53:52 +0000
ROA not before: Fri 24 Jan 2025 17:48:52 +0000
ROA not after: Fri 23 Jan 2026 17:53:52 +0000
asID: 215437
IP address blocks: 93.95.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:db:ed:b4:64:0a:a7:9a:a1:6c:c6:70:f4:27:ce:e2:b1:f6:f1:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Jan 24 17:48:52 2025 GMT
Not After : Jan 23 17:53:52 2026 GMT
Subject: CN=BA2EA4A46C6D231AF28C4E66AD4E2782766F6284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:62:30:5a:de:f4:b5:1e:ce:cd:65:42:1e:9e:
f8:9b:b8:92:77:3a:13:f8:4d:61:ee:a2:fc:a9:a4:
6f:c0:7c:f9:88:0d:a2:ad:94:98:08:ca:a4:16:06:
da:72:10:88:8e:4a:a6:1b:9a:e7:b1:36:55:01:c1:
f5:29:1e:c9:04:38:30:40:d3:10:cc:af:bd:5d:13:
2e:dc:f4:44:d0:d3:e7:ad:0b:b6:6f:ff:73:5f:4c:
81:03:bc:f7:1d:33:87:17:22:ba:dc:20:47:36:e6:
a9:71:2a:e8:4c:a3:89:0d:fd:d6:6c:a9:c4:4f:11:
95:bb:f4:58:8c:79:47:9f:79:9a:7e:d1:c8:4f:c5:
3c:8c:7f:6e:34:e5:43:78:7e:83:67:cf:33:89:32:
01:31:fd:ab:e8:51:15:bc:a1:a4:f6:9b:46:f9:c9:
b2:9a:59:30:b1:75:df:71:35:a1:d9:30:ce:9d:5e:
70:fe:b9:73:72:47:73:0b:a5:29:39:b1:dd:98:b8:
ed:0f:af:2d:74:88:51:0b:ac:ae:f9:c6:2c:8f:e1:
32:ec:f8:45:10:2b:c1:51:35:1c:7e:1c:3f:15:a9:
64:58:9e:bc:22:0b:67:12:0f:07:51:52:44:f6:74:
cb:d7:aa:19:86:6e:a9:ac:cf:e6:dd:ce:b4:48:03:
26:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:2E:A4:A4:6C:6D:23:1A:F2:8C:4E:66:AD:4E:27:82:76:6F:62:84
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131392e302f32342d3234203d3e20323135343337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.119.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:8b:f0:69:0d:1c:b0:6b:a1:20:15:35:23:6f:2b:56:ba:a2:
a6:41:78:64:86:03:fb:b6:88:ac:34:0a:d7:d8:3b:62:be:22:
d7:38:04:15:5a:ef:ee:66:34:32:ef:fe:96:ad:f1:47:c9:91:
ee:08:67:46:01:99:f1:b2:7f:c1:bd:a5:26:ce:19:fd:5f:e1:
1e:20:63:63:f4:ed:4f:8d:98:6b:71:45:ef:4d:50:00:7a:20:
16:81:55:64:90:a6:76:52:03:c3:60:f9:a9:6b:5c:56:53:20:
5b:58:04:1f:a1:d1:7c:99:35:f3:8a:0f:e4:d7:8e:ff:c6:d9:
2a:4b:79:c0:ef:6a:0f:2e:fb:e1:25:84:30:52:a1:db:ff:80:
2d:c4:fc:3b:fc:96:29:22:28:9d:cb:f9:ff:08:aa:2e:55:e3:
76:f2:04:c0:61:3a:e8:26:ae:b4:fd:47:40:1e:2d:37:db:8a:
9f:48:83:51:bf:88:df:e3:f1:12:8a:78:f7:ac:34:ba:f7:0c:
46:8c:78:89:af:55:7b:b0:44:58:6e:f4:b4:e9:a5:d3:e9:db:
22:63:99:5d:b6:cf:a8:4b:27:77:62:7f:1a:db:0a:d4:db:4e:
e7:48:f8:fc:cd:44:20:99:28:2d:4a:6e:5f:55:40:a2:89:a3:
68:18:95:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:39:49 2025 by rpki-client