Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137352e302f32342d3234203d3e203236373337.roa
File: 39352e3136392e3137352e302f32342d3234203d3e203236373337.roa (raw, json)
Hash identifier: oTnJ4dqTPSxwQow7v6fzBrWhztuNfVTRfhaSyTCDBl8=
Subject key identifier: FC:42:B7:95:6A:44:7E:DE:2F:63:FA:B9:A7:25:BE:5E:2A:CC:A8:61
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 39E3D33442AE08E72C442F3A6F865B9C657ED174
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137352e302f32342d3234203d3e203236373337.roa
Signing time: Mon 10 Jun 2024 11:44:19 +0000
ROA not before: Mon 10 Jun 2024 11:39:19 +0000
ROA not after: Mon 09 Jun 2025 11:44:19 +0000
asID: 26737
IP address blocks: 95.169.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:e3:d3:34:42:ae:08:e7:2c:44:2f:3a:6f:86:5b:9c:65:7e:d1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jun 10 11:39:19 2024 GMT
Not After : Jun 9 11:44:19 2025 GMT
Subject: CN=FC42B7956A447EDE2F63FAB9A725BE5E2ACCA861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9f:97:6c:74:92:2c:b4:e8:58:93:0e:8d:e5:
5e:c4:b5:64:a4:66:be:ce:4a:72:74:a7:33:44:e2:
86:03:27:be:53:68:7a:49:4c:5d:09:e2:be:01:32:
ca:69:9d:5e:66:10:65:72:78:a6:2f:ba:fa:48:32:
d3:32:bd:71:8d:92:aa:cd:1f:74:92:b7:81:30:53:
8d:77:8e:77:16:26:83:38:85:1b:60:fe:a7:3e:49:
9e:89:69:91:2a:9e:61:6f:4d:51:0d:21:9f:52:ef:
d4:6c:d2:87:fa:d8:6d:23:3b:9c:dd:03:2b:92:b1:
61:b0:e8:05:49:09:05:33:77:08:ca:e5:7f:93:04:
78:4e:74:59:cf:d8:dd:2a:97:9a:41:75:d9:6e:a6:
82:e7:c3:5e:14:96:2b:4b:2c:a3:3b:ad:79:58:0c:
d1:64:48:88:2c:5f:5a:8a:4d:88:a7:ff:8a:d0:44:
28:fa:27:09:aa:fa:30:f7:47:9a:40:5d:a3:4e:3a:
a4:0b:07:23:5d:cd:d3:8a:ae:c2:12:50:53:7d:c2:
9b:1a:3e:c0:40:b6:07:57:a8:37:1a:54:a1:7a:c6:
c0:93:27:a5:9e:58:52:5c:f5:33:3b:ed:b4:19:ba:
3c:c9:b0:49:a3:45:e2:7a:d2:79:90:2b:28:20:aa:
15:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:42:B7:95:6A:44:7E:DE:2F:63:FA:B9:A7:25:BE:5E:2A:CC:A8:61
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137352e302f32342d3234203d3e203236373337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.175.0/24
Signature Algorithm: sha256WithRSAEncryption
09:2c:0c:73:46:e8:6b:87:f8:42:b7:42:ea:1f:c3:81:d3:26:
3b:93:f0:b9:12:55:8e:f5:fb:93:d9:f2:b5:ae:62:fd:47:a8:
cd:ba:20:4d:9e:74:d8:83:1a:a7:81:2e:77:f5:0a:0c:e1:b5:
2e:e6:fb:8c:f0:e4:f8:93:06:d0:7a:9e:a9:e5:f1:7a:76:91:
9a:1d:ea:2e:6e:9d:2b:2e:df:07:fc:86:0d:1c:3f:c4:9b:3d:
b6:70:27:d6:73:9c:35:ec:33:af:53:78:8e:d1:13:25:9c:82:
4a:a1:d4:ba:dc:e1:8b:f1:b0:ef:f1:b0:74:21:90:62:60:e6:
84:00:8e:5f:68:f7:19:2c:84:4b:fe:c0:0a:f1:2d:b3:c8:d0:
db:04:2d:bb:84:ce:c7:ee:08:e7:37:39:c7:28:ac:9d:ad:92:
91:aa:da:92:13:24:cf:96:2e:9f:a4:46:76:f0:10:4d:3f:f8:
60:22:fb:2a:2b:7b:8a:fc:8f:85:ed:fb:7e:d2:47:19:f2:21:
a7:07:50:8d:c9:79:65:ea:c7:03:35:8f:14:e8:f0:a5:c4:0c:
8d:83:dd:74:a5:c7:9c:30:fa:ad:99:dc:ca:a8:d0:26:7f:60:
79:ad:b2:3c:5d:a0:d4:fb:b3:ab:85:ce:ef:f2:d3:31:1c:07:
ed:15:eb:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:20 2024 by rpki-client on console-ams.rpki-client.org