Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136342e302f32342d3234203d3e203136313235.roa
File: 39352e3136392e3136342e302f32342d3234203d3e203136313235.roa (raw, json)
Hash identifier: XtnU9KDRGcbexVufC4oH8FT4TIzcC+lGx8G64PxSKos=
Subject key identifier: 35:F4:06:8D:8C:E0:34:78:F5:FC:B3:DF:5B:20:97:DF:3B:AB:D3:4B
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 46B84DCC2A55D7E005189F42D8C73657791A79D5
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136342e302f32342d3234203d3e203136313235.roa
Signing time: Wed 20 Nov 2024 20:22:43 +0000
ROA not before: Wed 20 Nov 2024 20:17:43 +0000
ROA not after: Wed 19 Nov 2025 20:22:43 +0000
asID: 16125
IP address blocks: 95.169.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:b8:4d:cc:2a:55:d7:e0:05:18:9f:42:d8:c7:36:57:79:1a:79:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Nov 20 20:17:43 2024 GMT
Not After : Nov 19 20:22:43 2025 GMT
Subject: CN=35F4068D8CE03478F5FCB3DF5B2097DF3BABD34B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:73:78:42:80:a4:b6:ab:2c:e7:fa:9d:a7:18:
40:d5:e4:71:53:d9:58:9f:d0:83:4c:61:8c:0a:14:
f1:56:58:27:7b:b6:5f:67:6b:f6:34:f7:4e:dd:7c:
dd:e9:e6:a7:6a:56:32:06:b9:f7:a7:e3:cf:9a:3f:
62:00:fb:68:0b:45:51:f1:12:42:ea:e5:60:8a:6b:
30:ce:ab:ef:7d:ad:6c:59:24:9a:dc:2e:b1:e5:21:
bd:3f:c1:6f:cd:1d:89:7a:4a:f4:f4:ad:67:23:41:
a3:b3:62:89:d0:b8:92:4b:c3:c2:ab:f1:c3:e1:64:
89:f3:50:82:c8:b7:40:8e:a8:42:5f:d0:44:75:7e:
8b:9e:d4:cb:cf:d9:79:da:ae:45:ec:94:8c:04:3e:
7f:1d:94:16:12:a9:63:96:53:85:58:1b:7b:3b:84:
1d:a7:bd:84:72:4f:63:3c:ce:c7:a0:b2:07:91:47:
14:e2:97:b1:fd:d8:83:75:0e:9d:51:fd:ac:e4:68:
af:68:fb:f5:b3:dd:4a:c8:c6:7d:d6:45:dc:f5:d1:
d0:b4:86:e5:8e:eb:b0:d3:fa:e1:b6:f7:68:0a:a7:
5f:2a:04:5b:80:fc:6a:f7:5e:ab:81:8d:e3:ca:eb:
f7:c9:1a:47:28:94:1a:e5:87:1e:a9:43:e7:87:f4:
fe:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F4:06:8D:8C:E0:34:78:F5:FC:B3:DF:5B:20:97:DF:3B:AB:D3:4B
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136342e302f32342d3234203d3e203136313235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.164.0/24
Signature Algorithm: sha256WithRSAEncryption
29:24:4e:6c:69:7a:99:4c:35:64:92:d1:53:64:82:65:c4:33:
13:4a:b7:e0:d2:69:37:5a:12:de:39:84:09:85:f5:a8:d3:3c:
ac:8d:45:d3:06:36:34:22:75:06:a7:e8:34:23:15:d7:6f:5d:
24:cc:95:87:52:97:ea:a1:33:30:e4:c7:52:6f:ac:65:6b:c8:
8b:1f:f9:b3:c6:25:70:13:f0:1d:3a:cf:bd:1d:3c:24:1f:01:
84:26:d1:12:b0:10:e7:8a:ac:8f:1c:20:e4:87:b6:89:50:e4:
cc:c1:1a:ab:bb:32:33:42:f2:b2:69:98:e3:b5:8b:dc:53:f4:
a3:40:26:3d:c6:78:fa:6e:7d:eb:e2:4f:71:e2:b0:ec:7f:cb:
a7:d8:bf:73:2e:ff:c4:b4:da:6b:b1:ea:8e:26:34:29:23:8e:
62:ec:38:0b:0c:64:b2:34:26:9e:73:30:be:3f:0e:fc:c8:8b:
9e:a4:b4:b4:de:c6:ab:66:ef:3f:07:be:08:31:d2:43:3c:dd:
e7:10:c2:59:90:03:80:9c:03:f9:ec:da:aa:a1:32:75:85:c8:
c1:d9:d6:88:a5:ae:d6:98:de:b6:ff:d9:39:1f:56:23:2a:fe:
b5:a5:c2:31:9e:d9:22:1d:95:eb:fe:a1:e5:c3:f1:83:4a:d2:
2f:ff:b2:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:22:33 2024 by rpki-client on console-fra.rpki-client.org