Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138322e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3138322e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: MIFV8cJ9qNpMecIFeReLvKdqknaaeAVxdEuriaz+uNo=
Subject key identifier: E4:13:27:69:CC:AB:B0:A0:07:4E:72:41:D0:BA:17:9E:A7:FF:BE:02
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 237ED2CB0881DE05BE2C4126BE8847C9624D5B40
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138322e302f32342d3234203d3e203331313033.roa
Signing time: Fri 02 May 2025 09:54:04 +0000
ROA not before: Fri 02 May 2025 09:49:04 +0000
ROA not after: Fri 01 May 2026 09:54:04 +0000
asID: 31103
IP address blocks: 95.169.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 01:58:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:7e:d2:cb:08:81:de:05:be:2c:41:26:be:88:47:c9:62:4d:5b:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 2 09:49:04 2025 GMT
Not After : May 1 09:54:04 2026 GMT
Subject: CN=E4132769CCABB0A0074E7241D0BA179EA7FFBE02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:81:b3:2b:21:ba:29:e4:e6:bf:34:3c:53:14:
0c:ee:0f:ae:cf:0e:77:58:8b:4e:84:0b:35:6e:5a:
0b:b4:40:51:7f:4d:07:84:56:ec:68:d5:f1:3e:87:
9f:5f:31:c7:a3:74:d7:42:00:38:0f:ec:b7:59:5a:
ca:1d:c7:30:44:c6:29:13:89:d1:bd:cb:b1:b0:a8:
4e:14:44:12:e1:f5:dd:64:2c:8d:da:d2:37:ec:10:
c4:d6:2a:dc:a7:d3:af:5e:b7:cf:de:f2:39:c0:fc:
43:03:44:75:a8:96:98:a2:d2:67:65:12:90:cb:82:
72:ab:b0:30:4c:22:b5:a3:69:6d:8a:f1:e2:56:8e:
81:6f:3b:81:97:06:d6:2f:f3:5e:37:b1:40:9a:b9:
9b:e1:10:58:6c:6f:ef:4c:06:5c:c2:c3:16:af:5d:
f0:1a:34:7b:6b:6b:d8:6f:85:2d:07:21:58:b0:35:
3b:1a:eb:1a:b5:b0:31:dc:0d:9a:b7:19:14:da:7e:
98:1b:5a:c5:7b:dd:f0:64:36:82:e5:1c:30:7c:08:
a2:cc:ab:0c:f6:11:70:af:64:c0:0c:75:9a:9e:41:
b9:f6:ac:58:40:d6:cc:0c:57:23:31:c7:2e:a1:99:
dc:eb:39:f7:95:8c:b8:af:cc:ff:01:cc:ac:a7:43:
ac:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:13:27:69:CC:AB:B0:A0:07:4E:72:41:D0:BA:17:9E:A7:FF:BE:02
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138322e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.182.0/24
Signature Algorithm: sha256WithRSAEncryption
47:27:ab:34:01:5f:e1:20:05:71:b4:04:7b:29:57:98:fa:f0:
a9:e2:b9:8a:6d:3e:9b:c1:8d:8b:ba:ab:18:67:fd:c0:7d:ae:
e6:22:c3:90:dc:9d:7c:07:38:8b:22:d9:6a:c3:95:45:f8:46:
ea:ae:d8:a7:52:10:69:02:f1:e4:cc:af:ec:57:fe:d8:bc:93:
e2:ea:5e:7e:c7:44:fa:f2:85:55:4c:c1:34:dc:7c:f4:4d:02:
41:6d:b5:75:77:fa:79:f9:52:0b:ca:4b:10:1c:8d:1b:f2:92:
33:cf:1a:1d:3e:cd:67:6e:96:05:ce:ba:5e:c8:a7:03:7b:52:
60:69:1c:2c:fa:52:6c:4e:28:c3:2e:cd:0b:d9:14:d0:e5:65:
a2:49:ce:04:63:88:1b:fb:58:f1:83:8c:48:0a:6b:6a:7c:82:
21:12:2c:75:90:26:01:5e:da:b2:a4:e6:29:f1:f9:8e:e9:54:
9d:c7:4c:aa:2d:9a:55:b2:0e:7a:b9:00:18:62:4f:d8:93:b9:
74:84:93:ee:30:27:1a:d0:c1:6b:d6:7c:03:93:63:05:68:09:
ba:3e:85:34:da:d6:6b:28:eb:bc:66:71:07:12:47:67:6d:4c:
bc:7a:e2:87:b8:1d:c8:0a:b4:e2:f3:bf:f3:6d:ce:6e:b5:d1:
21:21:5e:11
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUI37SywiB3gW+LEEmvohHyWJNW0AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWU1NzY5OTYzODhlOTRiOGM3YWIyMGVmZmIyM2JkMTFi
ZWNiNDEwODAeFw0yNTA1MDIwOTQ5MDRaFw0yNjA1MDEwOTU0MDRaMDMxMTAvBgNV
BAMTKEU0MTMyNzY5Q0NBQkIwQTAwNzRFNzI0MUQwQkExNzlFQTdGRkJFMDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1gbMrIbop5Oa/NDxTFAzuD67P
DndYi06ECzVuWgu0QFF/TQeEVuxo1fE+h59fMcejdNdCADgP7LdZWsodxzBExikT
idG9y7GwqE4URBLh9d1kLI3a0jfsEMTWKtyn069et8/e8jnA/EMDRHWolpii0mdl
EpDLgnKrsDBMIrWjaW2K8eJWjoFvO4GXBtYv8143sUCauZvhEFhsb+9MBlzCwxav
XfAaNHtra9hvhS0HIViwNTsa6xq1sDHcDZq3GRTafpgbWsV73fBkNoLlHDB8CKLM
qwz2EXCvZMAMdZqeQbn2rFhA1swMVyMxxy6hmdzrOfeVjLivzP8BzKynQ6xJAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU5BMnacyrsKAHTnJB0LoXnqf/vgIwHwYDVR0j
BBgwFoAUnldpljiOlLjHqyDv+yO9Eb7LQQgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAtMmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2
MTIzLzAvOUU1NzY5OTYzODhFOTRCOEM3QUIyMEVGRkIyM0JEMTFCRUNCNDEwOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25sZHBsamlPbExqSHF5RHYteU85RWI3
TFFRZy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAt
MmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2MTIzLzAvMzkzNTJlMzEzNjM5MmUzMTM4
MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzMxMzEzMDMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
X6m2MA0GCSqGSIb3DQEBCwUAA4IBAQBHJ6s0AV/hIAVxtAR7KVeY+vCp4rmKbT6b
wY2LuqsYZ/3Afa7mIsOQ3J18BziLItlqw5VF+EbqrtinUhBpAvHkzK/sV/7YvJPi
6l5+x0T68oVVTME03Hz0TQJBbbV1d/p5+VILyksQHI0b8pIzzxodPs1nbpYFzrpe
yKcDe1JgaRws+lJsTijDLs0L2RTQ5WWiSc4EY4gb+1jxg4xICmtqfIIhEix1kCYB
XtqypOYp8fmO6VSdx0yqLZpVsg56uQAYYk/Yk7l0hJPuMCca0MFr1nwDk2MFaAm6
PoU02tZrKOu8ZnEHEkdnbUy8euKHuB3ICrTi87/zbc5utdEhIV4R
-----END CERTIFICATE-----
Generated at Thu May 8 17:25:53 2025 by rpki-client