Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137392e302f32342d3234203d3e203239303636.roa
File: 39352e3136392e3137392e302f32342d3234203d3e203239303636.roa (raw, json)
Hash identifier: Iipzj6f4Bi49bY0u5HJv2nqEse0t7Tv0jGBhhc29/Qw=
Subject key identifier: EF:DF:6A:4F:24:AD:BF:EA:34:4A:F5:43:86:99:56:43:E1:64:55:5C
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 32A481B208EA34402D1B3EEB0427531F564C0AA0
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137392e302f32342d3234203d3e203239303636.roa
Signing time: Thu 11 Jul 2024 09:46:44 +0000
ROA not before: Thu 11 Jul 2024 09:41:44 +0000
ROA not after: Thu 10 Jul 2025 09:46:44 +0000
asID: 29066
IP address blocks: 95.169.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:a4:81:b2:08:ea:34:40:2d:1b:3e:eb:04:27:53:1f:56:4c:0a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jul 11 09:41:44 2024 GMT
Not After : Jul 10 09:46:44 2025 GMT
Subject: CN=EFDF6A4F24ADBFEA344AF54386995643E164555C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:73:73:c5:bb:06:65:4e:8f:aa:b1:79:ee:75:
c5:36:d8:3d:23:e4:73:ff:9a:78:13:59:f5:83:bf:
47:17:82:ed:95:8d:d8:2a:c9:3e:bc:7f:16:f9:fb:
30:08:56:13:05:e0:43:29:0e:73:62:ca:c8:ce:f7:
ba:1e:3b:5e:c7:83:64:d4:a5:d1:ae:d9:54:25:e4:
80:37:99:04:95:d3:8c:06:4c:78:ef:d3:ae:1a:f6:
56:51:83:75:36:a5:d9:e0:27:3a:a1:67:47:74:6b:
ed:54:cd:41:cd:44:5a:b5:22:0c:d4:4a:ad:b9:d7:
95:77:38:38:76:ac:1a:0b:6e:ca:bb:de:1f:2a:90:
01:7a:7f:58:5f:c1:cc:dc:fa:8b:45:58:f8:47:8d:
18:59:cb:f4:89:7f:3f:7b:44:e8:d8:f1:f7:d1:1c:
83:b2:b3:23:cf:b3:9e:c6:43:d0:8c:c2:e4:ed:bc:
06:9b:53:19:3e:68:d5:d0:0e:38:88:4a:42:a2:1b:
a4:56:4d:57:b4:4a:8b:08:e2:46:87:8a:a0:4b:4a:
10:fd:12:16:d2:1a:2d:6a:4c:7b:81:9a:02:13:9c:
78:5b:25:03:03:52:a7:94:45:7c:e5:ea:ce:74:d0:
87:c3:11:f7:80:a9:18:75:7a:e0:29:1d:d0:97:20:
03:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:DF:6A:4F:24:AD:BF:EA:34:4A:F5:43:86:99:56:43:E1:64:55:5C
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137392e302f32342d3234203d3e203239303636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.179.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:8c:c9:10:f9:e0:d6:39:ef:c4:60:70:72:74:5c:eb:9d:2a:
8a:df:73:94:5f:63:39:4e:45:de:11:f2:49:cc:8a:6f:33:97:
0e:e2:a6:b7:12:54:7f:7f:0c:b5:10:de:e7:27:b2:6f:cb:dc:
9a:83:18:c4:84:1b:a8:f6:47:52:e0:5c:3c:f6:27:e2:b4:9e:
a7:9d:72:c6:fa:be:5f:1e:88:05:c4:45:7e:8e:0e:cc:75:82:
08:59:6a:54:b2:4a:22:ff:04:9e:93:db:84:90:27:3c:a9:8f:
fa:ff:d0:15:db:e0:1c:e4:b7:c6:69:48:38:e3:43:1a:23:24:
29:73:d7:9f:94:c0:ef:e9:4f:55:99:e1:eb:9e:57:b8:ff:ca:
a5:e4:94:14:28:72:18:8f:89:25:dd:d9:87:34:1d:b5:9e:64:
b7:89:c2:2c:3f:82:a4:c7:25:43:2c:48:b3:6f:af:8d:e4:83:
60:6e:86:3f:d9:fe:e2:44:9f:ef:e9:af:cb:3e:c8:e7:f4:78:
7c:fb:32:23:09:6f:74:95:b1:fe:c9:53:2f:63:c3:ac:4e:2e:
0b:59:f4:21:0f:ca:ce:23:ab:4f:7f:53:fb:34:58:8e:6d:c8:
e7:5d:0e:47:ef:ca:d2:6d:16:2e:be:d4:2d:bc:07:e4:1e:be:
8a:ef:f5:80
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUMqSBsgjqNEAtGz7rBCdTH1ZMCqAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWU1NzY5OTYzODhlOTRiOGM3YWIyMGVmZmIyM2JkMTFi
ZWNiNDEwODAeFw0yNDA3MTEwOTQxNDRaFw0yNTA3MTAwOTQ2NDRaMDMxMTAvBgNV
BAMTKEVGREY2QTRGMjRBREJGRUEzNDRBRjU0Mzg2OTk1NjQzRTE2NDU1NUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfc3PFuwZlTo+qsXnudcU22D0j
5HP/mngTWfWDv0cXgu2VjdgqyT68fxb5+zAIVhMF4EMpDnNiysjO97oeO17Hg2TU
pdGu2VQl5IA3mQSV04wGTHjv064a9lZRg3U2pdngJzqhZ0d0a+1UzUHNRFq1IgzU
Sq2515V3ODh2rBoLbsq73h8qkAF6f1hfwczc+otFWPhHjRhZy/SJfz97ROjY8ffR
HIOysyPPs57GQ9CMwuTtvAabUxk+aNXQDjiISkKiG6RWTVe0SosI4kaHiqBLShD9
EhbSGi1qTHuBmgITnHhbJQMDUqeURXzl6s500IfDEfeAqRh1euApHdCXIAOVAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU799qTyStv+o0SvVDhplWQ+FkVVwwHwYDVR0j
BBgwFoAUnldpljiOlLjHqyDv+yO9Eb7LQQgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAtMmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2
MTIzLzAvOUU1NzY5OTYzODhFOTRCOEM3QUIyMEVGRkIyM0JEMTFCRUNCNDEwOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25sZHBsamlPbExqSHF5RHYteU85RWI3
TFFRZy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAt
MmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2MTIzLzAvMzkzNTJlMzEzNjM5MmUzMTM3
MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM5MzAzNjM2LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
X6mzMA0GCSqGSIb3DQEBCwUAA4IBAQAvjMkQ+eDWOe/EYHBydFzrnSqK33OUX2M5
TkXeEfJJzIpvM5cO4qa3ElR/fwy1EN7nJ7Jvy9yagxjEhBuo9kdS4Fw89ifitJ6n
nXLG+r5fHogFxEV+jg7MdYIIWWpUskoi/wSek9uEkCc8qY/6/9AV2+Ac5LfGaUg4
40MaIyQpc9eflMDv6U9VmeHrnle4/8ql5JQUKHIYj4kl3dmHNB21nmS3icIsP4Kk
xyVDLEizb6+N5INgboY/2f7iRJ/v6a/LPsjn9Hh8+zIjCW90lbH+yVMvY8OsTi4L
WfQhD8rOI6tPf1P7NFiObcjnXQ5H78rSbRYuvtQtvAfkHr6K7/WA
-----END CERTIFICATE-----
Generated at Wed Sep 18 19:10:56 2024 by rpki-client on console-fra.rpki-client.org