Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231352e302f32342d3234203d3e203239383032.roa
File: 3138352e3130302e3231352e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: w7qwx827hL9RlszbTC5evjJvStP8VHORUqn5Vcty7fo=
Subject key identifier: 7F:01:45:D9:C8:2B:73:5B:3A:11:18:5B:66:62:57:46:E9:FC:30:7E
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 2777799884AD0ECCFC3B17D04B2053834E7BCF74
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231352e302f32342d3234203d3e203239383032.roa
Signing time: Fri 06 Jun 2025 10:00:10 +0000
ROA not before: Fri 06 Jun 2025 09:55:10 +0000
ROA not after: Fri 05 Jun 2026 10:00:10 +0000
asID: 29802
IP address blocks: 185.100.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:77:79:98:84:ad:0e:cc:fc:3b:17:d0:4b:20:53:83:4e:7b:cf:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Jun 6 09:55:10 2025 GMT
Not After : Jun 5 10:00:10 2026 GMT
Subject: CN=7F0145D9C82B735B3A11185B66625746E9FC307E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f0:26:0e:f3:18:2d:dd:22:a5:ab:da:24:22:
a0:ab:50:d5:ed:8f:8a:6e:f6:72:71:5d:14:15:9a:
94:9b:ee:ae:ac:f8:79:17:95:62:b7:9a:c6:dc:29:
94:4d:1e:c2:a2:0c:e1:82:05:1c:b5:68:c0:08:36:
c2:6b:60:fd:38:16:92:e0:0d:b8:5f:e9:ab:ac:89:
91:17:31:24:49:b1:82:93:07:8e:49:8c:77:56:6f:
8c:7a:9a:17:81:eb:e1:06:a9:39:bc:53:5f:8a:ef:
05:07:05:5d:da:40:21:ea:00:94:7d:22:b9:8b:9e:
54:e3:54:6c:90:7c:84:07:20:cd:54:46:6d:7c:0f:
9c:10:9a:41:81:d3:ad:cc:0a:5c:8e:39:92:4c:7d:
55:e6:27:53:e1:97:b1:96:db:b5:2d:30:01:0c:18:
ef:0e:9f:3a:e8:5b:a3:b1:82:ae:43:0a:9c:36:2e:
57:4e:90:2f:e2:aa:37:b5:39:05:c4:9d:29:a9:47:
4c:5d:4e:e3:42:f6:9a:c1:9d:01:50:1b:5a:80:51:
ff:61:2c:a0:f3:70:82:9a:a8:99:57:1e:96:e2:e9:
a2:21:f6:a0:9b:51:d5:39:8c:92:9b:c8:04:71:be:
7f:83:fe:37:a8:8c:95:8a:8b:8c:3d:d5:ff:69:e1:
29:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:01:45:D9:C8:2B:73:5B:3A:11:18:5B:66:62:57:46:E9:FC:30:7E
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231352e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.215.0/24
Signature Algorithm: sha256WithRSAEncryption
61:cc:f5:e4:5c:4e:7c:f6:c9:84:b9:08:b6:77:7a:9a:90:4c:
05:f8:0d:a0:86:c2:24:3d:58:c3:eb:f7:b8:48:f5:04:e2:48:
c3:e9:37:ac:97:67:85:0b:77:77:75:7c:7f:12:72:a5:7b:99:
ff:eb:a0:79:82:89:9b:af:96:72:2e:62:ca:2e:85:e8:9f:b5:
f6:15:87:22:24:22:34:b9:a8:f7:8d:a4:29:45:ea:55:17:9d:
ab:9e:42:8a:12:0b:fd:e0:2d:c6:98:07:33:ca:c1:27:f9:dc:
c2:4f:52:ad:f8:db:8d:fa:1a:08:23:ce:56:e9:40:b1:84:a6:
3e:a1:05:2c:40:9a:3d:fc:24:2c:00:1c:40:72:81:b1:e8:06:
a8:33:4b:45:90:8a:28:bb:df:0a:88:7f:ed:f7:e2:14:f9:0b:
ce:a4:fc:3f:5b:a5:1a:2b:05:d2:3f:9e:af:13:41:42:a0:c3:
d7:1f:22:c5:e3:85:60:06:50:fb:e7:b5:29:b9:d3:81:38:bf:
b7:fe:83:69:b1:59:11:c0:e7:38:75:d4:4e:43:a2:ed:b8:d7:
2b:c0:5b:3e:ae:91:53:e9:d0:29:87:f0:4e:8d:21:df:50:95:
c2:64:ca:13:ef:09:83:ea:20:a7:1d:a5:5a:11:c1:73:06:a4:
fc:71:db:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 12:15:55 2025 by rpki-client