Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136302e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3136302e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: vgm4XJ+tMR2tTT2qfP7pKTBRX153BBtyEqDQk6ubOsE=
Subject key identifier: 8A:45:7F:54:4E:E4:3B:91:E8:8A:07:46:FC:F7:97:D9:8D:AE:4F:FD
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 36346DAAC51AB79FDD54D2080FB6891F51BA4418
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136302e302f32342d3234203d3e203331313033.roa
Signing time: Fri 31 May 2024 09:35:30 +0000
ROA not before: Fri 31 May 2024 09:30:30 +0000
ROA not after: Fri 30 May 2025 09:35:30 +0000
asID: 31103
IP address blocks: 95.169.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:34:6d:aa:c5:1a:b7:9f:dd:54:d2:08:0f:b6:89:1f:51:ba:44:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 09:30:30 2024 GMT
Not After : May 30 09:35:30 2025 GMT
Subject: CN=8A457F544EE43B91E88A0746FCF797D98DAE4FFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f8:d1:92:1c:14:15:77:3f:f3:df:8a:67:72:
e8:55:dc:c2:22:3e:b0:2d:85:21:92:fa:cb:b8:fd:
a8:d1:76:af:86:39:4b:42:00:ea:76:78:29:47:6a:
52:ca:33:92:1a:a9:5e:8c:bf:9f:22:60:a3:47:5b:
0a:d1:2e:22:60:6f:ee:16:ce:b1:8b:6a:02:55:96:
57:72:de:91:8e:a9:e2:58:80:90:bc:37:5d:49:60:
a5:1d:3d:20:fa:90:4f:7f:ef:e9:f4:b4:ef:96:94:
10:39:1c:ba:0f:55:b6:02:48:d1:65:3d:46:fd:db:
7a:e8:05:18:d7:4d:4d:e8:e5:44:3a:c2:db:f6:c5:
8c:c8:79:57:99:f3:b5:b9:23:b2:df:31:04:83:47:
61:40:6f:56:9d:38:78:68:c2:73:90:8f:ab:d6:1f:
87:b5:02:d6:55:0e:1c:87:50:37:0a:44:0a:69:b5:
cc:2e:be:86:65:05:a5:40:5a:40:6f:a5:cb:ed:a0:
ff:cf:14:4f:80:64:3f:24:94:62:2f:a4:03:09:6b:
ac:8f:7a:8c:59:c6:f3:c9:31:80:3a:eb:66:4f:07:
26:8e:62:34:2b:a9:c8:29:a2:70:dc:e5:b5:5e:ec:
19:89:80:e7:da:23:98:b4:fd:ec:8c:80:17:a4:36:
ea:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:45:7F:54:4E:E4:3B:91:E8:8A:07:46:FC:F7:97:D9:8D:AE:4F:FD
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136302e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.160.0/24
Signature Algorithm: sha256WithRSAEncryption
29:25:44:07:b9:c8:0e:f1:31:70:8a:06:44:41:f1:d1:a7:0e:
15:b1:51:59:b8:cc:91:3e:64:2b:6f:9a:9c:dc:d3:5c:c8:e8:
80:b2:52:2a:18:4b:e5:6f:a9:22:5e:78:e9:bb:2a:d7:28:03:
fc:65:9b:83:34:4e:4a:aa:98:7d:a2:54:89:c3:15:1a:98:ac:
1b:2b:b1:53:ed:d9:c1:45:d6:e4:5e:e9:dc:ca:4a:ed:9a:d6:
43:a1:19:5b:e5:27:a5:a8:a9:04:dd:17:89:6b:bd:51:5f:66:
69:c0:b4:d6:4a:15:c2:eb:26:fe:4d:52:67:8c:08:a7:fc:d8:
30:cb:55:c0:96:de:29:90:17:65:03:02:80:a1:89:63:7f:aa:
71:33:5e:a3:12:22:fd:96:b7:59:e5:6c:30:75:5b:dc:ce:02:
f7:fb:11:50:18:af:da:b3:eb:1d:c8:9c:e1:b4:86:a9:6a:62:
4b:94:3c:ef:28:53:7b:9e:9a:0d:88:f4:ed:b1:42:60:17:e0:
88:b0:77:f2:67:32:61:14:32:a1:fd:bd:d8:ea:62:8a:75:31:
ef:48:a8:bc:9d:9f:68:e1:c1:08:2b:6b:82:56:bd:9d:59:6b:
75:94:04:da:52:3e:0e:7d:7e:e2:4c:06:94:f3:4b:ae:22:ce:
b8:9f:e3:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:20 2024 by rpki-client on console-ams.rpki-client.org