Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138332e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3138332e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: 14BjJABvK45hEO1MTADvUJ8/9d09FCU82zdQ6aYQXvA=
Subject key identifier: 79:5D:C8:1A:61:A1:13:C7:02:C5:9A:84:94:57:8E:6A:C9:87:80:F2
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 6882D59716FA78DC7FD89218B98174C46358DA70
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138332e302f32342d3234203d3e203331313033.roa
Signing time: Fri 02 May 2025 09:54:04 +0000
ROA not before: Fri 02 May 2025 09:49:04 +0000
ROA not after: Fri 01 May 2026 09:54:04 +0000
asID: 31103
IP address blocks: 95.169.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:82:d5:97:16:fa:78:dc:7f:d8:92:18:b9:81:74:c4:63:58:da:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 2 09:49:04 2025 GMT
Not After : May 1 09:54:04 2026 GMT
Subject: CN=795DC81A61A113C702C59A8494578E6AC98780F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:45:01:b9:e3:db:0b:5c:04:e5:b0:25:55:72:
4a:50:c9:fe:f1:6f:09:24:84:4a:f7:84:58:f5:22:
19:42:84:61:a6:a7:b2:7a:c8:3a:5f:a6:0b:06:9f:
ff:7d:ff:b3:79:c6:ae:75:00:3d:ae:a9:e0:4a:04:
f0:ec:f2:d4:02:bc:0d:24:eb:3b:82:ac:62:55:00:
fe:81:e1:6e:1b:11:fb:c1:68:dd:08:84:e5:44:5a:
54:e4:03:68:c1:c8:ea:86:64:65:ec:8e:5b:be:fb:
b1:e5:fc:a7:d3:91:cd:f1:37:94:5b:40:06:ac:cb:
e3:59:17:3f:d1:14:68:ba:d5:28:e9:71:da:34:f2:
e7:5b:0c:44:e2:f2:12:ca:bb:d6:1c:33:fb:b7:bb:
00:d6:e0:1b:63:dd:46:b9:55:88:db:cc:cd:c6:cf:
71:d9:a9:e9:b1:93:94:57:f2:2b:1f:17:34:73:10:
c4:88:1f:11:d9:83:23:95:5c:4a:ce:dc:5a:c9:d2:
ac:c2:c9:70:84:84:aa:22:88:ef:bd:20:15:55:84:
00:c9:72:bd:2e:d9:42:9f:f1:01:66:1e:4b:20:3b:
d8:b3:03:3a:cb:44:07:98:88:a7:77:c7:3a:7d:07:
dc:09:7c:3b:83:e5:86:26:64:1b:c3:f0:2d:5d:bd:
94:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:5D:C8:1A:61:A1:13:C7:02:C5:9A:84:94:57:8E:6A:C9:87:80:F2
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138332e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.183.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:8d:1b:43:b4:17:92:51:bc:d8:30:c2:71:57:3e:b4:4e:9f:
4d:67:6a:da:73:2e:11:37:62:69:17:96:ad:47:ec:fa:a9:7a:
f5:fe:a0:67:a4:b0:3e:63:f1:3a:a1:0c:5e:37:b2:70:58:b2:
6d:a5:dc:1f:55:54:9d:d0:5a:da:44:4c:9e:f3:50:43:53:88:
55:64:df:b8:a4:6d:8f:bb:7c:f5:96:08:a3:2f:92:a7:01:3e:
b6:91:99:6f:32:7b:61:e6:ac:40:86:db:7b:bd:62:9e:5f:77:
14:a0:1e:6b:de:2d:41:71:57:7f:7f:6f:5e:09:65:34:f3:c1:
4f:b5:04:b2:09:bb:06:7e:84:f0:45:a5:24:45:d8:a8:51:16:
92:56:e8:e9:c8:dc:9b:41:af:a9:d4:ee:bb:67:07:b5:2b:ec:
ba:0f:38:d4:fe:89:2a:85:fe:a4:aa:f5:74:43:7d:73:d5:99:
4d:30:de:5a:a5:96:11:22:e9:3f:8e:5e:5a:86:b2:7a:a9:ff:
74:39:dd:3d:0e:b4:7d:25:1f:c4:e4:85:c2:3b:4d:a1:3a:0a:
a9:22:26:6c:bb:27:af:8d:20:3e:03:67:2a:10:23:d0:76:f7:
3d:51:d0:8a:3b:7a:a5:d5:c1:db:b3:26:95:72:5a:f4:b1:ea:
56:82:1c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 18:46:04 2025 by rpki-client