Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136382e302f32342d3234203d3e20313432313436.roa
File: 39352e3136392e3136382e302f32342d3234203d3e20313432313436.roa (raw, json)
Hash identifier: fML6Hj9Yt0ySBaRVfis1oR7SG8ts6hYL93zO0OJa8ls=
Subject key identifier: 80:DE:D8:20:A6:51:FF:95:A3:34:8C:C7:80:EE:CD:3A:76:F4:53:6D
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 12CDC2351F2C6806E03FAF26DC81A7BC2A2E1462
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136382e302f32342d3234203d3e20313432313436.roa
Signing time: Mon 08 Jul 2024 02:23:13 +0000
ROA not before: Mon 08 Jul 2024 02:18:13 +0000
ROA not after: Mon 07 Jul 2025 02:23:13 +0000
asID: 142146
IP address blocks: 95.169.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:cd:c2:35:1f:2c:68:06:e0:3f:af:26:dc:81:a7:bc:2a:2e:14:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jul 8 02:18:13 2024 GMT
Not After : Jul 7 02:23:13 2025 GMT
Subject: CN=80DED820A651FF95A3348CC780EECD3A76F4536D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:91:c1:02:aa:42:d8:b6:11:48:5f:01:12:4a:
2c:66:d4:3a:34:b6:47:e5:72:e7:66:59:c0:14:60:
70:72:f3:bf:62:1d:c9:e1:54:76:ce:69:02:2f:e5:
67:07:7e:33:73:2c:52:0c:ff:63:85:bd:f1:81:9d:
7b:09:ff:43:02:2f:6f:a4:39:ec:ec:4d:be:7a:df:
3d:10:c4:5c:09:68:e0:c9:23:57:28:b2:89:50:52:
eb:99:7b:df:66:7e:6e:79:ef:21:d9:0d:8e:7a:03:
6c:fe:88:52:39:b3:67:90:87:14:3e:ce:91:7e:b7:
05:13:5c:d3:04:8c:22:ec:ae:87:f4:76:5f:eb:56:
30:3b:70:bc:a7:6a:66:09:ae:b7:ea:a8:ff:57:c7:
4f:c4:d5:f4:aa:53:fb:33:d4:57:30:a6:b6:dd:71:
65:e9:49:2e:82:1b:3c:ad:5a:cf:ad:84:17:e0:b6:
b4:6f:7b:f0:d9:7e:78:eb:66:ea:e8:f2:21:86:10:
c7:6c:9c:e1:aa:b6:1b:66:58:18:66:4c:77:4d:71:
fb:2a:2f:58:1f:6b:6f:45:e1:35:c0:f0:b9:ea:d2:
a3:ba:05:32:63:48:fb:cf:fb:c1:9e:9d:9e:16:02:
ef:44:ca:c3:5c:f0:82:54:61:90:f6:f4:4a:45:92:
73:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DE:D8:20:A6:51:FF:95:A3:34:8C:C7:80:EE:CD:3A:76:F4:53:6D
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136382e302f32342d3234203d3e20313432313436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.168.0/24
Signature Algorithm: sha256WithRSAEncryption
33:9a:07:8a:2d:ef:6e:de:df:f3:5d:71:21:58:be:38:02:dc:
87:98:2c:b7:bb:c1:fd:85:a0:34:c8:ed:b7:c3:b3:6f:60:83:
e2:fd:4a:75:aa:fc:00:77:b5:cc:fd:bf:9d:08:fe:45:b1:56:
1d:1c:85:70:6f:d5:89:02:b5:ea:d2:5f:ea:03:de:46:2c:21:
69:34:8e:ac:66:82:f9:52:ea:0c:03:b0:59:de:54:56:72:1c:
b0:cd:73:94:b6:34:04:a4:f8:13:7e:e3:18:46:fc:33:f8:41:
13:11:f8:e1:3b:f7:0b:9e:39:0d:9d:0e:22:7c:83:46:4b:f1:
c8:c0:f4:42:8a:a8:c4:b6:ce:7e:54:e4:92:06:73:ee:f9:85:
fb:92:d7:10:c3:93:50:4f:56:8a:76:f9:42:4b:95:10:44:91:
13:1a:92:30:ec:1b:62:49:8b:09:55:0c:35:8a:c0:83:7b:ac:
be:33:ad:26:b9:4e:dd:68:3b:34:da:b4:a6:3b:cf:c0:42:be:
49:90:1a:e5:43:fa:96:0c:b5:bd:c2:46:ac:af:5b:dc:9d:19:
c6:60:78:d1:61:15:71:1c:b7:87:83:b5:8f:34:de:df:92:92:
f0:e2:48:da:8b:98:c8:3e:86:6e:b5:f6:53:cb:eb:24:85:b8:
57:aa:9e:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:10:56 2024 by rpki-client on console-fra.rpki-client.org