Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136352e302f32342d3234203d3e20323132323338.roa
File: 39352e3136392e3136352e302f32342d3234203d3e20323132323338.roa (raw, json)
Hash identifier: k2rmCLtrPjfEclFb3Q52NvSCmQDHYDGN0/R9b2nM/SQ=
Subject key identifier: D8:2C:2B:11:12:6A:91:C5:14:EC:9B:32:02:2B:49:24:AA:72:63:87
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 36A9D780A6DCE7575A31DA597D0462D8972CE973
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136352e302f32342d3234203d3e20323132323338.roa
Signing time: Tue 20 Aug 2024 15:28:43 +0000
ROA not before: Tue 20 Aug 2024 15:23:43 +0000
ROA not after: Tue 19 Aug 2025 15:28:43 +0000
asID: 212238
IP address blocks: 95.169.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:a9:d7:80:a6:dc:e7:57:5a:31:da:59:7d:04:62:d8:97:2c:e9:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Aug 20 15:23:43 2024 GMT
Not After : Aug 19 15:28:43 2025 GMT
Subject: CN=D82C2B11126A91C514EC9B32022B4924AA726387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:04:8a:19:03:84:7e:77:e3:f9:e5:06:8c:76:
5a:1a:8f:d4:b8:4e:b4:6c:76:85:be:2f:17:93:17:
92:49:ee:7f:80:3a:ee:c0:26:4e:77:cd:fb:04:3b:
6b:7b:1d:ba:e2:31:1f:c3:7b:24:cf:67:0d:0b:8a:
09:ba:56:47:84:9e:5b:33:76:5d:e5:35:c8:cc:4a:
c7:5f:a1:12:03:be:7e:0e:80:87:58:65:4e:b0:f5:
3b:24:d7:33:af:52:ba:ad:2e:b3:0b:b3:91:6e:e9:
15:67:26:84:0c:95:d6:48:49:7b:4b:0e:9c:c1:cf:
2f:9e:96:84:5b:12:cf:a6:16:16:a8:e3:b4:37:dd:
e7:7f:81:c3:56:c0:f9:85:10:e2:34:fc:89:ff:7b:
42:2f:07:1c:35:a5:fa:e4:85:a7:a0:60:cc:4b:c0:
11:0f:72:78:51:e8:f6:de:dd:71:71:75:fb:19:8a:
b6:bd:42:c2:86:02:2f:dd:c0:a5:99:09:c4:69:83:
e6:74:0f:3e:27:f8:0c:df:26:bd:f2:ea:b3:35:fc:
f5:28:65:9f:0f:61:ba:57:0d:72:26:32:05:56:79:
10:07:f7:04:37:a7:fc:cc:f2:3b:38:55:7a:d5:e2:
eb:7f:c4:d3:83:9d:43:b3:55:c9:a8:a1:18:1b:3b:
e1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:2C:2B:11:12:6A:91:C5:14:EC:9B:32:02:2B:49:24:AA:72:63:87
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136352e302f32342d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.165.0/24
Signature Algorithm: sha256WithRSAEncryption
99:4a:3a:a0:f9:5e:45:5f:b9:6b:c5:19:07:65:d4:98:aa:a7:
87:e2:ad:ee:1e:cf:42:62:f3:a6:a5:96:b3:dd:61:ac:f9:a3:
09:d7:46:5c:f6:ea:62:da:e1:a7:26:1c:10:04:8b:29:d4:bb:
8e:6b:27:4b:7d:d4:31:0d:b4:2f:b4:d9:8d:c3:d0:d9:80:81:
43:dc:cf:6e:cf:a0:e5:d0:bd:87:1d:c0:7e:bb:c7:0c:e1:f2:
1e:75:46:8c:65:4e:6c:3c:9a:e2:55:5c:91:42:8e:b7:23:d4:
bf:ed:4e:64:d5:78:b2:cc:ee:6b:5e:7a:b3:c7:60:13:78:c6:
95:b7:4a:ad:b1:c1:16:21:a3:a6:4e:6a:94:5b:0b:84:b3:07:
82:84:bc:d5:e2:a4:e9:49:61:b4:c8:b2:20:9c:89:7d:9e:10:
76:f1:d8:eb:aa:50:cb:1a:42:13:9f:ad:26:7d:7f:31:be:74:
ba:ce:c0:b8:d3:91:cb:87:38:55:41:bb:01:03:2d:f3:ba:83:
69:dc:0d:c8:07:1f:62:5a:d1:25:0b:a5:0c:05:6b:f2:49:1a:
a6:24:a0:76:bd:3e:ca:36:a7:46:00:19:00:aa:43:9e:fd:0e:
0c:13:22:94:21:72:88:37:84:dd:b9:a3:cd:91:a0:dd:52:59:
92:a8:db:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:10:56 2024 by rpki-client on console-fra.rpki-client.org