Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136362e302f32342d3234203d3e203633313530.roa
File: 39352e3136392e3136362e302f32342d3234203d3e203633313530.roa (raw, json)
Hash identifier: ljBCipU/L6umRbNZL3Yvl01GVvFtdwKZQEQ9yUdxVd4=
Subject key identifier: 0A:9F:73:80:5F:56:DC:60:75:16:05:55:09:9A:6C:2A:BE:7E:52:A0
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 33ED0FEEAD4232409FBA3AEDE36C6223695CD8D2
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136362e302f32342d3234203d3e203633313530.roa
Signing time: Sat 09 Nov 2024 08:48:26 +0000
ROA not before: Sat 09 Nov 2024 08:43:26 +0000
ROA not after: Sat 08 Nov 2025 08:48:26 +0000
asID: 63150
IP address blocks: 95.169.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:ed:0f:ee:ad:42:32:40:9f:ba:3a:ed:e3:6c:62:23:69:5c:d8:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Nov 9 08:43:26 2024 GMT
Not After : Nov 8 08:48:26 2025 GMT
Subject: CN=0A9F73805F56DC6075160555099A6C2ABE7E52A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:83:c5:74:9a:db:1e:23:99:6f:d7:5c:0e:b2:
24:e2:a9:24:7d:ea:78:dd:fd:04:2c:e5:52:e2:a4:
ef:4d:3a:1f:61:43:5c:a0:d3:3a:d2:ba:20:12:0c:
24:46:ba:d3:a1:48:9c:df:a0:75:60:60:f1:cd:02:
37:47:25:c2:5b:3c:83:fc:34:dc:91:92:ad:a9:8f:
a0:ef:d2:db:d6:3b:4c:ce:f5:b2:f7:f1:87:13:7b:
6c:5d:7b:65:c4:78:39:a7:0f:d0:61:bb:b7:c8:d3:
f8:d5:76:53:59:54:fa:e1:7c:98:14:ef:fe:48:45:
e5:70:5e:ae:82:8e:85:79:3b:44:3b:47:11:e8:7f:
fb:00:c1:7e:55:96:22:09:dd:0e:8c:1f:6e:17:ab:
75:a4:25:bb:e1:21:81:4c:87:fa:3d:c9:9c:54:55:
11:4d:71:05:31:5a:5a:0f:95:7c:d6:d3:c2:ac:3c:
6a:df:ae:9a:45:d1:a8:e3:be:71:cc:91:c4:ba:9d:
05:35:fc:f0:5b:97:80:13:86:70:54:70:96:ae:32:
0b:30:0c:65:57:84:ad:d7:16:79:e3:7e:df:87:70:
6e:f4:e3:bc:ba:69:6e:d1:cf:a8:6d:c2:76:dc:eb:
72:a6:2d:ad:ab:d2:f7:3b:7a:b8:a7:c5:7b:e0:0d:
bf:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9F:73:80:5F:56:DC:60:75:16:05:55:09:9A:6C:2A:BE:7E:52:A0
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136362e302f32342d3234203d3e203633313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.166.0/24
Signature Algorithm: sha256WithRSAEncryption
39:78:7b:6c:11:89:98:36:d5:7b:01:75:8c:69:93:8c:b0:63:
df:d1:ff:d9:e2:db:e4:f3:27:26:3a:35:88:21:ba:c4:d7:56:
8a:b1:c9:2d:04:2b:5d:fd:f0:17:b3:9d:8f:db:ba:f6:72:3e:
d5:ad:26:ef:47:f7:90:ab:12:85:c8:10:eb:b8:4d:23:1d:62:
12:65:97:7d:30:87:0e:47:b8:45:9e:74:d8:67:a9:06:11:94:
19:63:4a:1e:6b:d4:56:98:71:db:e4:15:9b:36:cc:96:5b:95:
ad:9d:f9:32:fa:27:d5:d5:cf:a3:b7:e9:fb:51:37:8a:4a:8b:
4e:1a:17:4a:e9:1d:63:df:b7:dc:36:10:ac:2d:17:f2:a0:bf:
74:34:3e:b6:ee:fc:e3:97:d3:32:61:53:82:2d:b4:00:13:f9:
34:7c:0f:ca:0a:f7:d7:29:21:49:f9:16:73:f1:92:4a:ca:87:
5f:ab:06:27:69:9a:84:8f:c6:e5:90:fe:08:e4:04:69:25:61:
5e:e1:0f:41:c8:a7:6f:dd:0a:9a:c0:e2:50:a3:0b:fe:c0:68:
99:b2:69:b4:71:66:13:b7:b8:cd:01:1f:c3:0d:87:f6:b3:f3:
11:46:9f:21:e6:74:8e:5a:eb:24:fd:a3:4c:0d:29:a6:df:c3:
d1:b0:2a:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:20 2024 by rpki-client on console-ams.rpki-client.org