Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137362e302f32342d3234203d3e203239383032.roa
File: 39352e3136392e3137362e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: W2wSD0WVHEuXnyeD4kOxlD/VNcZ2ajX2pNWCbSeGINU=
Subject key identifier: B3:2F:85:B3:38:11:17:31:F8:6A:04:7E:14:9F:C2:29:82:C1:AC:F2
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 1C8219E5AD8C19BC21B71A644F26F8F24A15BA0A
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137362e302f32342d3234203d3e203239383032.roa
Signing time: Sat 15 Jun 2024 14:34:58 +0000
ROA not before: Sat 15 Jun 2024 14:29:58 +0000
ROA not after: Sat 14 Jun 2025 14:34:58 +0000
asID: 29802
IP address blocks: 95.169.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 20:23:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:82:19:e5:ad:8c:19:bc:21:b7:1a:64:4f:26:f8:f2:4a:15:ba:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jun 15 14:29:58 2024 GMT
Not After : Jun 14 14:34:58 2025 GMT
Subject: CN=B32F85B338111731F86A047E149FC22982C1ACF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5d:a5:84:d2:a7:9e:75:51:21:a2:65:d7:8a:
11:58:f7:6f:3e:6d:85:b5:39:06:55:bd:3a:a5:51:
ba:fd:67:ef:11:32:3c:6c:a1:c4:7a:5b:dc:71:a6:
b8:05:df:fa:ef:92:a8:99:c8:fd:f1:62:35:0c:e3:
ef:19:fd:ee:74:48:4b:c4:56:0c:c2:d1:82:36:9c:
9d:bc:8e:47:52:0b:bd:98:bb:d5:e8:d2:a3:53:07:
28:97:13:44:af:f4:8f:08:5c:dc:ad:e8:25:3a:a6:
69:4a:43:28:03:36:2a:c7:20:19:0a:e4:21:0f:cc:
81:0f:37:54:5f:13:0d:2a:53:47:46:11:f8:68:44:
e2:c8:85:f8:58:29:47:84:e7:47:93:31:a6:d4:fa:
e3:a0:fe:f8:c4:07:8d:a0:e3:0b:0f:78:9d:e7:21:
5b:98:ea:37:df:13:f5:95:e8:12:d0:e0:77:ab:58:
bc:5d:9a:c1:86:d9:be:6b:82:0e:10:76:14:99:14:
ee:f9:b9:31:9b:3f:09:4c:63:b9:82:a4:2e:25:d0:
67:e2:b8:b8:08:35:1c:76:25:77:b4:c6:a9:37:c6:
e1:6b:15:60:c7:14:f2:e3:63:8d:41:70:59:77:16:
dc:12:00:ad:9e:89:c6:af:de:aa:14:b2:cc:96:00:
b7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:2F:85:B3:38:11:17:31:F8:6A:04:7E:14:9F:C2:29:82:C1:AC:F2
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137362e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.176.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:21:ab:2a:d6:10:85:f1:e3:8a:a3:57:c8:ce:c1:09:8e:39:
2c:1b:54:ae:42:ce:f1:11:3c:c7:1d:51:c4:dc:6c:34:d1:37:
31:22:aa:a1:b3:83:c2:3b:8a:55:c8:15:1f:59:cb:6f:b6:6f:
b4:ed:41:8e:4a:af:a9:2a:16:41:8f:0a:95:c5:c0:18:76:20:
a4:d1:6d:38:f8:75:01:5f:50:b7:d8:cb:e6:11:35:fb:09:84:
ba:3c:f3:7d:51:60:64:a1:61:00:6f:76:8c:8c:a0:3f:62:8a:
86:fb:85:e4:29:d3:ba:94:3c:fa:43:a1:aa:23:00:67:b0:9b:
9d:0f:90:7a:35:46:b1:06:ed:04:db:c7:c2:22:63:d3:fa:1b:
56:2f:bb:0a:a2:89:0f:70:0c:d8:b6:85:a1:65:2f:1e:9f:e1:
c5:aa:ba:6c:5e:ea:32:91:c2:99:44:ed:82:e8:ce:cc:59:4a:
34:27:be:d0:e8:f0:43:b1:3b:b4:01:8f:c8:3c:79:5b:52:b8:
50:5a:92:0b:73:d4:07:03:b6:61:80:4f:0a:d8:1d:05:b3:01:
a7:14:8b:47:e0:0c:ff:4f:3c:59:6d:f9:74:f4:3e:12:cb:59:
4c:3a:3a:a2:3c:06:0b:1a:2c:81:ea:17:20:92:d9:77:6b:ba:
29:46:3d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 03:58:46 2024 by rpki-client on console-ams.rpki-client.org