Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137382e302f32342d3234203d3e203239383032.roa
File: 39352e3136392e3137382e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: Kdfiy11H9aurkjfB/aurSXFWBeH9/uj4/bkMXQUj4rU=
Subject key identifier: 29:73:43:7B:B1:CE:40:A2:21:6D:BD:59:76:8B:16:59:32:A6:75:33
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 25F48854EAD7A714CE6B499A76CD18FE8FEA3FD4
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137382e302f32342d3234203d3e203239383032.roa
Signing time: Wed 19 Jun 2024 10:09:47 +0000
ROA not before: Wed 19 Jun 2024 10:04:47 +0000
ROA not after: Wed 18 Jun 2025 10:09:47 +0000
asID: 29802
IP address blocks: 95.169.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:f4:88:54:ea:d7:a7:14:ce:6b:49:9a:76:cd:18:fe:8f:ea:3f:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jun 19 10:04:47 2024 GMT
Not After : Jun 18 10:09:47 2025 GMT
Subject: CN=2973437BB1CE40A2216DBD59768B165932A67533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a7:c1:06:79:b6:3f:16:cc:43:4f:c4:1e:13:
85:0c:af:ba:6d:1c:14:ef:4c:d6:56:e9:7a:81:14:
6c:34:1d:ec:24:8a:70:23:cb:e0:31:8a:b4:f5:7f:
26:7c:10:56:eb:8d:b9:00:b8:a9:a7:15:19:50:69:
38:97:9b:8f:71:b7:0c:08:e0:54:83:96:3b:ed:98:
c9:bc:66:00:80:30:e4:f0:b6:36:33:90:df:c9:03:
74:68:a6:fa:e9:00:c7:bf:8d:03:85:80:7e:ec:c3:
49:92:49:54:36:be:91:07:ea:a0:81:47:35:98:19:
56:4c:5f:9b:f8:34:1c:cd:ae:07:17:10:53:e3:2e:
12:af:38:5a:45:80:80:52:7b:6e:03:83:f8:d8:08:
ac:33:02:2c:57:bf:39:cc:9e:a1:6f:82:34:db:fc:
66:dd:25:f9:b8:63:81:f0:56:96:18:a7:65:0c:a7:
32:b1:a0:79:ce:4d:eb:90:af:52:73:8b:d0:a3:0f:
37:c9:66:c6:15:a5:16:95:23:2a:88:7d:8f:b7:1d:
6f:d4:6c:ea:1d:36:db:34:b4:9d:37:b4:11:3a:3b:
3b:a7:96:7a:15:e0:2d:f5:cc:32:76:7a:17:a0:17:
0a:37:b3:6d:00:cd:94:3f:2f:e9:f4:b1:25:35:7b:
2b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:73:43:7B:B1:CE:40:A2:21:6D:BD:59:76:8B:16:59:32:A6:75:33
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137382e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.178.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:46:99:46:09:11:ee:6d:37:1d:f4:a6:cc:e0:07:1f:28:cb:
8f:c4:24:6e:76:fa:b3:22:64:87:7f:72:8a:a8:88:a0:da:e5:
d5:5a:2d:3b:dd:b6:6d:b7:75:28:f8:ca:ff:ec:de:67:e3:3d:
0b:e7:0e:fd:ab:47:fc:e6:ff:93:4a:4a:5b:9c:77:34:0b:d4:
bf:48:45:d6:96:b7:ee:43:93:b6:11:f4:4c:59:31:6d:c4:b4:
48:8f:46:d8:30:0f:56:90:52:77:34:38:73:1a:02:32:46:85:
93:9b:ea:98:17:e5:9d:7f:b8:f2:26:b1:41:da:62:98:52:d4:
f3:ca:40:15:a3:a2:b0:b7:b3:89:ab:a8:a4:61:32:c7:4d:88:
f3:5d:94:da:57:b4:e4:d4:2e:61:9b:2a:a0:8d:40:65:9d:44:
e9:bc:dd:35:84:69:17:9c:fc:bd:8d:59:fe:75:41:42:00:0c:
90:55:aa:89:be:5c:4c:5c:b8:9f:6c:45:1a:b3:e4:a5:af:f9:
76:18:3b:6e:31:73:01:bc:d9:cf:73:27:6f:50:3d:b5:c0:07:
0d:7b:d4:19:3a:7b:e5:b2:08:fe:0c:30:58:70:90:9c:e7:24:
8f:b3:0a:04:5d:0c:ff:a1:8d:f0:2e:4e:33:18:0a:71:f5:86:
ca:aa:f7:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:10:56 2024 by rpki-client on console-fra.rpki-client.org