Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138392e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3138392e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: IQaZJekI3ftf/e4bkhosUPNKYSBKaSVucwcTGSqvQsU=
Subject key identifier: A5:49:BF:0D:69:7B:D2:AC:50:00:AA:DA:48:D9:95:6C:AC:71:A3:F5
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 3A436BF559777D69F53D23C5C6DE1AACCDEDBF2B
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138392e302f32342d3234203d3e203331313033.roa
Signing time: Fri 31 May 2024 09:35:30 +0000
ROA not before: Fri 31 May 2024 09:30:30 +0000
ROA not after: Fri 30 May 2025 09:35:30 +0000
asID: 31103
IP address blocks: 95.169.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:43:6b:f5:59:77:7d:69:f5:3d:23:c5:c6:de:1a:ac:cd:ed:bf:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 09:30:30 2024 GMT
Not After : May 30 09:35:30 2025 GMT
Subject: CN=A549BF0D697BD2AC5000AADA48D9956CAC71A3F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:38:29:83:24:e7:8c:8b:c2:48:38:1f:ba:d8:
d2:18:20:97:c2:03:ac:7e:c2:7f:1c:e2:62:cd:67:
ae:48:d4:6d:d4:34:6c:06:60:cb:df:ca:c9:be:90:
f5:d4:63:d3:15:9a:49:b1:02:bf:df:70:86:f7:49:
db:fa:f7:0a:f8:15:d7:d1:e8:de:a7:4b:12:d2:55:
98:e9:2a:11:18:8e:f7:97:f2:b3:bd:61:e9:b0:44:
ab:39:30:e7:47:86:c5:d9:ce:61:9c:5e:0c:f4:bc:
27:ff:a7:d3:2d:22:66:b4:0b:87:36:c0:47:1c:d1:
f5:dc:99:10:b8:46:f0:e3:16:08:b2:22:50:89:d7:
ed:c5:63:39:3a:53:ee:9e:26:71:75:0a:c4:93:21:
9b:c0:d5:16:5c:2e:48:a4:c4:f9:3c:7d:8b:60:4b:
67:c6:1f:60:54:9b:44:af:5c:8a:50:58:87:28:da:
ed:9d:26:13:9f:82:f2:3b:67:aa:f1:f7:56:09:71:
22:ce:db:15:fa:b6:93:60:17:57:06:c6:b2:34:e0:
ac:26:8f:13:0f:5d:06:86:c9:23:95:88:b6:96:6d:
0b:f9:01:23:63:46:7f:90:40:08:13:5f:7f:b4:03:
a3:0c:c2:bc:2c:4e:90:ea:1c:1c:e8:c0:8d:1a:aa:
17:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:49:BF:0D:69:7B:D2:AC:50:00:AA:DA:48:D9:95:6C:AC:71:A3:F5
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138392e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.189.0/24
Signature Algorithm: sha256WithRSAEncryption
30:21:07:83:5e:22:c9:f6:da:14:cf:a7:36:9f:b1:3b:dd:0b:
ef:8b:e5:8d:72:8e:2d:aa:40:02:26:10:0c:54:d5:0a:db:c6:
da:bd:d8:38:0d:bd:e6:0e:68:42:24:d7:5e:90:24:92:2e:fb:
b7:e6:15:09:a6:ca:87:be:e5:2c:45:3d:cd:6d:cb:88:60:97:
54:91:2e:7b:64:dd:c1:04:8b:e2:e2:54:ef:82:c4:84:8d:63:
32:34:5d:0b:e5:91:32:5b:6c:eb:0e:a8:c9:ac:3f:89:af:6d:
00:32:e5:ce:b8:c6:23:6d:c1:e7:87:83:7a:24:2a:9b:d3:bf:
4e:b7:18:0c:32:30:79:9c:44:f5:9c:d5:73:40:51:df:57:a9:
5f:8d:9b:d5:7e:1b:b6:9d:ba:74:97:94:85:7f:1d:c7:ee:1c:
c1:c6:fd:f1:22:61:12:1b:c7:be:ff:4a:d1:b1:6f:84:b3:df:
98:97:63:79:12:b2:83:49:08:27:a0:8c:c0:f9:7f:77:64:34:
79:a1:32:d9:10:28:68:ed:69:40:ac:9b:b0:bc:ff:94:36:1f:
e2:68:4d:1d:76:7d:b3:1b:78:73:68:16:af:fd:26:0e:33:99:
72:b6:c4:c6:b9:5e:35:d9:51:84:1d:bc:e7:28:51:2a:51:b7:
c2:17:21:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:20 2024 by rpki-client on console-ams.rpki-client.org