Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137312e302f32342d3234203d3e203239303636.roa
File: 39352e3136392e3137312e302f32342d3234203d3e203239303636.roa (raw, json)
Hash identifier: BPZZn4HJC8PlrSppUHHZQvRvHHJtXrB2PzggT8s5dMY=
Subject key identifier: 09:67:13:06:B7:B7:DD:E0:8C:9F:7A:2C:D4:BF:02:B8:DA:1A:4F:08
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 4D9EBE56A5FB09EC10C69077888FB2635F609BCA
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137312e302f32342d3234203d3e203239303636.roa
Signing time: Thu 11 Jul 2024 09:46:44 +0000
ROA not before: Thu 11 Jul 2024 09:41:44 +0000
ROA not after: Thu 10 Jul 2025 09:46:44 +0000
asID: 29066
IP address blocks: 95.169.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:9e:be:56:a5:fb:09:ec:10:c6:90:77:88:8f:b2:63:5f:60:9b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jul 11 09:41:44 2024 GMT
Not After : Jul 10 09:46:44 2025 GMT
Subject: CN=09671306B7B7DDE08C9F7A2CD4BF02B8DA1A4F08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:99:5d:62:c0:08:4e:ce:ac:32:2a:a0:88:ce:
50:05:79:58:66:35:41:7b:5d:89:1e:63:51:cb:85:
29:46:6b:e0:14:b2:5e:53:a4:7f:57:36:33:b0:59:
4d:fc:9a:53:ed:eb:14:d1:36:0a:d1:cb:f1:3d:7c:
c4:89:db:12:77:21:c6:7b:d4:42:bf:a0:fb:50:6a:
6f:18:5c:dd:f6:fc:45:f5:b7:83:c3:23:6f:28:c0:
b6:94:e5:56:de:fd:7b:48:81:95:04:9c:92:57:f2:
70:2b:18:2e:af:4f:7e:e6:aa:47:ef:d4:19:1b:50:
37:11:c8:45:92:32:bd:a5:e4:68:8e:c2:2d:7f:dd:
27:90:06:77:d4:ac:62:40:96:1b:0d:c1:11:88:75:
15:fc:aa:88:0e:d2:72:66:74:81:1b:76:aa:a0:4a:
4e:a7:93:07:08:9a:08:13:8d:c2:ee:66:f1:39:b9:
3f:b6:09:52:a6:45:6e:1a:6a:cc:20:17:fb:77:e5:
da:5c:86:53:88:e6:33:96:92:17:4b:92:2d:ed:f9:
21:cf:9c:fd:6c:27:27:bd:36:df:d6:3d:44:a7:a9:
7e:93:b1:ec:b7:1e:e6:05:db:0d:78:04:20:c9:c8:
3c:39:ae:ef:63:a2:2c:f1:22:60:ad:e7:14:ed:96:
70:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:67:13:06:B7:B7:DD:E0:8C:9F:7A:2C:D4:BF:02:B8:DA:1A:4F:08
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137312e302f32342d3234203d3e203239303636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.171.0/24
Signature Algorithm: sha256WithRSAEncryption
50:0e:ae:f0:6e:ca:b3:1b:5c:16:7e:22:4f:7b:02:04:78:ec:
bd:7f:ee:3a:ca:43:55:79:2b:7b:b3:a1:1e:0e:d8:b6:c6:46:
68:af:93:55:e3:58:98:27:18:be:3d:e9:bf:2d:7e:e1:c8:5c:
09:c5:ca:12:b5:ff:be:15:eb:2e:ee:4f:cb:56:df:55:d8:f1:
f0:fa:6d:2b:ba:4c:41:0d:5a:fb:d5:5a:3e:4e:2c:ac:84:13:
06:bd:81:65:ec:ea:2a:04:e9:79:04:ec:97:20:b4:4b:4f:57:
f0:2a:43:a4:f3:df:28:51:c9:ca:11:9c:57:25:76:94:66:4c:
27:df:c3:d8:f8:83:9f:e2:7f:5c:5b:68:a2:ec:61:ef:4f:1a:
4a:e6:c9:eb:c3:87:0f:0b:1b:4b:4b:5d:23:6a:9f:34:59:a0:
4b:2c:ef:71:d1:26:0b:c7:fe:74:c0:f5:e4:b8:14:06:a5:81:
95:be:b0:12:bf:55:78:af:3f:d9:01:86:79:73:0e:e5:94:89:
17:07:02:a4:a2:fb:3b:74:75:b2:1c:5f:3e:a0:41:13:76:80:
aa:f5:61:1d:f9:ae:09:cd:37:99:e2:6b:94:36:4b:e4:e3:71:
e1:59:c7:18:93:2d:b5:57:a4:f6:89:6a:47:6e:c2:7e:b6:78:
9b:a9:7e:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:21 2024 by rpki-client on console-ams.rpki-client.org