Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138342e302f32322d3232203d3e203331313033.roa
File: 39352e3136392e3138342e302f32322d3232203d3e203331313033.roa (raw, json)
Hash identifier: 2fESKlF0+csH+bkbWbTv3oOmUla4DBnBrtpXwsB8xtg=
Subject key identifier: 44:5A:2C:37:A7:40:BA:73:D6:D8:07:1F:BE:42:06:62:AB:23:B0:5D
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 7D4A909EEEB411EA551B46135E3AE99F18F1F152
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138342e302f32322d3232203d3e203331313033.roa
Signing time: Fri 02 May 2025 09:54:04 +0000
ROA not before: Fri 02 May 2025 09:49:04 +0000
ROA not after: Fri 01 May 2026 09:54:04 +0000
asID: 31103
IP address blocks: 95.169.184.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 23:19:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:4a:90:9e:ee:b4:11:ea:55:1b:46:13:5e:3a:e9:9f:18:f1:f1:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 2 09:49:04 2025 GMT
Not After : May 1 09:54:04 2026 GMT
Subject: CN=445A2C37A740BA73D6D8071FBE420662AB23B05D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c3:54:27:cf:b0:4b:a4:60:01:0f:5b:d4:d2:
ba:fd:16:4e:96:b1:6d:3d:85:e6:65:0c:2c:53:90:
54:1d:5c:8d:fa:4f:c3:f1:b3:41:df:6a:81:8c:6d:
df:c7:8c:4e:20:69:c6:a7:ed:1c:79:44:d1:c9:e7:
49:bf:f0:0a:1e:fa:33:2d:55:47:9c:90:3a:03:81:
ee:ad:d0:00:c0:30:34:2c:3f:8a:02:f8:4a:a4:0d:
ba:e7:7d:9d:72:da:cc:b7:ef:5f:8c:88:ba:6c:34:
f6:5a:c6:ab:ce:a5:c4:dd:40:a6:96:6d:10:64:2d:
a3:c3:61:d0:c1:86:d4:2e:3b:00:28:78:74:44:bc:
ff:a9:96:e9:f6:02:6e:fb:c0:2e:73:65:6b:8a:fb:
20:5a:e6:0d:b9:0c:18:6c:88:59:16:3e:77:72:1a:
4e:52:e0:76:6f:0c:00:38:4c:fc:6e:0b:ac:42:29:
24:ba:51:f2:a1:70:12:f9:7c:e3:0b:dc:d2:2b:fe:
a5:9c:e9:32:0d:0e:71:09:26:dd:63:2a:5c:10:9e:
15:bb:24:3d:9a:12:51:58:32:b6:0e:e3:b8:01:d1:
d0:2d:58:46:5f:08:0c:4f:32:04:c1:35:df:9e:cf:
c8:c1:96:f2:55:54:10:bb:29:02:54:31:cf:13:d9:
e2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:5A:2C:37:A7:40:BA:73:D6:D8:07:1F:BE:42:06:62:AB:23:B0:5D
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138342e302f32322d3232203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.184.0/22
Signature Algorithm: sha256WithRSAEncryption
68:be:29:34:5d:55:6c:3f:6b:3c:8c:13:e3:de:8d:d0:24:eb:
1a:4f:b3:51:e2:70:1c:1d:e7:fa:09:ab:33:3a:c9:84:83:26:
e1:94:07:85:7b:3f:57:85:c6:8c:29:12:f7:b4:0d:6e:da:21:
f7:37:cc:e2:bc:ec:7f:7c:10:fe:53:4b:51:94:bf:43:f5:c8:
aa:d3:23:de:34:30:bf:df:3d:52:3d:9a:39:55:47:e4:b9:0f:
59:5e:f9:43:00:bd:b5:12:f7:0f:31:41:db:8f:87:fa:a3:b6:
a9:f5:6d:bf:8c:a8:d2:31:a5:45:d0:f8:8f:70:1e:f4:bd:26:
bb:e8:13:34:80:80:14:3f:5c:85:3c:b3:4f:6f:77:6c:a9:34:
27:0b:22:aa:b7:df:27:af:7b:69:72:78:94:e4:d2:0d:4b:b9:
63:fd:1c:8a:6d:e7:68:8a:db:82:60:14:ea:11:0d:ac:ad:d5:
a1:93:0b:05:8b:bf:cb:73:1a:e9:98:e3:38:f1:fe:32:81:8f:
6d:0f:7b:55:39:37:ce:7d:45:b6:7f:41:12:3e:07:a8:23:90:
d9:f4:c4:18:29:3d:da:91:00:17:d6:ad:7b:c5:1c:2d:60:b4:
36:29:f4:da:eb:c9:f0:45:40:56:05:20:4f:1e:fb:6d:0b:28:
7c:8a:72:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 12:07:59 2025 by rpki-client