Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137352e302f32342d3234203d3e20333935383939.roa
File: 39352e3136392e3137352e302f32342d3234203d3e20333935383939.roa (raw, json)
Hash identifier: cwAjDZajc3lU6xeAJltfnx7iTUsBRb3RiVERyqVpaGs=
Subject key identifier: 07:5E:44:3E:F6:85:D8:FB:C4:4B:70:10:5D:75:D3:E1:10:02:9E:FC
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 06988AD374CCE7E97F574BFFDE04FB83F5B6D679
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137352e302f32342d3234203d3e20333935383939.roa
Signing time: Mon 10 Jun 2024 11:44:19 +0000
ROA not before: Mon 10 Jun 2024 11:39:19 +0000
ROA not after: Mon 09 Jun 2025 11:44:19 +0000
asID: 395899
IP address blocks: 95.169.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:98:8a:d3:74:cc:e7:e9:7f:57:4b:ff:de:04:fb:83:f5:b6:d6:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jun 10 11:39:19 2024 GMT
Not After : Jun 9 11:44:19 2025 GMT
Subject: CN=075E443EF685D8FBC44B70105D75D3E110029EFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f1:6f:0f:35:16:5d:cb:93:19:c3:2b:42:3b:
f3:5f:d0:4d:6e:0e:d6:62:ea:70:23:4f:26:f6:76:
40:91:b7:33:2b:a8:9e:a9:b9:ae:b3:ff:ce:04:36:
04:f3:7a:40:58:59:b9:4a:0e:db:fa:f3:0a:7e:ce:
ca:15:a5:e2:71:ab:d6:3b:23:d4:9c:8b:0f:1e:3f:
75:b6:b8:23:b2:d9:48:a5:01:85:06:55:8c:16:52:
b9:d9:29:53:60:ae:50:65:de:14:e3:2c:d1:9b:9f:
87:62:2b:37:06:e4:3a:2a:fb:8c:46:43:3b:1a:8e:
21:8b:79:ca:12:7b:84:31:4a:1e:4b:d4:cd:de:80:
bd:d0:8a:9b:d9:1a:0b:50:74:90:ac:3e:11:0a:3c:
99:54:27:7e:07:9f:01:30:35:ab:3f:0b:b0:b1:34:
a6:10:05:db:6e:88:1d:62:d2:44:d8:db:2d:b9:c3:
3e:31:c5:93:e6:6e:86:b9:ea:8f:c1:52:52:b3:67:
59:87:96:c1:1b:9c:3e:94:a2:60:2c:86:29:f5:91:
76:02:09:42:25:b3:6c:d4:00:76:d8:19:03:d9:09:
34:57:e3:c4:6b:c4:26:00:b5:01:62:82:a6:8d:f2:
03:4e:ae:79:87:2f:31:6c:73:6f:b5:a9:b0:d6:3f:
18:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:5E:44:3E:F6:85:D8:FB:C4:4B:70:10:5D:75:D3:E1:10:02:9E:FC
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137352e302f32342d3234203d3e20333935383939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.175.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:bb:bf:06:49:e9:55:cf:4a:04:f0:a7:3c:82:3b:3b:31:76:
3b:1f:de:a5:bb:55:5f:95:9f:64:1d:d1:63:6b:c2:96:76:11:
41:31:4a:17:f8:fb:b1:74:d2:50:94:34:4b:2c:0d:d2:e3:42:
d6:d2:88:3d:55:69:7c:57:23:d2:15:9c:94:3c:0d:4a:bf:db:
35:00:40:23:e4:9b:14:12:a4:41:99:16:4e:8e:b7:d8:5e:5c:
15:62:de:f1:98:63:a8:f2:87:ab:6b:37:db:2a:cd:0e:e6:13:
d3:fc:2a:96:dc:77:38:d5:46:55:54:85:5b:9a:f1:b0:1d:ed:
86:2c:4a:44:a8:20:ef:7b:aa:00:15:8e:1e:3b:e9:ea:46:52:
dc:e4:aa:0d:7d:5f:42:ed:6f:06:27:55:1a:bf:17:aa:96:5f:
e7:ec:0a:39:a8:d5:88:11:c4:c9:1f:71:19:dd:cd:4b:93:52:
2c:43:2c:90:e3:d7:c0:61:e2:bc:48:c0:9a:aa:93:3f:54:45:
c7:4c:41:5d:f0:2d:aa:4d:e3:39:e0:0a:25:68:c7:7a:d9:ad:
b6:fe:2e:57:f5:6c:7d:e2:c0:c9:0f:8f:ab:d2:f1:e4:7e:4a:
e0:12:c9:82:83:bc:36:6c:3d:43:21:fc:de:40:08:ca:ba:05:
af:1a:6e:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:20 2024 by rpki-client on console-ams.rpki-client.org