Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3137382e3133322e3139362e302f32342d3234203d3e203432383331.roa
File: 3137382e3133322e3139362e302f32342d3234203d3e203432383331.roa (raw, json)
Hash identifier: rMB7/8cyQIx/9c3HD2ZadKHLx3HKQvyXwwaVPb+xesA=
Subject key identifier: 3C:7F:FA:3A:91:A6:4B:2C:61:DD:49:A5:74:50:F7:4D:B9:68:E6:CF
Certificate issuer: /CN=f768ff6e681858c0ec19f3a93fa1792cd16ceed3
Certificate serial: 3567B374494342838BB1591D7A5DFA50C62185BA
Authority key identifier: F7:68:FF:6E:68:18:58:C0:EC:19:F3:A9:3F:A1:79:2C:D1:6C:EE:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3137382e3133322e3139362e302f32342d3234203d3e203432383331.roa
Signing time: Wed 12 Mar 2025 04:06:37 +0000
ROA not before: Wed 12 Mar 2025 04:01:37 +0000
ROA not after: Wed 11 Mar 2026 04:06:37 +0000
asID: 42831
IP address blocks: 178.132.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.crl
rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.mft
rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 01:46:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:67:b3:74:49:43:42:83:8b:b1:59:1d:7a:5d:fa:50:c6:21:85:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f768ff6e681858c0ec19f3a93fa1792cd16ceed3
Validity
Not Before: Mar 12 04:01:37 2025 GMT
Not After : Mar 11 04:06:37 2026 GMT
Subject: CN=3C7FFA3A91A64B2C61DD49A57450F74DB968E6CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:92:87:35:e6:cf:2f:52:b1:82:d7:a1:37:95:
18:35:f2:40:f9:6d:8e:80:77:cd:31:56:63:95:83:
a1:43:22:9a:cd:a9:72:7d:a7:99:77:a6:39:51:ba:
74:53:92:f1:06:3a:ab:4e:5a:50:af:b0:de:6f:13:
a4:75:ba:bc:fa:cd:5b:c6:28:fc:01:87:bb:0d:4d:
bf:fe:a5:2a:99:aa:f8:5a:d6:5f:b0:6e:d3:bb:3a:
86:17:cb:ef:16:03:d4:dc:6b:c0:af:c8:85:df:eb:
9b:65:44:b4:c6:bc:96:2b:8b:03:20:a4:45:58:14:
7c:48:c4:e4:8f:13:f6:9f:b7:3b:8e:86:c3:b4:48:
62:5c:6b:0c:02:c1:2d:12:09:54:0f:eb:e0:ea:1c:
bc:5d:15:aa:a9:f5:1b:d4:c0:1d:d5:56:38:46:2e:
6b:6b:5c:5a:65:b0:d8:e4:d5:1e:34:5b:74:ca:88:
a8:73:74:da:32:55:80:ca:56:26:89:31:bb:f9:bd:
d2:0b:86:97:cd:cb:4c:99:f9:17:b8:6d:c2:e9:0c:
f7:98:79:24:5a:ee:38:59:bd:b0:a6:c5:17:65:29:
b4:46:4e:ca:de:fa:30:81:3f:fd:5b:2b:ad:fe:09:
5c:b5:ac:3b:7a:44:b3:3e:91:dd:c8:b1:14:bd:f4:
7a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:7F:FA:3A:91:A6:4B:2C:61:DD:49:A5:74:50:F7:4D:B9:68:E6:CF
X509v3 Authority Key Identifier:
keyid:F7:68:FF:6E:68:18:58:C0:EC:19:F3:A9:3F:A1:79:2C:D1:6C:EE:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3137382e3133322e3139362e302f32342d3234203d3e203432383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.132.196.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:ef:cf:ec:62:5b:e7:c6:c0:9f:be:04:08:a7:c3:24:f2:ff:
00:64:b0:41:47:f1:eb:ff:c8:b2:c6:cb:2c:9e:d9:d0:b3:2b:
17:14:b5:95:4a:09:e4:0a:20:2a:73:f3:96:37:af:2d:34:16:
7f:1c:19:22:f0:36:15:e0:ff:54:7b:c9:b5:d0:06:0c:1b:17:
aa:93:4d:84:e6:c4:88:37:81:b8:0f:e6:64:f3:91:40:80:2e:
ed:b1:85:f1:89:d0:fb:b3:6a:22:7f:92:12:41:8d:0c:ae:32:
b9:26:95:a7:33:3b:e1:fe:87:23:73:bb:fd:f8:e2:17:0b:bd:
4b:3a:a0:a6:fe:07:ab:4e:74:5a:ae:2b:b9:94:6d:c7:c2:1f:
b4:12:b3:ca:21:3d:42:89:d8:5e:65:4f:e2:f0:7e:57:7c:2b:
3f:63:4d:3b:6c:bc:a3:b5:1c:e9:f5:48:64:55:50:eb:2e:e1:
20:5b:a1:36:1c:05:f3:55:5f:87:44:d5:cd:6a:92:ee:09:31:
41:61:83:db:3e:a8:14:3d:87:b9:93:27:6b:04:3e:9b:30:73:
38:f1:7d:17:74:35:a8:26:00:78:03:e6:cb:86:e9:2c:ef:c5:
c4:11:47:78:db:28:68:64:32:1c:57:0d:7e:32:38:5d:06:8e:
87:85:dc:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:50:04 2025 by rpki-client