Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136312e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3136312e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: 4zvtU5r/Th8Fsr/4iPmHaFlRJkEnIBvNQ9Xhxc27aTw=
Subject key identifier: 24:91:60:84:9C:64:FA:FF:46:F3:06:46:FC:19:91:60:95:EF:76:71
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 1FB7CD8A5A76C42D3DA3E39470AA8A1EC809A410
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136312e302f32342d3234203d3e203331313033.roa
Signing time: Fri 31 May 2024 09:35:30 +0000
ROA not before: Fri 31 May 2024 09:30:30 +0000
ROA not after: Fri 30 May 2025 09:35:30 +0000
asID: 31103
IP address blocks: 95.169.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:b7:cd:8a:5a:76:c4:2d:3d:a3:e3:94:70:aa:8a:1e:c8:09:a4:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 09:30:30 2024 GMT
Not After : May 30 09:35:30 2025 GMT
Subject: CN=249160849C64FAFF46F30646FC19916095EF7671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3c:11:d7:0c:c3:fd:b1:97:50:99:bf:b7:c2:
7b:24:d4:0c:4d:95:a1:41:fd:46:3c:1e:68:f8:18:
bc:0d:57:ec:23:88:eb:d3:be:d5:66:b2:00:e1:0a:
ed:60:dd:9e:7d:47:6b:0d:cd:f7:a2:92:4e:b6:46:
05:ae:6e:b7:c5:21:32:94:ba:01:2b:d3:47:6e:95:
1e:2d:5a:1c:ca:4e:c6:9c:91:22:b5:4e:7b:f0:18:
cc:88:7b:7a:dc:cf:d0:37:70:d0:95:09:eb:7c:1f:
da:22:99:af:10:8a:5b:b0:96:0e:a5:76:6c:5c:58:
a5:0e:a3:83:45:e2:d7:c2:8a:0f:55:f8:5c:10:a4:
70:db:8a:37:52:b6:58:e7:72:9a:6a:8b:33:6b:7a:
85:68:13:b2:e7:a0:49:3b:26:39:29:9c:9e:dc:d2:
e9:91:cd:a6:f3:10:2e:43:63:27:ec:57:47:14:f7:
f4:82:81:c1:a2:ac:dc:9b:cf:33:ae:71:ec:f3:85:
3c:4a:39:f6:1a:19:26:71:66:6b:33:56:ab:60:c1:
8b:f4:19:e4:c9:32:2f:3d:df:0d:58:aa:15:06:87:
f1:fb:98:45:86:33:3c:14:bf:6d:68:7d:52:33:09:
89:97:5c:4e:4d:4e:3a:06:06:2a:8d:fa:a5:f0:60:
1a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:91:60:84:9C:64:FA:FF:46:F3:06:46:FC:19:91:60:95:EF:76:71
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136312e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.161.0/24
Signature Algorithm: sha256WithRSAEncryption
39:37:cc:b0:52:ab:07:eb:66:20:1f:5b:b9:79:8f:03:57:c5:
9f:7a:8d:96:90:32:7f:9f:8b:09:86:8e:20:52:3c:8d:2c:35:
55:fc:83:fa:10:49:07:25:8b:91:cf:89:58:2a:3a:88:ee:52:
10:73:f7:9d:37:f7:d1:95:5e:5f:52:d4:57:96:b3:e0:33:68:
52:95:7d:6e:d6:d9:0f:91:03:83:e3:eb:69:c5:dc:6e:51:f8:
61:e5:08:54:4f:b4:3b:79:da:4b:4a:a5:d1:12:93:d6:7f:a2:
f2:b2:8b:0d:2a:6c:da:20:9d:7f:66:c5:b6:1c:88:5e:c4:21:
eb:ef:fe:c1:ee:03:21:fa:4c:68:66:ff:1a:a4:65:af:f1:a1:
d6:07:f6:49:fe:d0:b1:73:56:a5:b6:54:ef:1b:02:60:f9:e7:
77:b4:2d:d0:2f:08:b8:a8:c9:0b:a8:34:67:6b:cd:5c:fc:42:
6c:22:c0:26:7d:56:84:64:c2:ff:25:4e:25:97:a5:7c:0e:0f:
74:df:80:d4:b6:49:da:ee:e2:81:42:97:21:81:4d:d3:60:6e:
38:79:d2:8c:86:49:ba:0c:e3:96:f2:35:01:1d:73:07:34:57:
fd:76:30:30:79:80:ad:02:43:23:5c:11:06:6d:e2:9c:e4:0f:
98:c9:60:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:22:33 2024 by rpki-client on console-fra.rpki-client.org