Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138362e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3138362e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: iKOjpRfff/GPlFyyfrbcPU4htA/T0g4AvLmgpIOx960=
Subject key identifier: 67:AA:A5:09:00:81:6E:9B:1E:43:F8:34:66:6D:B9:D6:E2:D9:0E:56
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 34583E47FCF6B4A50138CE10A8BB163D6AF23FA6
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138362e302f32342d3234203d3e203331313033.roa
Signing time: Fri 31 May 2024 09:35:30 +0000
ROA not before: Fri 31 May 2024 09:30:30 +0000
ROA not after: Fri 30 May 2025 09:35:30 +0000
asID: 31103
IP address blocks: 95.169.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:58:3e:47:fc:f6:b4:a5:01:38:ce:10:a8:bb:16:3d:6a:f2:3f:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 09:30:30 2024 GMT
Not After : May 30 09:35:30 2025 GMT
Subject: CN=67AAA50900816E9B1E43F834666DB9D6E2D90E56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:54:25:36:46:e9:a1:a8:b9:cd:c4:53:30:df:
37:a4:20:a1:44:91:82:a7:0e:62:f9:7e:d5:60:27:
01:46:c8:18:2a:19:2c:f8:2c:12:b0:eb:9f:9f:0f:
ae:f0:c9:c4:7a:2f:fb:59:c4:69:0b:2b:80:ba:99:
d8:5a:83:82:fd:89:2b:e2:19:a3:c8:ad:7e:36:33:
54:d3:dc:36:33:d9:c0:3b:a2:89:b3:94:bf:6a:09:
9f:9b:c3:28:c3:e1:4c:ba:e6:01:e7:98:2e:25:65:
61:73:7c:c5:95:d8:bf:1f:7d:13:ec:ee:06:ec:ca:
23:ca:63:47:e1:25:4f:0d:65:6d:7c:81:b4:90:b8:
89:5a:87:48:c4:95:52:f1:48:10:a7:09:b8:00:c0:
d8:00:58:3d:da:40:60:bb:f1:0b:25:86:50:93:47:
fd:66:4f:69:36:8e:06:3e:34:08:04:20:23:1b:f7:
24:41:5e:34:aa:b7:54:6b:13:a1:57:e2:4e:24:de:
80:49:e4:f6:f2:f6:69:67:14:03:d1:b6:39:8d:6f:
86:0d:1a:21:04:a3:86:d8:6d:9e:3d:6d:70:a5:de:
f6:ae:1a:2d:6f:9d:5f:a6:0c:d7:cc:9a:4b:d4:7d:
22:2c:4a:6a:99:7e:be:eb:8b:cb:c9:a9:5b:58:81:
57:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:AA:A5:09:00:81:6E:9B:1E:43:F8:34:66:6D:B9:D6:E2:D9:0E:56
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138362e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.186.0/24
Signature Algorithm: sha256WithRSAEncryption
75:3d:06:ae:39:b0:c6:fe:53:96:b8:24:32:66:97:d4:f7:a6:
41:14:0c:5f:e9:af:86:ef:21:1c:67:63:48:7e:96:6e:75:9e:
5e:7a:f0:47:d5:3c:eb:5c:5c:cf:71:25:d8:00:e3:38:23:fb:
4f:cd:7e:2a:4d:00:8f:d2:c0:b3:eb:77:2e:ec:de:21:64:ba:
1e:01:9e:fb:52:78:3f:75:e9:d2:7c:04:4f:51:87:ce:38:ba:
94:46:aa:68:57:42:57:ac:a0:97:29:cc:b8:5e:1b:40:4f:20:
cc:4a:5a:e0:84:30:50:c9:e2:80:90:ec:f2:26:18:d9:9c:66:
f8:5f:53:fe:a3:e4:15:06:7e:62:2b:f8:f1:db:22:48:fe:22:
28:06:c7:a8:3c:7a:b9:e3:cf:f4:97:e8:6a:8d:96:6a:dd:10:
64:e7:bd:09:b9:d9:e8:37:fb:a1:ac:c2:23:39:d4:f7:11:f7:
91:26:c2:67:70:a4:76:6c:8a:d9:c5:a1:08:f2:98:92:0d:a7:
bb:b4:82:29:37:ab:a3:56:57:28:53:bc:12:5d:5c:40:ae:9d:
b1:3c:07:63:63:72:87:f4:49:f4:1b:2d:b3:f8:41:e6:9b:84:
7c:2c:cf:57:aa:56:d9:28:1a:60:f1:88:0d:ac:cf:66:0a:2e:
6d:bb:44:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:22:33 2024 by rpki-client on console-fra.rpki-client.org