Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136392e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3136392e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: I82uo/QE6Wy3PHz0iuior83bbmdz5PrUnUTfAbS8VFk=
Subject key identifier: 65:45:01:DB:04:F2:00:D7:A7:4B:96:8E:3B:FC:F0:4A:D6:C4:97:9C
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 6218BE972E881B8F2B17EFC958994F370A2E61FC
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136392e302f32342d3234203d3e203331313033.roa
Signing time: Fri 02 May 2025 09:54:05 +0000
ROA not before: Fri 02 May 2025 09:49:05 +0000
ROA not after: Fri 01 May 2026 09:54:05 +0000
asID: 31103
IP address blocks: 95.169.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 20:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:18:be:97:2e:88:1b:8f:2b:17:ef:c9:58:99:4f:37:0a:2e:61:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 2 09:49:05 2025 GMT
Not After : May 1 09:54:05 2026 GMT
Subject: CN=654501DB04F200D7A74B968E3BFCF04AD6C4979C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f9:04:06:15:7f:87:fa:37:57:81:7d:ad:28:
4f:c1:b3:f5:a5:41:e2:88:d7:b5:c0:02:89:d3:db:
60:d4:7c:ec:98:c7:41:89:bd:aa:a2:fa:a6:e7:5a:
ba:6a:94:45:9f:91:8a:e7:98:71:b7:d6:d8:31:36:
43:0d:4b:06:5d:66:b6:d0:45:e8:13:6d:3f:67:75:
35:52:b7:e5:fa:2c:34:db:bc:95:68:c0:db:62:b6:
33:44:be:0e:34:39:38:22:c9:7c:eb:96:58:c4:64:
2c:31:b8:60:29:bf:b4:e7:b1:7b:c8:0b:0d:c1:26:
91:53:b9:a9:1c:8a:af:21:be:eb:2e:54:68:90:7d:
30:0b:ee:cf:58:0c:a5:33:3d:7f:9c:e6:c0:4b:e8:
9b:8b:8b:db:73:c3:0e:9c:20:92:5a:e8:94:0d:3a:
cc:84:9d:d2:37:05:09:2f:ed:16:23:89:fd:4b:5c:
8d:b2:4e:24:53:44:ed:8b:a6:f6:99:ed:75:b7:e6:
04:9d:0d:95:cb:eb:04:cd:e2:4a:b8:47:38:ec:a0:
bb:34:de:5f:aa:27:0e:82:92:a5:9e:86:81:73:f9:
5a:53:97:1b:de:67:9f:61:b5:12:39:b0:55:d0:c6:
79:6f:ad:3d:c4:bb:b6:ba:51:93:d5:1e:da:13:f4:
dc:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:45:01:DB:04:F2:00:D7:A7:4B:96:8E:3B:FC:F0:4A:D6:C4:97:9C
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136392e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.169.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:08:8a:f2:bd:a5:a1:76:78:cb:08:41:81:6b:ee:49:81:7e:
c8:b5:19:d2:d4:17:d1:80:60:ce:5b:7e:3d:a9:c8:0a:7f:d2:
24:00:f0:b2:22:b3:15:95:d2:ad:aa:20:ab:46:93:dc:15:bf:
d2:08:98:64:3a:f0:ce:24:df:6c:72:2f:41:f6:aa:3b:8e:e2:
c5:01:0a:36:c6:4e:88:72:76:83:6b:7a:2c:a9:39:97:44:ef:
97:e1:2f:8c:ab:05:e6:f9:a6:b9:9b:cb:94:b8:eb:bf:29:13:
27:de:d7:92:a0:ea:8d:cd:3a:ad:21:ce:ba:87:bc:2f:78:d2:
6b:14:92:7b:14:8c:de:eb:8c:1c:9f:23:8e:45:50:5c:09:9a:
5d:dd:2b:f0:e6:8b:6f:89:74:d2:c6:63:ee:60:7c:fc:10:ac:
fc:d8:0e:43:7f:df:8e:df:52:10:de:52:90:5d:a0:f0:10:8a:
f4:a9:20:f6:67:dc:46:b7:67:31:89:f2:13:a8:18:f9:2a:da:
75:97:7b:8e:33:ec:8e:a0:63:16:e1:90:26:4d:2d:21:15:da:
7a:1e:e8:51:ab:61:6d:dc:ec:40:3a:4c:fc:5e:96:90:ca:8d:
88:77:d5:cf:70:b8:a3:5d:8e:e5:55:da:06:48:fa:ac:fb:0f:
2f:ff:5d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 00:33:26 2025 by rpki-client