Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138322e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3138322e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: NcmMnJHwOkIpKkhA/RF+SajTpN6BYjAYl54hI5oLtIw=
Subject key identifier: E6:EA:FD:12:C7:D8:B8:B1:E1:67:97:91:2D:C7:95:8E:19:9B:02:51
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 0698990125FB674CE4CBCD4415A87243581786A9
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138322e302f32342d3234203d3e203331313033.roa
Signing time: Fri 31 May 2024 09:35:30 +0000
ROA not before: Fri 31 May 2024 09:30:30 +0000
ROA not after: Fri 30 May 2025 09:35:30 +0000
asID: 31103
IP address blocks: 95.169.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:98:99:01:25:fb:67:4c:e4:cb:cd:44:15:a8:72:43:58:17:86:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 09:30:30 2024 GMT
Not After : May 30 09:35:30 2025 GMT
Subject: CN=E6EAFD12C7D8B8B1E16797912DC7958E199B0251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:15:f0:92:c1:52:f8:a1:ef:40:14:cf:da:2f:
fb:59:bb:71:d9:cd:21:43:3d:55:a8:57:1e:63:66:
59:cc:24:dc:03:6a:38:b3:31:89:e7:d3:ac:33:12:
19:96:d5:d1:7d:dd:f6:1c:2b:1e:37:6d:c3:4b:4c:
3f:7f:5d:d9:58:7c:0c:97:bd:c2:46:04:3f:f1:2c:
23:49:19:b1:08:32:10:13:4f:80:3f:60:26:ab:e2:
b6:53:78:e9:9c:3c:1a:e1:bc:66:83:b0:57:14:b4:
47:37:d2:35:51:da:c9:dc:93:a5:eb:9a:b5:da:aa:
80:64:e1:0e:ac:a1:a1:1f:ee:f6:19:c0:58:6a:54:
cb:bd:3e:fa:c2:5f:46:26:70:e2:c3:49:40:73:de:
10:97:6f:7b:30:78:89:3f:29:7e:41:a7:42:41:50:
ac:20:9c:fe:bc:c9:3b:dc:07:24:f4:04:33:98:41:
b8:6c:d8:a7:59:73:fe:ad:fa:4e:f2:ca:c9:18:7c:
c3:f2:ae:7d:31:42:26:e6:25:4f:a7:de:d2:ac:f3:
73:2f:40:00:a0:fb:cc:dd:c1:e6:87:ea:19:54:ac:
a9:62:0d:63:29:d3:53:98:ed:0f:99:e1:e1:98:95:
39:91:58:5f:77:db:bd:66:f5:ec:c9:d4:fa:c8:73:
98:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:EA:FD:12:C7:D8:B8:B1:E1:67:97:91:2D:C7:95:8E:19:9B:02:51
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138322e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.182.0/24
Signature Algorithm: sha256WithRSAEncryption
01:fd:34:41:95:02:87:b6:dc:a5:4a:4f:da:81:f5:40:19:12:
da:52:2a:1e:6f:7d:96:17:a2:0b:71:b7:4d:99:2a:d5:e8:34:
31:af:60:99:19:02:59:2d:7d:53:0b:db:48:d3:84:42:90:d6:
55:eb:8c:61:16:74:e1:43:30:21:a3:0b:29:db:99:ed:8e:2c:
5f:b4:c9:37:87:fc:90:64:55:da:8d:21:fd:93:6a:9d:de:fe:
38:a2:65:f2:67:5a:18:f2:6b:10:06:16:3f:03:2a:58:5d:02:
a1:96:57:83:2e:ce:54:6f:4e:a7:0e:3e:89:5f:f9:61:f6:9a:
c3:08:aa:bd:dc:02:dc:53:cf:e0:2d:71:e7:41:aa:9c:d0:a5:
ea:3e:de:2c:f0:7c:ca:d8:cf:c8:cc:51:e1:f4:78:65:80:5e:
f9:ee:f0:d0:9a:bd:60:63:68:10:2b:d7:d0:df:d6:1d:07:75:
17:5e:a4:2d:a4:ce:4d:dc:69:27:bc:11:5f:43:3d:86:90:a9:
1d:ed:31:bb:9f:81:1e:6c:5f:c1:75:97:ca:db:5b:97:78:ec:
16:8c:25:9e:80:1d:c0:99:23:ce:9f:a7:50:5d:55:d5:36:3c:
ca:d6:d1:63:f4:90:a7:82:ab:2e:74:c0:43:cf:4a:bf:bb:cc:
55:bb:8d:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:07:06 2024 by rpki-client on console-ams.rpki-client.org