Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136362e302f32342d3234203d3e2037303138.roa
File: 39352e3136392e3136362e302f32342d3234203d3e2037303138.roa (raw, json)
Hash identifier: 6iQjltwJHinUoOP2tIF+3WDV6won3KZNBi4cDNvjXSE=
Subject key identifier: 75:55:DC:15:50:C1:43:D1:D9:C9:D0:8A:A1:BD:EF:3D:22:D9:5F:E6
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 1B4762D7817193B7AA781F81468469913D416E21
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136362e302f32342d3234203d3e2037303138.roa
Signing time: Fri 09 Aug 2024 10:59:41 +0000
ROA not before: Fri 09 Aug 2024 10:54:41 +0000
ROA not after: Fri 08 Aug 2025 10:59:41 +0000
asID: 7018
IP address blocks: 95.169.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:47:62:d7:81:71:93:b7:aa:78:1f:81:46:84:69:91:3d:41:6e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Aug 9 10:54:41 2024 GMT
Not After : Aug 8 10:59:41 2025 GMT
Subject: CN=7555DC1550C143D1D9C9D08AA1BDEF3D22D95FE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3d:61:79:72:7a:e7:fc:60:df:c7:13:7d:5f:
44:77:e4:d6:9d:07:21:47:0e:74:17:0e:f9:97:64:
30:a3:23:20:bd:fe:bd:8c:56:4c:f8:f5:ca:48:0d:
14:59:90:00:27:09:7d:08:87:eb:7d:75:94:d3:31:
ff:a2:d9:72:1c:8d:4e:49:14:53:15:df:a3:0e:61:
e4:67:3e:ba:20:ad:f0:4e:7c:c4:dd:21:c2:1d:cd:
05:2c:fd:78:47:b4:28:c1:6d:97:39:7e:e2:da:ec:
89:fa:6a:c3:9e:a1:30:1a:36:78:38:d3:b6:d1:54:
db:7c:9f:8b:26:ce:75:94:4f:7c:22:58:74:e3:b2:
0f:f2:84:fb:9e:6c:de:63:c8:7a:17:ec:b9:7d:24:
cd:dc:ce:1a:5b:14:49:fa:7a:46:17:2e:f9:95:f0:
2c:3d:25:ff:8d:aa:a6:23:2c:8c:3e:42:a0:a8:88:
5a:71:8e:95:fb:e4:67:47:84:a7:8c:d3:9e:43:50:
93:0d:7f:57:9c:67:17:1c:bf:45:0a:d4:23:97:d0:
01:4f:c4:f5:0d:6b:a2:e7:ad:34:48:ec:25:9e:02:
2f:95:7c:63:37:7a:17:df:59:4a:cc:14:44:6e:60:
1e:8b:f0:32:b0:1e:ca:37:0b:af:3a:49:6b:56:96:
8d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:55:DC:15:50:C1:43:D1:D9:C9:D0:8A:A1:BD:EF:3D:22:D9:5F:E6
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136362e302f32342d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.166.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:41:92:31:ff:35:85:0d:91:cd:20:50:70:7a:f1:47:2a:8e:
63:f4:f1:36:3f:83:f2:b3:a2:dd:22:3b:44:81:b8:06:e8:32:
c5:43:7b:f7:d8:8f:73:fd:06:10:c7:91:d4:b9:d1:d7:29:39:
37:18:d7:db:65:24:fc:d4:8e:d4:c2:ca:da:f0:3b:a9:47:6b:
10:2d:68:47:4c:e8:e4:39:c9:80:2d:f2:47:0c:c2:e3:ae:39:
f2:f3:e5:f4:2f:fa:c3:6b:88:59:b3:ce:c2:0f:92:64:85:ec:
8c:ec:9a:ca:37:ac:ea:e8:b0:94:0c:c7:2e:45:27:60:6c:86:
c1:7e:86:8a:b7:54:2e:06:48:eb:4a:e8:73:ae:1c:9d:c1:30:
60:50:8a:1c:95:84:35:ee:5e:d4:c8:69:25:95:ac:47:56:91:
bb:45:ce:9d:ba:37:26:ed:61:ab:a9:57:1b:49:e4:62:00:46:
65:c9:14:c2:d9:73:b1:6b:8e:39:05:7f:c4:d4:be:b8:b4:e2:
ba:3c:54:7d:e4:ca:16:a8:55:e1:c1:36:9e:d6:d2:85:71:ff:
9b:41:6f:6b:1d:64:e9:a3:fe:d7:24:83:4a:ff:e0:15:22:fa:
33:fe:87:ed:53:e0:83:66:37:fe:c3:80:29:93:7e:e5:ab:ba:
0b:28:56:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:07:06 2024 by rpki-client on console-ams.rpki-client.org