Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138302e302f32342d3234203d3e20323632323837.roa
File: 39352e3136392e3138302e302f32342d3234203d3e20323632323837.roa (raw, json)
Hash identifier: 1SALJGfmF6NqHKmUbt17HuIUKoud9YuQsBDbKhdURqw=
Subject key identifier: F4:A4:26:9B:A5:02:4E:A6:1F:A2:3C:DC:35:FA:62:99:A0:54:EA:A6
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 02AF9CD55296746F344416CEDA9D6C91EAB24E28
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138302e302f32342d3234203d3e20323632323837.roa
Signing time: Sat 17 Aug 2024 05:05:44 +0000
ROA not before: Sat 17 Aug 2024 05:00:44 +0000
ROA not after: Sat 16 Aug 2025 05:05:44 +0000
asID: 262287
IP address blocks: 95.169.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:af:9c:d5:52:96:74:6f:34:44:16:ce:da:9d:6c:91:ea:b2:4e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Aug 17 05:00:44 2024 GMT
Not After : Aug 16 05:05:44 2025 GMT
Subject: CN=F4A4269BA5024EA61FA23CDC35FA6299A054EAA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a0:1e:27:f5:fa:54:81:26:56:ea:13:51:72:
7b:d1:41:27:ed:e7:d9:d1:6b:48:02:f6:10:45:16:
4a:64:29:ef:6b:3f:80:a8:4a:e0:95:0f:67:05:c6:
cf:19:95:e7:07:6a:4e:75:a9:82:20:97:ed:bb:72:
50:0d:28:1f:2e:7a:2a:ec:dc:21:a2:0b:10:c7:c5:
d2:e9:5e:5e:d4:f5:f4:98:c0:3e:8b:f0:fb:66:fb:
43:12:ff:04:7f:a6:a8:a3:ae:11:19:a4:78:5b:0e:
3e:bd:be:0a:c4:ba:b4:b6:53:97:ea:40:0a:dd:bb:
ca:61:fd:a0:c1:d5:d5:13:7b:e3:4b:c2:84:25:59:
67:2c:56:a6:28:9e:81:b8:fe:53:a7:5d:25:af:68:
72:0d:83:fa:c0:ee:a1:01:b7:4a:87:1a:d6:2d:96:
88:87:4a:35:54:b2:0e:26:b7:2f:b8:52:a5:e6:13:
a8:04:a6:bc:fc:f2:67:79:e0:87:ea:00:a1:12:fc:
ff:0a:ef:5f:25:e2:cb:86:8d:39:4a:de:56:45:ac:
65:af:2c:a7:62:24:7b:34:e1:87:75:b2:96:68:84:
81:b0:89:64:36:a8:e9:13:98:fc:95:e5:f8:96:ae:
cf:2d:b7:17:df:2d:61:8b:4b:b3:36:68:50:2f:73:
64:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A4:26:9B:A5:02:4E:A6:1F:A2:3C:DC:35:FA:62:99:A0:54:EA:A6
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138302e302f32342d3234203d3e20323632323837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.180.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:db:9b:29:2f:26:90:28:c1:5b:62:18:6f:bb:1b:37:fd:e1:
7c:65:8e:2d:91:3e:a6:62:14:b1:ab:e1:0e:a2:d9:40:4c:32:
8f:c7:67:8e:cc:9b:cb:09:72:11:41:b0:20:d1:e1:ac:59:68:
cb:53:a9:db:62:1f:4f:3e:69:de:7d:48:7a:19:a1:35:24:58:
25:be:48:a1:a5:e9:cc:55:4c:c9:f3:5f:1c:9f:6b:af:c0:18:
bb:9a:f1:15:cb:be:43:58:b5:47:59:24:d0:a6:c8:ca:f6:c7:
5e:3e:18:ed:c6:bd:43:b5:9b:2a:47:2d:49:18:f0:d2:d6:f3:
6c:87:41:0b:6a:11:f4:99:58:e8:81:d8:37:fb:70:26:2b:09:
f2:a6:70:53:9d:94:1c:14:8f:09:1d:40:9c:00:9a:78:e1:cb:
49:99:8a:ed:29:a9:42:dd:cb:13:89:e1:53:c3:00:c9:2e:c9:
90:b9:ca:d7:18:ef:16:a6:27:4a:8a:59:51:ff:e2:f0:9e:e1:
77:f4:58:3f:7a:a6:5c:e8:38:81:f7:05:9a:7b:52:c4:32:26:
fe:7c:50:24:c7:2c:84:85:e6:91:73:49:8a:5d:3b:f0:e5:4c:
51:6e:4c:3c:73:73:a5:8a:11:00:c8:5e:f4:0b:cd:60:60:99:
72:86:f5:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:20 2024 by rpki-client on console-ams.rpki-client.org