Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137372e302f32342d3234203d3e20323133323530.roa
File: 39352e3136392e3137372e302f32342d3234203d3e20323133323530.roa (raw, json)
Hash identifier: mDNq/c136eOKNqGjKn9d2zCstf/WQTqMPhLPPl3D700=
Subject key identifier: 1B:37:64:08:F3:AF:F0:39:F2:34:FC:4A:DE:1B:0F:DF:CF:A5:39:C4
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 6F1E6994FBB41926394D0954BB6B705AD2BDE4E9
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137372e302f32342d3234203d3e20323133323530.roa
Signing time: Mon 22 Jul 2024 08:36:43 +0000
ROA not before: Mon 22 Jul 2024 08:31:43 +0000
ROA not after: Mon 21 Jul 2025 08:36:43 +0000
asID: 213250
IP address blocks: 95.169.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:1e:69:94:fb:b4:19:26:39:4d:09:54:bb:6b:70:5a:d2:bd:e4:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jul 22 08:31:43 2024 GMT
Not After : Jul 21 08:36:43 2025 GMT
Subject: CN=1B376408F3AFF039F234FC4ADE1B0FDFCFA539C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ad:ad:6d:80:bc:7e:6d:83:48:f3:a0:d1:7c:
56:e0:55:b3:9a:8f:a1:3c:fe:9e:eb:ca:83:c0:b3:
47:75:24:c3:f3:c5:ec:43:67:9c:7c:1e:06:89:55:
8e:5b:2b:10:e8:0f:cd:b4:d5:b9:31:02:48:8a:74:
fd:94:d8:51:c1:6c:a9:6c:7c:4a:8b:10:dd:2b:90:
bf:bd:5e:1a:6c:39:f4:e8:16:ba:fd:f7:02:9e:02:
2c:61:77:f7:12:69:fa:eb:df:0b:93:77:77:de:c0:
c6:c9:14:b5:2e:48:b0:ab:32:13:36:05:7b:33:79:
87:e8:b3:a0:85:c3:5c:4d:47:12:96:7c:be:e6:9b:
08:94:42:4a:22:2d:7b:c5:cc:83:82:0b:6a:a4:1a:
89:e4:97:32:c3:53:f0:46:e9:2d:19:68:c7:46:cf:
94:ca:23:9f:e0:75:9a:bf:11:c7:da:c2:62:91:71:
22:f0:f1:90:13:d3:7d:0a:f6:8a:0b:1c:42:3c:3d:
ff:ad:39:65:f8:d9:41:bb:f8:e2:ef:37:5e:b1:77:
67:a4:a2:0f:e9:aa:c5:45:09:e5:dc:41:16:62:35:
ff:17:ba:dc:85:12:90:92:fc:0d:0d:c6:8b:54:05:
90:0e:9d:d6:1e:31:d6:1e:ea:a9:b4:ba:84:fb:21:
57:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:37:64:08:F3:AF:F0:39:F2:34:FC:4A:DE:1B:0F:DF:CF:A5:39:C4
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137372e302f32342d3234203d3e20323133323530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.177.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:2b:0c:c8:11:79:58:a0:ac:c5:30:3b:75:13:9f:ae:07:b2:
8f:55:a7:37:70:9d:cf:97:db:ad:1a:b8:55:43:b9:c1:dc:45:
34:fe:1d:d7:3a:d9:58:a5:92:1c:07:ba:7e:ef:9b:f3:27:db:
b9:84:8b:54:db:d6:08:bb:49:43:4e:71:c5:81:23:ac:58:9a:
15:18:f0:a5:31:bb:9c:52:69:23:66:ff:e1:85:54:b6:26:cc:
1f:db:b1:56:eb:e5:73:eb:9b:f7:3c:68:26:0c:83:03:ff:8d:
30:55:58:68:58:57:6e:56:9d:98:28:8a:f5:94:b0:34:b3:39:
4b:48:94:2b:fd:b7:57:e2:7a:6c:81:65:57:86:99:e1:bc:2c:
15:e1:4b:b8:be:d0:79:a3:7e:cf:c4:f7:e8:72:d2:86:11:2e:
bf:85:c7:0d:f6:41:8d:0b:a8:b1:65:db:93:04:3d:3b:b0:a5:
c3:01:6b:62:f5:bb:fc:f7:12:df:c8:99:28:20:78:6f:2a:53:
16:af:03:84:d8:e4:bc:85:02:1f:86:47:4a:6f:b7:de:c5:16:
45:9f:0f:98:67:9a:b2:45:a0:59:b1:d6:a0:03:13:b3:8e:60:
49:12:82:e7:b4:6d:8e:ac:e2:a9:18:4b:b9:9b:0d:18:a9:f9:
e7:14:c8:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:10:56 2024 by rpki-client on console-fra.rpki-client.org