Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3139302e302f32332d3233203d3e203331313033.roa
File: 39352e3136392e3139302e302f32332d3233203d3e203331313033.roa (raw, json)
Hash identifier: xRfBE2sy40y3MXWBykGYhbVP1IkiVOxNFkICZ6s2SjQ=
Subject key identifier: B8:15:80:99:5A:7E:45:8F:88:1E:E4:E5:B8:C3:24:E6:2C:BB:4F:5F
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 4D01202E9CCA8F578B117D3774701411BB92276A
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3139302e302f32332d3233203d3e203331313033.roa
Signing time: Fri 31 May 2024 09:35:29 +0000
ROA not before: Fri 31 May 2024 09:30:29 +0000
ROA not after: Fri 30 May 2025 09:35:29 +0000
asID: 31103
IP address blocks: 95.169.190.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:01:20:2e:9c:ca:8f:57:8b:11:7d:37:74:70:14:11:bb:92:27:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 09:30:29 2024 GMT
Not After : May 30 09:35:29 2025 GMT
Subject: CN=B81580995A7E458F881EE4E5B8C324E62CBB4F5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:68:1a:84:3a:ba:3e:65:f6:50:b0:10:91:30:
5c:ea:e4:ff:fe:67:2c:b1:47:4c:7d:32:6e:6e:89:
6a:09:76:4e:bb:29:5e:d6:7a:39:b0:3b:fb:a9:bd:
71:0a:d5:b5:d4:8e:d6:22:14:3e:3d:8b:ca:69:c5:
5a:ff:38:99:0d:d4:c5:e7:bd:8f:e1:00:91:35:64:
31:a6:6d:19:d8:8a:ea:ba:23:f7:d3:14:a3:67:3f:
2f:66:9e:11:18:87:32:ad:99:35:04:42:ac:00:b3:
fe:ab:db:ea:c9:e2:b7:63:f1:c9:ba:05:bb:81:ed:
a1:74:9b:bd:37:b0:ef:c8:6d:d1:64:41:ed:8a:c8:
38:f6:19:82:b2:64:7e:62:85:1f:63:02:52:73:6a:
dc:8b:8a:bd:e4:d8:1c:89:c4:24:97:41:77:23:9b:
e7:37:44:20:ac:9e:2b:79:54:08:24:57:98:68:85:
57:6a:85:d9:c7:de:e2:7d:78:ec:db:79:12:2e:24:
1f:e9:b6:8c:90:56:55:e8:27:35:c4:6b:8a:a4:a2:
49:5c:11:48:03:45:04:13:3d:26:b3:1e:44:1f:fc:
90:d4:42:c5:1d:1d:98:d7:5e:a9:1a:07:58:8c:7e:
45:fd:87:dc:2e:21:09:68:3e:56:16:5f:76:f3:c8:
c4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:15:80:99:5A:7E:45:8F:88:1E:E4:E5:B8:C3:24:E6:2C:BB:4F:5F
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3139302e302f32332d3233203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.190.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:2e:c0:c9:0f:70:43:4d:15:66:16:58:be:01:ec:1d:d1:f0:
0f:c4:07:1f:25:c6:d6:b7:c9:fd:1a:9a:d7:a9:98:46:a4:6c:
a7:95:c4:3d:cf:b2:ae:89:15:40:bf:e6:5d:ef:3f:7c:17:4e:
48:72:01:ed:34:58:4e:44:73:fb:8b:3a:ff:1b:82:9f:41:62:
28:31:1a:b3:8a:8d:82:c2:27:8e:61:14:23:de:a0:ed:47:7b:
39:2c:45:58:ba:7e:dd:4f:33:ea:29:ba:af:c4:44:e1:ef:4e:
a2:8f:0a:47:eb:17:17:d6:4a:8d:f3:c8:01:af:12:e9:5b:b8:
ae:2a:72:18:e2:78:b0:9e:ea:fa:2d:3e:87:c4:2e:08:02:e2:
b4:2e:91:38:65:51:63:a3:01:ab:9a:d9:85:8a:cf:3c:c5:ae:
88:b7:01:a2:e9:68:b0:3f:02:5b:45:0e:e4:8c:7f:40:ba:0b:
e3:c4:b2:b3:a4:9b:47:79:eb:4e:04:cc:05:21:13:69:05:55:
f6:25:f9:ee:30:7d:26:c6:38:1a:c3:0c:ae:75:9e:3c:98:0b:
dc:d9:04:58:17:ff:12:89:b3:00:86:18:f6:b7:cd:88:cc:5b:
db:35:9a:80:75:99:04:1a:4b:7d:ff:b4:92:8e:15:86:87:9b:
77:80:ef:75
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUTQEgLpzKj1eLEX03dHAUEbuSJ2owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWU1NzY5OTYzODhlOTRiOGM3YWIyMGVmZmIyM2JkMTFi
ZWNiNDEwODAeFw0yNDA1MzEwOTMwMjlaFw0yNTA1MzAwOTM1MjlaMDMxMTAvBgNV
BAMTKEI4MTU4MDk5NUE3RTQ1OEY4ODFFRTRFNUI4QzMyNEU2MkNCQjRGNUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfaBqEOro+ZfZQsBCRMFzq5P/+
ZyyxR0x9Mm5uiWoJdk67KV7WejmwO/upvXEK1bXUjtYiFD49i8ppxVr/OJkN1MXn
vY/hAJE1ZDGmbRnYiuq6I/fTFKNnPy9mnhEYhzKtmTUEQqwAs/6r2+rJ4rdj8cm6
BbuB7aF0m703sO/IbdFkQe2KyDj2GYKyZH5ihR9jAlJzatyLir3k2ByJxCSXQXcj
m+c3RCCsnit5VAgkV5hohVdqhdnH3uJ9eOzbeRIuJB/ptoyQVlXoJzXEa4qkoklc
EUgDRQQTPSazHkQf/JDUQsUdHZjXXqkaB1iMfkX9h9wuIQloPlYWX3bzyMRVAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUuBWAmVp+RY+IHuTluMMk5iy7T18wHwYDVR0j
BBgwFoAUnldpljiOlLjHqyDv+yO9Eb7LQQgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAtMmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2
MTIzLzAvOUU1NzY5OTYzODhFOTRCOEM3QUIyMEVGRkIyM0JEMTFCRUNCNDEwOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25sZHBsamlPbExqSHF5RHYteU85RWI3
TFFRZy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAt
MmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2MTIzLzAvMzkzNTJlMzEzNjM5MmUzMTM5
MzAyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMzMxMzEzMDMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
X6m+MA0GCSqGSIb3DQEBCwUAA4IBAQBuLsDJD3BDTRVmFli+Aewd0fAPxAcfJcbW
t8n9GprXqZhGpGynlcQ9z7KuiRVAv+Zd7z98F05IcgHtNFhORHP7izr/G4KfQWIo
MRqzio2CwieOYRQj3qDtR3s5LEVYun7dTzPqKbqvxETh706ijwpH6xcX1kqN88gB
rxLpW7iuKnIY4niwnur6LT6HxC4IAuK0LpE4ZVFjowGrmtmFis88xa6ItwGi6Wiw
PwJbRQ7kjH9AugvjxLKzpJtHeetOBMwFIRNpBVX2JfnuMH0mxjgawwyudZ48mAvc
2QRYF/8SibMAhhj2t82IzFvbNZqAdZkEGkt9/7SSjhWGh5t3gO91
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:22:33 2024 by rpki-client on console-fra.rpki-client.org