Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131392e302f32342d3234203d3e20323135343337.roa
File: 39332e39352e3131392e302f32342d3234203d3e20323135343337.roa (raw, json)
Hash identifier: scJ1J16rI6zPTC9NmNaA0DK+habeczlo+nbSVqoqzmA=
Subject key identifier: E1:43:99:AA:E7:59:A8:59:3B:5F:F2:04:19:46:7C:10:25:12:D8:79
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 656F779A563F4B341FC6F2099FACE5B3689B01C2
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131392e302f32342d3234203d3e20323135343337.roa
Signing time: Fri 23 Feb 2024 17:28:04 +0000
ROA not before: Fri 23 Feb 2024 17:23:04 +0000
ROA not after: Fri 21 Feb 2025 17:28:04 +0000
asID: 215437
IP address blocks: 93.95.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:6f:77:9a:56:3f:4b:34:1f:c6:f2:09:9f:ac:e5:b3:68:9b:01:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Feb 23 17:23:04 2024 GMT
Not After : Feb 21 17:28:04 2025 GMT
Subject: CN=E14399AAE759A8593B5FF20419467C102512D879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:79:2e:61:79:94:13:d8:a5:ca:0a:7d:d2:75:
72:cc:cd:30:79:47:8d:f6:e4:08:bc:d2:af:11:b3:
4c:71:a1:a1:93:48:4a:52:73:a8:81:54:57:3c:4b:
4d:62:66:66:a2:c8:97:aa:59:10:15:77:40:da:7f:
6d:20:76:37:11:d0:40:27:bb:07:96:84:1b:97:01:
14:de:d1:07:6c:92:11:71:e2:32:f9:7e:e0:b3:e4:
29:f3:23:07:19:97:32:29:40:ac:dc:c9:17:19:15:
42:ec:3b:09:d4:b7:8e:dc:03:f3:14:36:aa:ca:ca:
b0:8c:e3:30:01:74:66:07:5c:93:54:c7:a4:23:6e:
c4:5f:20:3f:14:99:7c:28:c6:ba:ef:71:02:51:e0:
ea:fb:7f:69:e2:5f:a5:e4:6a:89:ca:1c:42:6a:a4:
59:19:06:d2:e0:03:4e:ca:7c:5f:33:c2:b0:51:6e:
aa:c1:df:9f:90:17:f5:0f:d3:6d:1c:74:62:60:68:
09:27:35:09:ec:20:1b:6d:8d:56:b2:c9:cb:62:d6:
21:f9:9d:f1:37:73:8a:7e:24:e1:ac:54:16:fa:44:
d3:b5:6f:14:bf:a2:63:16:7e:36:59:f0:c5:c7:a6:
55:2f:fe:d5:b0:d1:cf:e3:09:4f:44:4e:ba:76:49:
9c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:43:99:AA:E7:59:A8:59:3B:5F:F2:04:19:46:7C:10:25:12:D8:79
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131392e302f32342d3234203d3e20323135343337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.119.0/24
Signature Algorithm: sha256WithRSAEncryption
83:5f:4d:44:7e:f7:9d:20:5b:a0:a5:51:25:15:2d:5e:4e:6e:
37:42:ee:03:cf:f3:c2:29:60:04:82:24:46:fe:24:cc:2a:e6:
c5:8c:37:a6:b4:73:c0:50:da:0d:f1:a5:1c:97:a5:88:63:8b:
90:d8:d9:bc:b0:da:6a:c9:62:4f:59:24:e4:82:6c:97:6a:f2:
41:bf:2f:06:a8:41:77:e2:bb:98:60:a7:0c:30:59:a0:be:0f:
40:e5:a4:6c:b5:e7:68:2b:69:55:7d:cf:6e:53:03:29:b7:a3:
07:9d:36:c1:39:73:a2:43:77:70:7e:1d:e6:7e:00:84:b4:72:
0d:9a:a6:7a:4c:82:b2:cf:80:ec:2a:44:cd:54:75:fc:f2:cf:
8c:71:e6:1d:a5:a6:32:b9:39:54:59:68:42:0f:54:de:34:67:
cd:05:9e:f6:af:28:08:18:fd:78:e5:c0:c0:a0:83:af:d5:69:
f5:db:94:2d:3b:78:53:10:b4:fa:44:b5:2f:e4:c3:5d:7d:b0:
7b:55:bf:66:63:ee:cf:a7:21:5e:bc:1b:ae:f6:95:15:45:09:
13:c9:87:e3:cf:02:f0:02:64:17:51:bb:40:8d:7d:81:a2:31:
aa:56:dc:14:33:1a:16:6a:0d:46:eb:88:60:44:67:82:4f:7b:
f3:a3:63:c6
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUZW93mlY/SzQfxvIJn6zls2ibAcIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjE3MjU0OGZhM2M0NjBlMjZjYjUxOWVlNTI0MzYxYmNh
NmM3MTMyZTAeFw0yNDAyMjMxNzIzMDRaFw0yNTAyMjExNzI4MDRaMDMxMTAvBgNV
BAMTKEUxNDM5OUFBRTc1OUE4NTkzQjVGRjIwNDE5NDY3QzEwMjUxMkQ4NzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqeS5heZQT2KXKCn3SdXLMzTB5
R4325Ai80q8Rs0xxoaGTSEpSc6iBVFc8S01iZmaiyJeqWRAVd0Daf20gdjcR0EAn
uweWhBuXARTe0QdskhFx4jL5fuCz5CnzIwcZlzIpQKzcyRcZFULsOwnUt47cA/MU
NqrKyrCM4zABdGYHXJNUx6QjbsRfID8UmXwoxrrvcQJR4Or7f2niX6XkaonKHEJq
pFkZBtLgA07KfF8zwrBRbqrB35+QF/UP020cdGJgaAknNQnsIBttjVayycti1iH5
nfE3c4p+JOGsVBb6RNO1bxS/omMWfjZZ8MXHplUv/tWw0c/jCU9ETrp2SZy/AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU4UOZqudZqFk7X/IEGUZ8ECUS2HkwHwYDVR0j
BBgwFoAUsXJUj6PEYOJstRnuUkNhvKbHEy4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOTY1NzNlODgtZGFiYS00YWM3LWEyZWQtMzIxYzgyNzdk
MjVlLzAvQjE3MjU0OEZBM0M0NjBFMjZDQjUxOUVFNTI0MzYxQkNBNkM3MTMyRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3NYSlVqNlBFWU9Kc3RSbnVVa05odkti
SEV5NC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOTY1NzNlODgt
ZGFiYS00YWM3LWEyZWQtMzIxYzgyNzdkMjVlLzAvMzkzMzJlMzkzNTJlMzEzMTM5
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM1MzQzMzM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
XV93MA0GCSqGSIb3DQEBCwUAA4IBAQCDX01EfvedIFugpVElFS1eTm43Qu4Dz/PC
KWAEgiRG/iTMKubFjDemtHPAUNoN8aUcl6WIY4uQ2Nm8sNpqyWJPWSTkgmyXavJB
vy8GqEF34ruYYKcMMFmgvg9A5aRstedoK2lVfc9uUwMpt6MHnTbBOXOiQ3dwfh3m
fgCEtHINmqZ6TIKyz4DsKkTNVHX88s+MceYdpaYyuTlUWWhCD1TeNGfNBZ72rygI
GP145cDAoIOv1Wn125QtO3hTELT6RLUv5MNdfbB7Vb9mY+7PpyFevBuu9pUVRQkT
yYfjzwLwAmQXUbtAjX2BojGqVtwUMxoWag1G64hgRGeCT3vzo2PG
-----END CERTIFICATE-----
Generated at Thu Nov 21 16:18:00 2024 by rpki-client on console-fra.rpki-client.org