Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136322e302f32342d3234203d3e203136323736.roa
File: 39352e3136392e3136322e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: G1kdCGTSUOwnfRZQYq0i/0wxHKbpQYDdINBFkzmlRsw=
Subject key identifier: 4A:05:F0:0A:29:48:51:1F:A2:CE:ED:3B:B7:E9:D7:E1:3A:DD:8D:13
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 3A2EE36666F568CAA28A47B9706EAA2912EC15BA
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136322e302f32342d3234203d3e203136323736.roa
Signing time: Wed 20 Nov 2024 03:39:35 +0000
ROA not before: Wed 20 Nov 2024 03:34:35 +0000
ROA not after: Wed 19 Nov 2025 03:39:35 +0000
asID: 16276
IP address blocks: 95.169.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:2e:e3:66:66:f5:68:ca:a2:8a:47:b9:70:6e:aa:29:12:ec:15:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Nov 20 03:34:35 2024 GMT
Not After : Nov 19 03:39:35 2025 GMT
Subject: CN=4A05F00A2948511FA2CEED3BB7E9D7E13ADD8D13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:39:cd:3a:8f:bf:66:35:05:cc:4e:5c:bc:f4:
04:cd:41:a9:3d:7a:a6:c7:25:62:93:51:07:c4:95:
12:96:8f:be:45:a6:d7:20:bc:dc:b1:bb:ce:d9:23:
1b:88:a6:35:61:4f:9e:bf:21:fb:1d:c8:00:d7:d0:
fe:3a:1f:91:e7:cd:d3:db:19:9d:67:61:a8:51:91:
b8:ca:bd:cc:52:53:58:08:94:ec:8f:4e:01:2a:4f:
df:73:bd:0c:37:94:76:20:c5:be:0c:49:76:a6:f8:
2b:e2:e8:c4:21:9b:cc:0c:f5:05:99:bd:ef:87:48:
49:04:22:26:01:db:9b:67:ed:75:9c:49:4b:77:7f:
d4:d9:9d:5b:e9:7f:2f:81:ac:7d:a8:97:89:59:4f:
1e:c3:2b:34:49:7f:65:76:b2:d6:7d:9f:f7:e9:e0:
8e:6e:93:2d:c5:7a:95:2f:25:02:5b:a8:24:8d:5e:
e1:cc:0e:b0:5b:42:c9:67:87:42:9f:31:a2:b7:a2:
3c:c2:83:a5:25:ea:55:11:38:d5:64:64:d0:05:74:
86:85:f2:9a:f9:b3:f4:dd:68:06:b4:b3:74:34:ce:
d5:f4:b4:54:7f:3b:f8:17:b5:5f:3e:aa:e2:6a:32:
66:5b:de:5a:ef:dd:9f:3f:c7:fc:36:2d:62:fc:36:
87:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:05:F0:0A:29:48:51:1F:A2:CE:ED:3B:B7:E9:D7:E1:3A:DD:8D:13
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136322e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.162.0/24
Signature Algorithm: sha256WithRSAEncryption
50:da:c6:e2:b7:09:15:f3:1e:a1:76:c4:b0:32:36:64:9f:04:
03:c7:bd:a2:1b:e5:3a:31:3e:3a:da:3b:3d:d5:5f:50:2a:b1:
d9:80:cd:c9:b3:7f:22:ef:33:25:99:14:6a:30:5c:16:7e:a7:
53:23:35:00:3f:fe:93:88:45:28:3a:aa:4e:d9:a6:b5:01:d8:
38:d3:96:7f:79:dc:c3:12:92:8f:b1:e2:8b:47:d0:e1:8b:dc:
5f:28:98:44:3c:92:a8:2d:23:ed:b6:2a:a2:37:40:f8:06:e1:
17:2a:8a:22:b2:24:90:ad:04:3d:eb:9d:76:ff:cc:0b:bb:33:
42:56:9f:ce:b6:59:f6:11:d0:ef:78:9b:af:e1:71:4e:8f:c4:
83:94:7c:24:c3:f2:52:cb:bd:97:d6:ed:75:e2:a2:46:87:81:
66:5b:e1:7b:1b:ca:2a:ff:19:7d:e4:10:9a:8f:6e:e9:84:5d:
3b:61:7c:bd:1d:7e:08:ca:41:34:91:e2:2c:a7:10:4e:14:36:
b3:9a:f9:d7:4b:f5:e1:fd:a5:d7:97:37:ab:8a:c3:ed:90:ec:
be:56:0b:82:38:0d:21:2c:c4:81:f6:43:eb:6f:09:3c:70:c4:
aa:d4:a4:9b:4d:36:b7:61:42:89:1e:3c:02:42:81:87:3f:b5:
e6:0b:9c:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:22:33 2024 by rpki-client on console-fra.rpki-client.org