Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138382e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3138382e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: 226MZdY+a2f6nMwQHLZZRp09daRbMnARjilQ0DMiCn8=
Subject key identifier: 5A:73:32:39:57:62:D6:31:1F:78:BD:D7:E5:A2:1C:7D:D3:72:DB:16
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 44308B7FFD09B4E159D47A0EB019567BEC4FE0F4
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138382e302f32342d3234203d3e203331313033.roa
Signing time: Fri 02 May 2025 09:54:04 +0000
ROA not before: Fri 02 May 2025 09:49:04 +0000
ROA not after: Fri 01 May 2026 09:54:04 +0000
asID: 31103
IP address blocks: 95.169.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 14:15:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:30:8b:7f:fd:09:b4:e1:59:d4:7a:0e:b0:19:56:7b:ec:4f:e0:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 2 09:49:04 2025 GMT
Not After : May 1 09:54:04 2026 GMT
Subject: CN=5A7332395762D6311F78BDD7E5A21C7DD372DB16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4a:32:4a:8e:9f:bb:25:27:88:f4:53:2c:b6:
7f:5b:53:78:42:9d:96:1a:c3:9d:95:bf:5c:2f:93:
fc:46:25:bd:7c:b3:f9:2f:71:3e:c2:3c:22:82:1c:
38:88:17:bc:77:67:56:60:e5:3d:92:90:b1:0e:6a:
7a:86:98:38:3e:c6:03:6e:bd:60:dc:80:df:f8:1c:
40:f9:68:93:16:d3:64:6c:b2:41:28:ce:1a:8e:7e:
ad:93:13:3d:a8:d5:8e:83:ac:da:cb:04:aa:71:e0:
e4:d5:ec:f6:cb:14:28:e6:b5:91:82:2e:39:f7:92:
b7:ae:ea:0d:28:02:79:45:6d:44:ae:a2:0f:40:3e:
c2:3b:8b:a7:db:2f:51:9d:3c:38:33:30:83:00:f8:
4b:c8:41:f0:87:33:35:09:08:28:d3:08:43:8e:09:
b0:50:5b:04:66:7c:cc:51:f4:be:4a:11:44:d1:1b:
65:e3:f8:4e:7f:c9:8e:c5:f5:33:56:d9:84:45:fc:
06:1d:fe:2c:52:09:17:13:6b:d8:5d:01:a8:a2:61:
f8:f5:64:65:66:9e:9a:14:9d:23:fb:ff:86:bc:20:
89:b5:ce:ea:01:88:b7:8c:ce:69:8b:5f:07:3d:51:
80:ed:da:12:26:a8:0d:76:4a:9a:35:6f:e9:62:d4:
d1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:73:32:39:57:62:D6:31:1F:78:BD:D7:E5:A2:1C:7D:D3:72:DB:16
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138382e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.188.0/24
Signature Algorithm: sha256WithRSAEncryption
49:ae:89:d1:cb:1b:3c:de:72:a7:79:43:d6:d5:23:78:92:39:
b8:7f:73:56:47:19:ad:d3:d1:d1:70:7d:49:38:0f:c2:eb:4e:
32:e3:0a:53:64:d1:6c:6d:10:01:84:5e:39:60:bf:47:da:74:
f4:6e:db:06:ea:22:08:c5:fd:71:a4:a8:61:77:10:67:3b:7d:
53:f7:2c:05:2e:04:32:95:b1:03:92:bf:36:50:5f:17:19:b1:
27:f8:f1:cc:04:31:3a:28:27:3b:21:29:a9:e2:5f:d3:8b:13:
95:7e:a9:7f:c6:fa:bb:13:5c:26:4f:be:d0:f4:ab:6d:ce:15:
82:8e:3e:77:82:c4:b4:d3:62:2f:6f:5a:f5:cb:36:72:f8:cf:
5e:1f:6b:06:8b:00:ac:42:a8:aa:3b:cb:e1:b3:91:6d:7c:2e:
be:dc:a5:77:3b:f2:4f:e2:59:cf:11:87:de:97:14:e4:5a:6e:
c6:d1:94:f5:5b:88:37:e5:dd:cf:5c:d3:63:40:e3:da:5a:78:
aa:04:c9:7e:14:d2:78:15:98:8a:d5:81:9b:ac:7b:00:1e:11:
7b:2b:3c:a8:01:3b:f5:3d:79:be:51:78:60:f6:42:42:a5:c9:
02:d2:ac:3f:e2:31:23:75:38:e2:b5:71:22:68:cd:a0:f8:d5:
a6:fd:a1:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 05:02:36 2025 by rpki-client