Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138312e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3138312e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: i/cmrntRWmzwPVYsD3u5wPsG45WTr6YOxTit01BDtIM=
Subject key identifier: AA:F7:69:3C:FF:9B:A8:18:E3:5D:E6:B0:81:7C:F7:B2:A0:A9:53:A1
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 2B84998BED0973D61E7D97821C109F8C647EE643
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138312e302f32342d3234203d3e203331313033.roa
Signing time: Fri 31 May 2024 09:35:29 +0000
ROA not before: Fri 31 May 2024 09:30:29 +0000
ROA not after: Fri 30 May 2025 09:35:29 +0000
asID: 31103
IP address blocks: 95.169.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:84:99:8b:ed:09:73:d6:1e:7d:97:82:1c:10:9f:8c:64:7e:e6:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 09:30:29 2024 GMT
Not After : May 30 09:35:29 2025 GMT
Subject: CN=AAF7693CFF9BA818E35DE6B0817CF7B2A0A953A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:44:65:0c:9e:6e:50:3b:46:e6:0b:87:e2:68:
e5:9e:dc:45:b0:c7:6b:e2:96:eb:da:44:46:50:7c:
d9:63:ed:5e:a0:90:7b:59:14:72:21:5c:16:72:6f:
29:06:2c:7a:f7:3a:48:e6:21:c4:f6:7f:53:14:fd:
3d:ff:7c:e1:93:b3:46:cb:ef:82:94:b3:11:d5:82:
74:80:88:80:ab:62:df:d4:4b:12:53:03:b9:34:8d:
2a:c5:6e:90:b7:af:fb:a6:d2:e0:bc:aa:c2:e4:35:
9f:1e:00:05:5f:9d:3c:c9:0e:3b:ad:8b:ac:a5:7f:
de:5d:92:4b:bd:8f:f7:a3:f5:9f:57:4d:8b:52:14:
c0:4a:28:f5:09:5b:3c:e6:94:9f:f2:0b:46:da:87:
73:fa:d5:31:6c:d9:f6:86:fa:46:73:fb:b6:f0:aa:
b7:81:85:12:ef:7d:c4:a0:a4:36:5e:f6:53:7e:27:
7a:4a:37:c7:33:b1:04:f1:74:27:00:02:99:9f:bd:
e5:4f:06:fb:d9:2f:67:38:8c:bf:63:b7:96:0a:5b:
73:46:fc:77:2b:59:e1:f4:79:03:29:83:ab:ac:f5:
78:f2:8e:02:51:c4:c5:50:ba:b5:b5:91:0c:e8:19:
9f:a3:4d:68:ac:38:81:07:df:79:72:9a:f9:a5:75:
95:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:F7:69:3C:FF:9B:A8:18:E3:5D:E6:B0:81:7C:F7:B2:A0:A9:53:A1
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138312e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.181.0/24
Signature Algorithm: sha256WithRSAEncryption
20:82:0a:99:98:a0:81:dd:1e:c6:5d:be:ae:27:88:c9:7c:4a:
26:1f:d0:f1:1b:45:60:d4:c0:1f:fa:69:e2:d7:c3:f9:01:f5:
07:8b:64:a4:2b:84:eb:91:32:58:33:08:85:fb:e2:d2:09:82:
7b:4e:d0:3e:f9:5e:32:cb:44:7a:b1:23:23:fc:7c:a7:50:05:
33:90:60:d0:57:19:0c:f2:29:79:a4:06:37:ad:f8:18:d3:17:
94:ef:9c:27:9f:99:76:1b:b6:60:12:b4:4d:82:7e:f0:b7:8a:
79:ba:57:41:75:8e:96:60:46:ba:1b:f3:b9:b4:01:e4:98:fd:
04:83:a3:49:2c:52:9b:4b:21:60:6c:65:dc:ee:10:46:61:fe:
35:55:e6:b8:2d:3a:9d:a3:70:2e:b3:76:0a:8a:9c:88:ae:99:
51:af:e1:62:bc:90:a1:01:7c:77:fb:55:7d:9f:29:ac:f4:a0:
0b:e8:42:b9:83:84:88:36:c8:0f:75:0d:b7:19:36:56:8b:38:
e1:c9:d9:9e:54:9f:df:1b:52:a4:c6:a7:ec:72:42:09:d0:e8:
e4:f1:07:42:27:a9:86:e0:e2:54:c9:71:e2:7a:77:47:08:91:
77:a9:48:9a:de:4d:1a:b9:22:5a:a1:6c:64:36:6d:55:07:b8:
13:4f:3b:8f
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUK4SZi+0Jc9YefZeCHBCfjGR+5kMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWU1NzY5OTYzODhlOTRiOGM3YWIyMGVmZmIyM2JkMTFi
ZWNiNDEwODAeFw0yNDA1MzEwOTMwMjlaFw0yNTA1MzAwOTM1MjlaMDMxMTAvBgNV
BAMTKEFBRjc2OTNDRkY5QkE4MThFMzVERTZCMDgxN0NGN0IyQTBBOTUzQTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrRGUMnm5QO0bmC4fiaOWe3EWw
x2viluvaREZQfNlj7V6gkHtZFHIhXBZybykGLHr3OkjmIcT2f1MU/T3/fOGTs0bL
74KUsxHVgnSAiICrYt/USxJTA7k0jSrFbpC3r/um0uC8qsLkNZ8eAAVfnTzJDjut
i6ylf95dkku9j/ej9Z9XTYtSFMBKKPUJWzzmlJ/yC0bah3P61TFs2faG+kZz+7bw
qreBhRLvfcSgpDZe9lN+J3pKN8czsQTxdCcAApmfveVPBvvZL2c4jL9jt5YKW3NG
/HcrWeH0eQMpg6us9XjyjgJRxMVQurW1kQzoGZ+jTWisOIEH33lymvmldZWjAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUqvdpPP+bqBjjXeawgXz3sqCpU6EwHwYDVR0j
BBgwFoAUnldpljiOlLjHqyDv+yO9Eb7LQQgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAtMmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2
MTIzLzAvOUU1NzY5OTYzODhFOTRCOEM3QUIyMEVGRkIyM0JEMTFCRUNCNDEwOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25sZHBsamlPbExqSHF5RHYteU85RWI3
TFFRZy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAt
MmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2MTIzLzAvMzkzNTJlMzEzNjM5MmUzMTM4
MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzMxMzEzMDMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
X6m1MA0GCSqGSIb3DQEBCwUAA4IBAQAgggqZmKCB3R7GXb6uJ4jJfEomH9DxG0Vg
1MAf+mni18P5AfUHi2SkK4TrkTJYMwiF++LSCYJ7TtA++V4yy0R6sSMj/HynUAUz
kGDQVxkM8il5pAY3rfgY0xeU75wnn5l2G7ZgErRNgn7wt4p5uldBdY6WYEa6G/O5
tAHkmP0Eg6NJLFKbSyFgbGXc7hBGYf41Vea4LTqdo3Aus3YKipyIrplRr+FivJCh
AXx3+1V9nyms9KAL6EK5g4SINsgPdQ23GTZWizjhydmeVJ/fG1KkxqfsckIJ0Ojk
8QdCJ6mG4OJUyXHiendHCJF3qUia3k0auSJaoWxkNm1VB7gTTzuP
-----END CERTIFICATE-----
Generated at Mon Nov 25 12:00:56 2024 by rpki-client on console-ams.rpki-client.org