Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136372e302f32342d3234203d3e203631333137.roa
File: 39352e3136392e3136372e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: QcG8fvTATh92/VekSQedC2ghEjJNQSXFqjoQVeRvpHE=
Subject key identifier: 6F:62:6D:ED:69:60:DA:8C:80:9F:DB:D3:8C:AE:9B:BF:DA:EF:4F:B7
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 364C84A6697F8B051B07D5801EC3C6039B6CDFAA
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136372e302f32342d3234203d3e203631333137.roa
Signing time: Wed 03 Jul 2024 21:09:40 +0000
ROA not before: Wed 03 Jul 2024 21:04:40 +0000
ROA not after: Wed 02 Jul 2025 21:09:40 +0000
asID: 61317
IP address blocks: 95.169.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Sep 2024 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:4c:84:a6:69:7f:8b:05:1b:07:d5:80:1e:c3:c6:03:9b:6c:df:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jul 3 21:04:40 2024 GMT
Not After : Jul 2 21:09:40 2025 GMT
Subject: CN=6F626DED6960DA8C809FDBD38CAE9BBFDAEF4FB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d4:cb:06:2b:58:bf:1f:9a:38:7d:83:10:b4:
1e:11:ef:54:46:06:03:c8:e2:24:ac:a8:83:e8:b2:
6f:01:47:57:cc:82:1a:9b:fd:b6:c7:80:d2:9d:93:
97:b5:d0:06:fd:28:a1:99:66:f5:ee:e1:a8:e1:a6:
61:1b:6d:81:2c:ff:3e:6b:89:22:86:7c:2b:bc:a1:
e5:ad:fa:53:4b:1c:97:73:c4:14:b3:6f:f4:ce:17:
09:cb:52:46:6e:2e:ed:9a:1e:8a:25:0d:35:47:d4:
ea:1c:69:cb:3b:9d:1e:f5:89:d6:52:b1:69:e1:2c:
89:53:4c:2b:be:17:38:bc:80:d0:9c:b2:9a:3f:4f:
c3:83:6b:50:c0:22:1b:7f:01:0e:34:98:95:ed:5e:
b8:d9:72:19:1e:5a:1d:c7:d1:5d:b5:4c:d5:90:e2:
20:dd:d9:b2:06:e8:ea:93:d6:91:79:70:d4:ee:37:
0a:c6:24:d8:bd:0f:0a:c2:87:10:cd:eb:f2:14:ed:
5b:54:66:77:53:55:e1:ba:a3:fe:8b:55:27:55:a4:
bf:6b:16:41:c8:ed:05:ff:fc:7e:8c:60:f9:a7:52:
64:7b:b1:59:e6:00:69:88:20:9c:87:12:dd:d1:82:
cb:cd:31:4f:1d:0d:9d:f3:0f:d1:39:c4:2e:57:58:
26:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:62:6D:ED:69:60:DA:8C:80:9F:DB:D3:8C:AE:9B:BF:DA:EF:4F:B7
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136372e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.167.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:9c:e6:a7:89:4a:36:d5:83:29:ac:27:ab:4b:f1:96:2c:c4:
e1:f4:16:b5:16:06:72:b8:0e:f0:c5:ff:c2:b1:82:7b:a0:c8:
78:bc:41:d2:12:ab:83:7c:51:3a:00:2f:c6:6a:5d:f7:9a:1d:
1d:29:d9:ba:f6:8a:d6:50:44:f8:85:8c:5b:e6:ac:f5:78:d1:
02:c9:db:89:30:77:42:c6:8d:87:e5:91:87:42:09:a6:a4:0b:
95:54:3e:0c:6e:4c:20:9d:31:94:e0:8b:1b:24:09:ee:e3:58:
d9:c0:33:49:15:75:92:63:f2:5e:43:f6:13:82:98:32:08:39:
1f:87:b8:cc:a7:59:08:58:ea:90:73:e0:0f:7b:02:05:7e:aa:
a3:5f:ff:f4:82:ae:37:5f:a5:ae:0b:a9:6a:ba:6f:84:70:43:
ef:3e:ac:5d:8d:cd:f4:8e:a3:6c:d5:10:cc:f5:a4:36:f1:b4:
d5:4d:2b:0c:6f:3e:34:05:b1:d7:0d:b0:d6:79:a8:f3:df:2b:
86:1b:05:78:b8:10:a0:1a:98:b8:da:d6:a1:2e:69:02:43:02:
23:e4:4b:b2:21:09:d8:76:ae:f3:8f:b4:fc:84:e5:99:ef:10:
32:f2:39:13:2a:40:f8:73:bc:c0:69:d3:65:d6:4a:c2:4c:b5:
94:e7:9a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 19:04:31 2024 by rpki-client on console-ams.rpki-client.org