Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138332e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3138332e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: 2baBigrnYhMYmvYKPj8LtufY970HhOsqc+sE+AQD+6Q=
Subject key identifier: D2:E1:24:C7:31:DD:3C:C1:23:9E:9F:9D:C6:A2:75:DC:96:D6:A8:1B
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 746756E0CEB0E1A432492858B44A85FD65FD30CB
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138332e302f32342d3234203d3e203331313033.roa
Signing time: Fri 31 May 2024 09:35:29 +0000
ROA not before: Fri 31 May 2024 09:30:29 +0000
ROA not after: Fri 30 May 2025 09:35:29 +0000
asID: 31103
IP address blocks: 95.169.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:67:56:e0:ce:b0:e1:a4:32:49:28:58:b4:4a:85:fd:65:fd:30:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 09:30:29 2024 GMT
Not After : May 30 09:35:29 2025 GMT
Subject: CN=D2E124C731DD3CC1239E9F9DC6A275DC96D6A81B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c4:5a:59:96:76:e1:9d:a3:51:55:b9:55:cc:
96:6e:72:aa:ad:ad:77:61:08:e6:58:55:e0:a8:54:
be:3d:bf:9f:f5:ba:4f:c9:a5:9d:98:14:93:98:9b:
23:cd:20:d2:7c:7b:2a:3a:77:b7:41:4b:8b:59:86:
e5:f6:be:b6:bf:8a:1b:b9:bf:f6:fd:46:71:24:ec:
f4:51:8b:a9:19:27:41:a3:40:05:3b:cc:e5:c6:63:
ee:1e:ed:b2:34:77:af:89:69:83:5f:e4:40:9d:42:
79:8a:f6:9d:fb:d1:a9:1a:3f:4c:90:4d:e1:b5:f8:
3f:e2:64:f4:12:c0:fd:65:d4:b2:96:ac:31:45:eb:
d6:46:ac:2c:53:dd:e8:db:ef:07:35:e1:1e:4f:68:
e8:46:f9:01:a8:bb:7e:5b:cc:fa:d3:bb:30:90:a2:
49:3d:9a:02:19:9b:32:6a:c3:8e:13:bf:d9:3c:cc:
71:ba:30:02:ba:bf:e5:19:a3:5c:b8:38:07:32:45:
50:8f:41:c3:30:1a:03:cf:1b:61:b9:06:06:9f:4c:
70:c0:b3:e2:ac:8d:8f:80:c3:a0:52:0f:23:91:02:
a3:d9:e1:78:b8:ff:81:f0:96:31:f7:b7:37:cc:3c:
62:36:1f:c7:43:f6:8d:8d:96:98:a9:ee:7d:33:87:
93:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E1:24:C7:31:DD:3C:C1:23:9E:9F:9D:C6:A2:75:DC:96:D6:A8:1B
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138332e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.183.0/24
Signature Algorithm: sha256WithRSAEncryption
05:d8:dd:55:12:fa:2f:ed:95:f5:61:a7:83:b7:6d:e4:49:f1:
d8:0e:97:9f:a6:8f:0c:0a:63:14:0b:5a:2a:37:e8:2e:b2:e1:
ea:b8:ae:ac:69:2c:bd:33:67:06:12:98:f8:25:7a:2f:4a:09:
0f:3c:81:78:3b:05:e1:a4:fb:1a:49:50:7e:b6:1a:2e:40:11:
c7:a1:95:18:44:f2:3c:b6:78:ef:b4:81:62:11:23:fa:7f:4b:
cc:3f:9c:e1:cd:a6:0b:c0:bf:e9:17:0a:ec:05:85:c0:81:dc:
f9:48:d7:32:c0:ce:a4:a7:2c:87:a7:61:88:39:45:02:7c:8c:
12:25:72:6e:66:6f:ca:0b:ee:6a:e9:33:92:15:de:12:7c:d3:
2e:52:58:1c:54:9b:17:59:b3:bc:b0:f8:de:a0:0e:92:54:6a:
40:40:7b:20:ef:11:a0:ec:43:1d:60:aa:2e:9d:24:d4:66:da:
05:d5:be:00:f3:a7:cc:71:eb:cc:a4:9f:e5:b5:77:0b:3f:2e:
66:d5:aa:58:5c:3e:02:16:44:87:bf:eb:b7:a8:3c:4c:63:82:
ea:b1:92:5a:fb:ba:95:fb:77:ff:c7:3a:2e:b5:8f:ae:07:b7:
70:60:65:a5:2a:90:b4:b3:a4:12:67:d0:79:2f:74:57:56:78:
24:6a:3c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:20 2024 by rpki-client on console-ams.rpki-client.org