Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136342e302f32342d3234203d3e203231383539.roa
File: 39352e3136392e3136342e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: AuFWF1CHoHxmphk7quXaVxnrPqglITbZ+vUNUgwesf0=
Subject key identifier: 66:EE:E8:07:C9:98:32:E0:B6:0F:B7:F7:DC:19:1F:1C:A2:4E:51:0C
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 430CB815D66D9FA0CA30834FBA3518D290653951
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136342e302f32342d3234203d3e203231383539.roa
Signing time: Mon 19 Aug 2024 10:28:38 +0000
ROA not before: Mon 19 Aug 2024 10:23:38 +0000
ROA not after: Mon 18 Aug 2025 10:28:38 +0000
asID: 21859
IP address blocks: 95.169.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:0c:b8:15:d6:6d:9f:a0:ca:30:83:4f:ba:35:18:d2:90:65:39:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Aug 19 10:23:38 2024 GMT
Not After : Aug 18 10:28:38 2025 GMT
Subject: CN=66EEE807C99832E0B60FB7F7DC191F1CA24E510C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:83:f0:c9:5a:0b:61:75:25:b7:12:e4:2e:08:
02:93:db:4f:a6:9b:fd:5d:05:83:f1:3b:f2:7e:26:
0e:59:67:a7:c3:33:1d:8a:3b:6c:f1:66:80:7f:c3:
3e:ad:4f:23:d2:8e:1e:04:a7:f1:d6:22:4b:e5:2e:
34:2a:12:2b:3a:80:1e:0b:63:73:4c:a5:39:f2:12:
b3:2c:66:ae:a6:d4:93:a4:2d:0a:c1:14:34:5c:e6:
ce:b2:26:41:fa:bb:d8:88:6a:12:7c:d9:61:09:d2:
23:6b:da:eb:13:92:6f:c0:8b:b9:0a:58:cd:22:11:
28:9a:4e:92:c2:12:89:52:c5:b4:b9:de:a2:46:7d:
ed:96:49:35:93:d3:c9:b1:13:21:31:00:99:50:9b:
10:0f:44:8d:af:b7:fb:e6:08:14:8e:ed:50:2e:6c:
64:30:5b:2b:c3:97:9a:70:68:b1:15:5c:d2:4b:38:
ff:9f:86:83:72:4c:df:75:3c:47:06:da:e7:fb:bc:
40:22:cf:4b:1a:28:48:28:31:c5:d8:00:36:c7:10:
98:e2:33:6a:fb:62:a1:90:a4:92:47:11:99:19:66:
bc:71:61:af:36:5b:17:61:b4:1c:f2:ee:21:c8:65:
76:e0:bd:81:c4:1d:ea:f3:da:dc:ce:da:d6:a0:3e:
24:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:EE:E8:07:C9:98:32:E0:B6:0F:B7:F7:DC:19:1F:1C:A2:4E:51:0C
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136342e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.164.0/24
Signature Algorithm: sha256WithRSAEncryption
28:53:7b:35:8d:dd:10:81:8c:46:97:e6:47:d4:8e:f6:16:9f:
21:c8:07:06:25:8b:8c:2f:fe:76:61:14:fd:7c:b5:65:b4:4c:
d6:53:72:1c:50:83:84:8d:80:2c:d8:91:c2:cc:4d:9b:29:5f:
cd:d5:1e:43:2c:2c:e4:c6:6d:b9:8a:12:14:f7:78:9c:67:12:
30:d5:9f:7a:62:d7:2f:f2:8d:a2:e0:b3:43:50:b7:80:10:24:
f4:d4:a9:44:34:88:ea:dc:dd:71:5d:64:04:4f:31:88:2c:7a:
75:99:20:22:ce:05:0c:ca:d4:92:01:ad:05:fb:18:37:7e:1d:
21:e0:ae:95:22:7b:ab:e4:3d:9e:4d:a7:0f:28:2a:d7:97:5c:
b2:13:4d:31:8b:4e:2b:3b:10:b1:1f:f5:b8:5f:62:7d:14:d2:
51:0a:2f:9c:0f:99:fb:96:8a:35:b8:35:89:41:ec:d8:16:f3:
cd:00:f1:98:99:02:e2:6a:7e:de:c6:2d:1f:24:3a:17:35:7e:
65:3f:20:39:f4:5d:f8:3f:c5:7c:8d:76:c4:df:f2:9e:1c:29:
43:24:03:67:5f:fc:fd:a4:af:f6:c3:7c:e5:ec:c6:9e:9a:97:
dc:54:35:72:2a:e8:f8:fd:ee:f1:56:a6:1e:65:7f:e3:5d:bc:
dc:87:7a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:10:56 2024 by rpki-client on console-fra.rpki-client.org