Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138362e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3138362e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: az9XmcJkBqWPeM9SkwIUOpvQgtsOMzMmDzHJH6fuDM0=
Subject key identifier: 55:E4:EA:5E:B5:65:6A:E9:AC:F8:2A:12:43:C6:25:B3:B6:4F:27:15
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 4B593750844A642976EB7C4B0A4F91CAF57D16FA
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138362e302f32342d3234203d3e203331313033.roa
Signing time: Fri 02 May 2025 09:54:05 +0000
ROA not before: Fri 02 May 2025 09:49:05 +0000
ROA not after: Fri 01 May 2026 09:54:05 +0000
asID: 31103
IP address blocks: 95.169.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:59:37:50:84:4a:64:29:76:eb:7c:4b:0a:4f:91:ca:f5:7d:16:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 2 09:49:05 2025 GMT
Not After : May 1 09:54:05 2026 GMT
Subject: CN=55E4EA5EB5656AE9ACF82A1243C625B3B64F2715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e2:38:e3:72:0e:1d:77:45:9f:2a:50:ea:8e:
cb:de:4c:e1:11:e4:64:a5:f3:18:cd:e7:14:ac:c6:
15:33:62:bd:4d:c8:8a:6c:28:3c:64:a1:ca:d1:3a:
97:05:a0:ee:77:40:9a:3b:e3:db:51:5d:6a:2a:54:
c0:f8:c5:a4:40:b1:9a:c2:c9:f9:f6:81:1f:d5:3e:
b0:75:46:87:54:29:23:8b:df:f6:9c:f9:31:6e:ea:
31:70:bb:87:ee:16:28:73:d3:2f:13:5e:4d:e2:ab:
64:3f:d2:88:09:aa:15:8d:ea:ae:64:55:c1:b6:1c:
c2:8a:ac:ef:48:fb:f2:4f:0f:b4:9a:b3:a9:a8:ef:
69:fe:5d:67:9c:5a:01:1a:65:96:a4:2b:db:74:61:
40:2b:7f:17:0a:0a:ce:7a:01:56:43:8f:3a:a1:da:
c3:a4:c9:42:42:40:3b:a5:3d:e4:1a:61:e1:f7:25:
18:1d:d5:be:2c:f0:a4:11:3d:e7:d9:4a:d6:94:1f:
a6:a9:cf:ee:a2:99:62:54:3a:59:d0:68:56:02:ee:
85:d1:0e:ec:7b:c4:46:88:17:b3:7b:d3:a3:fe:0d:
33:72:42:eb:e6:d5:99:c3:86:ef:ad:6a:00:80:e7:
f8:a1:44:81:26:63:53:08:e3:2b:5c:2b:10:47:f5:
c4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E4:EA:5E:B5:65:6A:E9:AC:F8:2A:12:43:C6:25:B3:B6:4F:27:15
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138362e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.186.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:de:ef:86:48:4f:69:91:3e:fe:79:12:89:5c:c6:62:7d:41:
77:af:fd:81:2f:13:cb:76:6e:77:e3:ea:ae:a6:28:17:91:cd:
82:f8:20:ca:4d:bd:5a:58:51:7b:98:f9:c8:93:43:dd:3c:6d:
df:17:ae:3d:94:00:68:17:8b:09:d0:61:d8:47:ed:31:05:8b:
d9:3a:d9:cf:29:bd:6a:57:81:d5:90:d0:73:6f:3b:66:03:62:
14:6f:a6:f1:77:e5:32:88:66:7b:bf:24:24:26:7f:84:ea:fc:
85:ad:0d:17:33:52:f8:51:2a:ed:b0:87:b9:1e:59:79:69:19:
f4:13:12:c6:6b:72:3b:51:8d:95:bb:b3:d7:a4:fb:b0:7e:07:
97:58:7f:87:8b:85:62:df:40:f5:87:b8:24:a9:b2:b7:6c:f5:
df:cd:a0:be:99:4a:43:1b:69:3b:d1:3f:2b:ac:d6:b0:15:54:
4c:6b:e4:e6:c4:e0:67:c0:42:8a:47:fb:93:21:6f:14:76:80:
00:8b:ac:c9:47:86:68:32:86:7d:88:0e:d5:cb:4c:a0:3f:70:
3c:20:1e:b9:0c:4f:e4:7f:31:77:5b:94:ae:93:28:fd:5b:c2:
33:b0:06:e1:d7:c6:53:c0:25:23:79:2d:6d:c4:16:af:c4:fc:
e1:bc:73:a6
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUS1k3UIRKZCl263xLCk+RyvV9FvowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWU1NzY5OTYzODhlOTRiOGM3YWIyMGVmZmIyM2JkMTFi
ZWNiNDEwODAeFw0yNTA1MDIwOTQ5MDVaFw0yNjA1MDEwOTU0MDVaMDMxMTAvBgNV
BAMTKDU1RTRFQTVFQjU2NTZBRTlBQ0Y4MkExMjQzQzYyNUIzQjY0RjI3MTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCT4jjjcg4dd0WfKlDqjsveTOER
5GSl8xjN5xSsxhUzYr1NyIpsKDxkocrROpcFoO53QJo749tRXWoqVMD4xaRAsZrC
yfn2gR/VPrB1RodUKSOL3/ac+TFu6jFwu4fuFihz0y8TXk3iq2Q/0ogJqhWN6q5k
VcG2HMKKrO9I+/JPD7Sas6mo72n+XWecWgEaZZakK9t0YUArfxcKCs56AVZDjzqh
2sOkyUJCQDulPeQaYeH3JRgd1b4s8KQRPefZStaUH6apz+6imWJUOlnQaFYC7oXR
Dux7xEaIF7N706P+DTNyQuvm1ZnDhu+tagCA5/ihRIEmY1MI4ytcKxBH9cQjAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUVeTqXrVlaums+CoSQ8Yls7ZPJxUwHwYDVR0j
BBgwFoAUnldpljiOlLjHqyDv+yO9Eb7LQQgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAtMmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2
MTIzLzAvOUU1NzY5OTYzODhFOTRCOEM3QUIyMEVGRkIyM0JEMTFCRUNCNDEwOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25sZHBsamlPbExqSHF5RHYteU85RWI3
TFFRZy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAt
MmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2MTIzLzAvMzkzNTJlMzEzNjM5MmUzMTM4
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzMxMzEzMDMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
X6m6MA0GCSqGSIb3DQEBCwUAA4IBAQCm3u+GSE9pkT7+eRKJXMZifUF3r/2BLxPL
dm534+qupigXkc2C+CDKTb1aWFF7mPnIk0PdPG3fF649lABoF4sJ0GHYR+0xBYvZ
OtnPKb1qV4HVkNBzbztmA2IUb6bxd+UyiGZ7vyQkJn+E6vyFrQ0XM1L4USrtsIe5
Hll5aRn0ExLGa3I7UY2Vu7PXpPuwfgeXWH+Hi4Vi30D1h7gkqbK3bPXfzaC+mUpD
G2k70T8rrNawFVRMa+TmxOBnwEKKR/uTIW8UdoAAi6zJR4ZoMoZ9iA7Vy0ygP3A8
IB65DE/kfzF3W5Sukyj9W8IzsAbh18ZTwCUjeS1txBavxPzhvHOm
-----END CERTIFICATE-----
Generated at Fri May 9 18:44:10 2025 by rpki-client