Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137362e302f32342d3234203d3e203631333137.roa
File: 39352e3136392e3137362e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: K4zqbHrVUw1VXtnaOYskyJnZGE4ltOFdf6L4L0F2XmE=
Subject key identifier: 13:10:28:56:3D:50:F8:21:1D:6E:6C:25:4B:4F:81:E7:75:B3:49:12
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 69EAC5685646CAC7C316D31F1F9D0E5E2AFA5C9A
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137362e302f32342d3234203d3e203631333137.roa
Signing time: Mon 17 Jun 2024 14:41:38 +0000
ROA not before: Mon 17 Jun 2024 14:36:38 +0000
ROA not after: Mon 16 Jun 2025 14:41:38 +0000
asID: 61317
IP address blocks: 95.169.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:ea:c5:68:56:46:ca:c7:c3:16:d3:1f:1f:9d:0e:5e:2a:fa:5c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jun 17 14:36:38 2024 GMT
Not After : Jun 16 14:41:38 2025 GMT
Subject: CN=131028563D50F8211D6E6C254B4F81E775B34912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:78:df:13:45:88:60:af:fe:8a:ed:2c:d0:72:
3a:ff:4e:cf:2f:e3:ad:77:04:15:de:5a:1d:1f:e7:
35:3c:86:27:88:3c:17:9d:fb:ba:e4:48:8e:14:97:
20:cf:6d:2f:c2:de:a4:9d:5c:12:8e:5a:1a:a1:b1:
26:47:4b:0a:b0:5b:7d:90:05:09:3b:ad:56:ad:50:
5e:93:1c:1a:46:2a:a0:3a:cd:b2:f2:f4:5e:48:aa:
0f:8a:35:46:72:30:61:a8:cc:1e:6d:20:fd:c0:41:
11:44:40:75:63:e1:30:fc:4a:07:40:1e:64:9d:4d:
ec:b1:7f:69:de:09:19:88:60:16:90:38:12:92:66:
c5:f5:4c:46:84:ab:98:26:55:df:c3:90:68:9f:b2:
67:af:97:27:2f:90:d9:b0:c1:f4:1d:9c:c0:64:96:
9d:f5:d2:7d:bb:94:86:99:2c:64:8a:4b:ed:d9:08:
b8:c9:f5:13:93:7a:83:a4:56:3d:3c:72:8f:e0:b6:
64:62:f8:ee:9f:04:89:11:1a:f9:c8:94:81:39:35:
5e:38:09:4a:2b:0f:0b:93:e0:a5:74:31:c8:93:b5:
cb:9d:6b:b0:d1:19:a1:34:ab:10:60:77:e1:2a:8a:
a9:ec:13:24:09:70:03:1d:3f:9c:d0:9b:1f:af:dc:
fb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:10:28:56:3D:50:F8:21:1D:6E:6C:25:4B:4F:81:E7:75:B3:49:12
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137362e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.176.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:cc:4a:df:f2:41:7f:7d:d3:59:66:df:d6:95:5f:f4:5d:b2:
04:ef:20:e0:90:6e:38:e1:a3:00:2f:e9:9e:f7:47:7d:98:0d:
0b:95:c2:07:61:1a:e1:45:8f:56:49:fa:d8:22:82:d2:90:68:
3d:4b:ae:9c:aa:f7:0b:3b:33:15:11:0a:b7:a6:1a:35:9a:8c:
56:ab:3c:35:30:60:95:08:d1:af:e5:c2:4e:d4:cd:d3:7e:9e:
95:dc:a9:f8:70:00:42:43:81:59:7d:bb:76:f1:aa:76:a8:09:
3c:ce:bf:2c:99:55:72:2e:5b:d2:df:9e:ee:7c:3a:60:03:00:
ee:d1:c4:3b:b0:3d:b5:76:04:23:82:e7:d5:4c:07:68:f7:62:
18:f1:63:a7:50:3b:a1:9a:63:6f:07:5a:b3:ac:05:82:43:62:
84:3b:ba:c7:64:29:fb:0a:01:fd:a7:4e:60:40:fb:06:66:1e:
97:9e:73:95:05:d7:88:5e:66:3b:cc:c2:91:af:e2:ee:f0:f6:
58:b0:b2:d7:73:d1:67:73:3a:ae:3b:7f:08:e8:ad:a5:f0:04:
33:e4:fa:08:1d:e5:db:6d:06:7b:f6:04:e6:98:ad:25:3a:01:
5b:4a:ce:ee:13:22:18:03:b3:08:18:88:5e:d3:0e:88:02:41:
a8:c5:64:0e
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUaerFaFZGysfDFtMfH50OXir6XJowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWU1NzY5OTYzODhlOTRiOGM3YWIyMGVmZmIyM2JkMTFi
ZWNiNDEwODAeFw0yNDA2MTcxNDM2MzhaFw0yNTA2MTYxNDQxMzhaMDMxMTAvBgNV
BAMTKDEzMTAyODU2M0Q1MEY4MjExRDZFNkMyNTRCNEY4MUU3NzVCMzQ5MTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCreN8TRYhgr/6K7SzQcjr/Ts8v
4613BBXeWh0f5zU8hieIPBed+7rkSI4UlyDPbS/C3qSdXBKOWhqhsSZHSwqwW32Q
BQk7rVatUF6THBpGKqA6zbLy9F5Iqg+KNUZyMGGozB5tIP3AQRFEQHVj4TD8SgdA
HmSdTeyxf2neCRmIYBaQOBKSZsX1TEaEq5gmVd/DkGifsmevlycvkNmwwfQdnMBk
lp310n27lIaZLGSKS+3ZCLjJ9ROTeoOkVj08co/gtmRi+O6fBIkRGvnIlIE5NV44
CUorDwuT4KV0MciTtcuda7DRGaE0qxBgd+EqiqnsEyQJcAMdP5zQmx+v3Pu9AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUExAoVj1Q+CEdbmwlS0+B53WzSRIwHwYDVR0j
BBgwFoAUnldpljiOlLjHqyDv+yO9Eb7LQQgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAtMmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2
MTIzLzAvOUU1NzY5OTYzODhFOTRCOEM3QUIyMEVGRkIyM0JEMTFCRUNCNDEwOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25sZHBsamlPbExqSHF5RHYteU85RWI3
TFFRZy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAt
MmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2MTIzLzAvMzkzNTJlMzEzNjM5MmUzMTM3
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
X6mwMA0GCSqGSIb3DQEBCwUAA4IBAQAuzErf8kF/fdNZZt/WlV/0XbIE7yDgkG44
4aMAL+me90d9mA0LlcIHYRrhRY9WSfrYIoLSkGg9S66cqvcLOzMVEQq3pho1moxW
qzw1MGCVCNGv5cJO1M3Tfp6V3Kn4cABCQ4FZfbt28ap2qAk8zr8smVVyLlvS357u
fDpgAwDu0cQ7sD21dgQjgufVTAdo92IY8WOnUDuhmmNvB1qzrAWCQ2KEO7rHZCn7
CgH9p05gQPsGZh6XnnOVBdeIXmY7zMKRr+Lu8PZYsLLXc9FnczquO38I6K2l8AQz
5PoIHeXbbQZ79gTmmK0lOgFbSs7uEyIYA7MIGIhe0w6IAkGoxWQO
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:14 2024 by rpki-client on console-fra.rpki-client.org