Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138382e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3138382e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: Nnr/0LY3nKF4FeUU0jzio8kf/lmEov3b7K6Vpod9Ka8=
Subject key identifier: 72:B9:D8:5F:FF:BD:E4:3D:6F:E7:B1:B1:20:71:75:BE:13:A0:09:2A
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 4DE866DF2B2102767013607A9BE73BA19CEAD840
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138382e302f32342d3234203d3e203331313033.roa
Signing time: Fri 31 May 2024 09:35:29 +0000
ROA not before: Fri 31 May 2024 09:30:29 +0000
ROA not after: Fri 30 May 2025 09:35:29 +0000
asID: 31103
IP address blocks: 95.169.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:e8:66:df:2b:21:02:76:70:13:60:7a:9b:e7:3b:a1:9c:ea:d8:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 09:30:29 2024 GMT
Not After : May 30 09:35:29 2025 GMT
Subject: CN=72B9D85FFFBDE43D6FE7B1B1207175BE13A0092A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:92:5b:0f:4e:42:1c:c4:11:be:78:48:04:a3:
6b:5b:bd:1c:d2:08:5a:21:02:1b:aa:04:66:f7:a7:
06:af:cc:59:8d:97:c8:75:7d:5f:b4:43:28:fc:70:
a6:93:39:d5:63:ff:c8:c5:d9:f3:f5:d5:e3:cd:31:
53:9b:d5:d0:ce:28:c5:be:69:9b:9a:0c:8b:db:0b:
25:ee:29:fb:81:87:32:2f:48:77:6d:7d:11:43:47:
b0:c5:15:69:2a:b5:e0:36:31:bb:7b:8b:52:89:19:
fe:a1:b0:36:87:2e:bd:e8:a5:9c:1e:ca:64:d7:d6:
6c:c8:e1:d3:b8:4b:0b:b4:4c:ba:52:70:63:19:1f:
e7:5a:2c:0e:d4:45:3b:1c:5b:38:b4:d3:7f:3c:54:
1b:5d:62:9f:3d:32:97:c5:7f:d3:a9:ac:c3:92:37:
be:e5:10:b0:ef:fd:af:d2:b7:1c:0f:01:88:7a:78:
1d:cb:95:cb:b8:83:f6:a5:10:fc:dc:78:ac:36:df:
fc:b8:18:8a:29:a7:3e:d3:10:c1:89:b7:23:3b:70:
1b:44:60:95:da:51:7b:12:56:e1:b4:80:a1:dc:ed:
2f:c9:5c:c5:36:84:af:b1:94:0e:36:d4:ca:7e:fd:
3c:c4:30:82:ca:b2:ef:b7:c5:6b:86:d4:75:e0:3e:
3c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B9:D8:5F:FF:BD:E4:3D:6F:E7:B1:B1:20:71:75:BE:13:A0:09:2A
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138382e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.188.0/24
Signature Algorithm: sha256WithRSAEncryption
23:1c:bf:3a:86:bd:50:53:8b:8f:47:3e:a6:ce:e7:67:05:e8:
35:06:4d:b7:02:63:d3:42:96:89:0d:1d:1c:5a:a1:17:31:f0:
1b:b2:60:11:1e:01:f2:0d:32:c0:60:31:41:2d:b3:3e:20:47:
03:03:9d:06:d1:62:fd:4e:82:c0:6e:eb:2e:b8:c0:f4:eb:32:
d6:28:5c:32:a0:e2:fa:d9:f1:4b:cf:ef:97:ec:d2:72:45:18:
c8:9a:00:6d:8c:9d:57:a0:26:12:5f:05:dd:fe:81:b1:ed:47:
40:30:a7:31:50:29:e3:2a:88:6e:a2:a9:75:a3:d2:4d:87:5d:
57:89:39:67:8f:81:c4:3c:9d:ae:1f:a0:a0:65:9d:05:d7:26:
46:d3:c6:56:e7:1b:6e:3a:31:7f:9b:75:aa:44:c0:68:86:44:
28:47:c7:a0:44:83:e7:07:3a:46:e8:15:4f:d7:34:3d:b2:01:
fc:e8:09:15:7c:e0:fb:f7:05:3f:bd:e4:64:03:5b:44:a8:e0:
8d:28:af:d0:ed:51:ac:7e:84:49:f6:5b:2c:25:c4:12:a5:a7:
f1:60:20:20:db:57:ad:19:50:3c:40:a2:88:47:0c:5f:e4:87:
a8:7e:16:45:d2:18:cb:24:37:24:ed:8f:29:cd:bc:6c:c8:57:
0e:bc:93:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:22:33 2024 by rpki-client on console-fra.rpki-client.org