Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137322e302f32342d3234203d3e203236373337.roa
File: 39352e3136392e3137322e302f32342d3234203d3e203236373337.roa (raw, json)
Hash identifier: kPoor4Gh+UPW39Q/KGdOpTzAG5561A2FX0PtJzKQagY=
Subject key identifier: 74:66:C7:04:22:D3:50:00:5D:35:9A:C7:C5:FE:54:78:D6:21:3C:C3
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 6230C30DB5B5619F84E3CBB2E06F05CD2F9ECFD3
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137322e302f32342d3234203d3e203236373337.roa
Signing time: Mon 10 Jun 2024 11:44:18 +0000
ROA not before: Mon 10 Jun 2024 11:39:18 +0000
ROA not after: Mon 09 Jun 2025 11:44:18 +0000
asID: 26737
IP address blocks: 95.169.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:30:c3:0d:b5:b5:61:9f:84:e3:cb:b2:e0:6f:05:cd:2f:9e:cf:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jun 10 11:39:18 2024 GMT
Not After : Jun 9 11:44:18 2025 GMT
Subject: CN=7466C70422D350005D359AC7C5FE5478D6213CC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:88:4e:84:0b:ff:a8:59:8a:b8:f5:79:60:dc:
19:f4:d4:6f:72:fc:c4:31:3a:e9:3b:33:5c:44:64:
a3:58:67:7c:dd:37:7b:14:9e:e7:7c:f9:d9:ed:34:
2e:5e:5f:d0:c4:e5:b3:0c:b2:5f:92:9a:1e:d1:63:
22:8e:ef:7d:9e:af:68:75:a0:57:a4:1b:d2:db:2f:
8b:24:4e:c2:cd:c6:16:26:25:bf:2c:12:79:64:ac:
65:2c:48:47:83:7b:7a:fe:54:08:fd:5f:c3:d7:ab:
ca:5a:0a:4f:3c:61:89:35:7a:64:c2:f5:7a:ee:96:
c0:f5:18:98:cc:8c:eb:38:0a:aa:3d:30:43:70:fa:
40:a2:be:f0:ee:4d:d8:90:b5:02:87:9c:1f:b8:2e:
3b:30:96:9e:72:0c:39:86:60:64:6f:c4:88:aa:9b:
fe:05:ff:c5:cc:80:aa:57:18:b7:aa:9c:79:c8:ea:
f0:d1:e1:02:7b:07:7a:f2:e2:47:88:03:be:dd:e9:
42:47:9b:6c:a9:89:6f:d8:2d:5d:ab:34:b2:92:06:
c0:49:a8:10:a7:21:e0:8e:f5:d1:1c:a5:61:6f:35:
06:7a:06:e5:f3:f6:85:98:6a:b9:fa:24:b1:af:b8:
f2:e8:9e:14:c6:00:44:48:9c:fc:56:aa:de:4f:6f:
db:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:66:C7:04:22:D3:50:00:5D:35:9A:C7:C5:FE:54:78:D6:21:3C:C3
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137322e302f32342d3234203d3e203236373337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.172.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:1e:de:75:6f:c6:2d:6a:96:76:da:3d:85:56:84:2b:85:c1:
ad:a2:d5:ca:ee:06:c6:f5:b4:d6:1b:a1:b5:23:16:3c:b2:43:
4d:d2:b2:c7:65:e1:f2:08:36:bf:84:fc:7b:49:46:98:79:9c:
3e:a4:50:33:6c:81:2d:59:99:33:9b:82:87:fa:50:08:4a:ac:
f1:77:ba:fa:2f:83:18:9b:f2:83:9c:64:c9:a5:53:88:bc:55:
bc:54:3b:8f:25:73:5e:e4:92:73:4b:08:26:a3:ab:43:9c:f9:
4d:2f:69:e1:8e:2e:a1:5e:88:c9:2e:80:be:4a:de:5b:2d:41:
3f:22:22:2f:a4:fc:86:a0:c7:7a:d1:ab:39:a8:bd:f7:8a:63:
68:e5:9e:67:78:83:01:f1:88:8e:ce:59:94:14:cd:fc:80:4d:
88:90:37:30:de:72:ec:3a:a1:9d:12:c1:68:b5:49:10:0a:de:
c5:a2:39:0b:f5:f3:b4:97:ad:b7:1d:d8:62:70:e6:f0:05:60:
f1:ec:d5:bc:ff:55:af:7c:e7:9c:d5:a1:93:8b:3b:de:e3:d1:
a1:b2:72:13:08:f8:d7:7f:55:cf:e9:be:41:e4:53:de:d2:97:
59:52:2c:b1:fd:e9:8a:23:dd:36:cd:fe:4b:4e:f3:ad:7d:ec:
74:90:f4:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:20 2024 by rpki-client on console-ams.rpki-client.org