Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137332e302f32342d3234203d3e203235313938.roa
File: 39352e3136392e3137332e302f32342d3234203d3e203235313938.roa (raw, json)
Hash identifier: fkawI9b1ILPJMvJMynM/vyjbeh99S5fold5V4PtTzUA=
Subject key identifier: FD:0F:EA:73:C4:76:28:F7:2A:9F:BF:A4:98:90:59:FD:07:6D:B4:BF
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 3CDCB79284DC49B34D95A3449E39ADACDFD3DC66
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137332e302f32342d3234203d3e203235313938.roa
Signing time: Wed 07 Aug 2024 16:41:11 +0000
ROA not before: Wed 07 Aug 2024 16:36:11 +0000
ROA not after: Wed 06 Aug 2025 16:41:11 +0000
asID: 25198
IP address blocks: 95.169.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:dc:b7:92:84:dc:49:b3:4d:95:a3:44:9e:39:ad:ac:df:d3:dc:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Aug 7 16:36:11 2024 GMT
Not After : Aug 6 16:41:11 2025 GMT
Subject: CN=FD0FEA73C47628F72A9FBFA4989059FD076DB4BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:07:e3:4f:3d:41:23:1e:58:bc:84:ca:1c:6d:
ed:94:d0:46:83:4b:20:a7:cd:62:49:c1:34:1c:4e:
09:49:10:74:b8:df:ec:51:d9:83:21:ee:bc:93:6a:
fb:5d:c6:45:47:be:d4:9d:e0:a0:b0:ca:5e:b1:98:
14:83:05:03:25:3f:a3:ba:33:ef:82:ea:8d:e4:fd:
8d:6a:cd:db:92:16:a1:d9:1b:fe:b9:72:76:11:c5:
5f:01:97:1f:97:33:85:ec:e0:d5:a2:50:1f:35:b5:
2d:df:11:0b:dd:e3:7a:5f:39:8c:b4:8a:0a:f7:b0:
98:cb:57:8e:f1:2a:28:3a:43:0e:e7:10:a1:7d:2a:
02:b6:14:16:09:96:fb:0f:d1:f3:e5:23:50:f5:15:
86:ac:ed:b2:45:aa:41:a6:38:6b:97:56:64:4b:f3:
6a:17:44:a0:f2:1e:d4:92:05:0b:eb:f1:73:e5:95:
e8:b4:a1:8c:23:24:3b:50:97:07:bf:b6:0b:15:c7:
68:27:c6:46:cf:ff:53:f7:1d:58:35:b5:19:80:06:
85:a3:75:6b:fd:f4:c4:43:b5:8e:c6:5d:1b:d6:6a:
df:17:71:b4:fa:e5:9b:0d:c2:a4:47:4e:dc:20:3c:
23:ac:70:3d:65:83:17:91:2d:19:3b:39:c1:95:c0:
9d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:0F:EA:73:C4:76:28:F7:2A:9F:BF:A4:98:90:59:FD:07:6D:B4:BF
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137332e302f32342d3234203d3e203235313938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.173.0/24
Signature Algorithm: sha256WithRSAEncryption
38:23:7a:03:0b:27:93:fc:b3:25:f8:98:ee:b4:38:54:a6:1a:
b5:c8:40:39:ee:4f:57:b9:33:af:19:d3:f3:08:ba:82:36:dc:
08:f8:31:a6:84:70:88:1e:76:00:2c:f5:f0:a9:5b:64:36:d3:
83:61:c1:c2:7e:97:be:33:b5:22:ef:70:17:a7:5f:af:00:fe:
a3:1e:99:0e:36:c6:2e:0b:2c:2f:45:4b:6c:b3:42:3c:06:1a:
bd:40:63:40:ad:b5:f6:47:18:cf:f3:4a:3a:a5:b9:79:1e:ef:
b6:bc:06:3e:57:92:ab:fb:b6:9b:45:2a:4c:15:e9:fd:10:d4:
a0:b7:a8:b0:f3:ff:f8:cb:e4:83:8c:d6:a0:0d:2f:de:23:7e:
e7:5c:88:f2:80:55:70:60:3c:63:c0:a5:3f:49:8b:47:cd:17:
da:0d:8f:0a:d7:07:49:ea:09:57:4f:86:0b:f6:d0:3f:09:7d:
c0:25:cf:5e:67:84:9c:e6:ab:f6:66:39:04:0b:c2:b8:4e:a0:
c5:d9:30:7a:ca:7e:19:99:28:62:38:95:1a:9f:39:a0:3a:e4:
d4:1d:81:43:5a:cb:22:e4:92:26:6b:ed:b7:4c:d3:45:70:d8:
73:85:8c:54:1b:de:ca:1c:ad:d1:4d:2a:34:12:fc:83:91:c1:
36:98:bb:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:10:56 2024 by rpki-client on console-fra.rpki-client.org