Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323134303235.roa
File: 39332e39352e3131332e302f32342d3234203d3e20323134303235.roa (raw, json)
Hash identifier: 8Gm4nO+d4zR1wraSZ/HOIsX+oVvW2ewC+6TWc3pBhYE=
Subject key identifier: F0:03:D3:E7:1F:2C:FB:09:92:19:34:3E:6A:B9:DA:36:6F:B3:42:C6
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 12D1E5BDD58BBE5E86E919A16430FF737D942AC0
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323134303235.roa
Signing time: Tue 15 Apr 2025 23:19:06 +0000
ROA not before: Tue 15 Apr 2025 23:14:06 +0000
ROA not after: Tue 14 Apr 2026 23:19:06 +0000
asID: 214025
IP address blocks: 93.95.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 10:45:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:d1:e5:bd:d5:8b:be:5e:86:e9:19:a1:64:30:ff:73:7d:94:2a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Apr 15 23:14:06 2025 GMT
Not After : Apr 14 23:19:06 2026 GMT
Subject: CN=F003D3E71F2CFB099219343E6AB9DA366FB342C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:63:28:37:0d:a3:8d:e2:ed:94:1f:45:aa:1a:
7e:fa:8f:8c:67:b7:51:e7:92:4f:bd:9c:73:5f:31:
59:a7:1c:24:41:fc:bf:17:14:7b:dc:08:2e:26:ff:
f7:3a:ff:b3:e7:a1:2a:83:fc:27:39:9e:24:05:2c:
f2:ca:c6:37:ce:c6:a0:05:d2:14:ef:57:c9:5b:08:
a8:78:64:36:77:eb:c9:ea:c0:eb:e0:fd:9b:d6:91:
dd:95:a6:d5:b4:95:3c:42:e8:8b:07:67:ac:1a:11:
6f:1e:e2:d1:aa:22:99:83:e1:11:3c:d8:9e:0d:6e:
f0:ad:ed:f1:8d:13:68:5a:30:c4:f2:6c:8d:d3:08:
64:3c:93:78:89:d0:5f:eb:b4:f2:b1:5a:79:f9:99:
27:be:70:6f:c9:3a:73:b6:d8:f6:0e:ae:3d:0b:3f:
c4:8c:65:97:58:20:30:60:44:8d:e1:2d:85:f4:21:
32:36:cc:b3:49:52:0d:97:80:46:3c:7c:99:8c:95:
73:e4:0a:57:69:5f:1a:03:43:93:c1:51:84:11:51:
da:61:2d:c0:2a:96:cd:6e:90:a5:2d:53:cc:a0:cf:
0a:a3:2e:5b:7c:71:a4:de:b7:2a:7d:ef:ce:5c:24:
ca:7a:2e:48:d5:b7:4c:bb:f2:f8:0b:d3:2d:08:e9:
ea:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:03:D3:E7:1F:2C:FB:09:92:19:34:3E:6A:B9:DA:36:6F:B3:42:C6
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323134303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.113.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:2a:09:6d:46:d6:5c:22:48:87:3b:3b:25:0c:3b:f1:81:dd:
ee:f5:ce:a0:72:20:d5:19:32:8f:8f:ef:f5:ca:d8:f4:00:b8:
46:12:75:b2:32:c1:ed:2b:cc:01:5d:eb:63:96:6b:c0:28:ee:
37:25:2c:c1:06:6b:a0:b0:fc:55:a6:71:36:ba:0f:4a:e1:57:
04:a3:1f:c4:e5:66:06:9c:0a:34:d9:eb:f7:62:de:28:ce:09:
de:22:37:a1:65:98:26:7f:03:1d:12:21:54:3f:23:3a:33:5d:
46:9f:49:a0:e8:73:bc:34:30:aa:cf:e2:15:1c:8b:7f:a9:52:
be:f8:0b:4e:58:9f:f4:8f:d7:be:42:f6:e0:2e:df:67:a2:fb:
32:f9:93:8c:9a:c0:55:2c:b4:db:21:ab:5e:34:f6:fb:31:01:
3a:c6:09:7e:31:73:47:c8:78:f1:60:e9:41:2c:9e:ca:76:d2:
71:a7:91:73:5d:ee:a5:1d:8d:3e:94:45:67:2b:d6:33:26:5b:
d1:e3:4c:df:e6:06:b5:7b:4c:9a:04:5a:1b:90:b4:35:7f:39:
e4:71:c0:cc:d7:c0:d5:35:67:5e:e6:fd:9b:06:71:b4:2f:f6:
d6:1a:19:fb:10:99:29:f3:a1:8e:dd:84:14:2e:b1:c0:fa:73:
d6:43:24:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 17:45:05 2025 by rpki-client