Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa
File: 3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: W1I8woHaqJ6kU4xjFwKm1g6uV7UZ51m6Dv8R/7Dp0Oc=
Subject key identifier: 0D:2D:AB:4D:4A:0F:57:E7:99:1F:52:68:66:5F:EB:1A:79:7C:F9:23
Certificate issuer: /CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Certificate serial: 7F053FF5F956D2D9C0BDCD99BE44D88535D0E506
Authority key identifier: 8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa
Signing time: Tue 03 Jun 2025 14:54:08 +0000
ROA not before: Tue 03 Jun 2025 14:49:08 +0000
ROA not after: Tue 02 Jun 2026 14:54:08 +0000
asID: 61317
IP address blocks: 188.164.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:05:3f:f5:f9:56:d2:d9:c0:bd:cd:99:be:44:d8:85:35:d0:e5:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Validity
Not Before: Jun 3 14:49:08 2025 GMT
Not After : Jun 2 14:54:08 2026 GMT
Subject: CN=0D2DAB4D4A0F57E7991F5268665FEB1A797CF923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:69:ed:66:fa:a8:60:e7:e6:12:8f:f9:91:cd:
ab:4b:fa:fe:a3:be:fe:89:76:57:da:c4:64:cf:b8:
55:34:2b:9e:5a:c5:3f:1a:84:c1:d0:d9:fe:ea:be:
f0:1e:1c:12:55:52:5b:1b:a9:b1:cb:89:93:d3:46:
1e:ee:de:9a:f3:19:6f:44:fa:99:9a:37:71:a9:2a:
ac:9a:54:e2:d7:b4:e4:66:67:b2:03:cc:b6:a6:d0:
f0:d6:14:ff:99:28:cc:6d:bf:db:83:74:83:3b:d4:
5c:c6:b3:85:86:a2:82:5b:62:4a:1d:13:af:5a:78:
12:72:e4:f7:80:1c:c8:23:92:41:c2:32:9c:07:02:
94:9f:b1:18:67:b7:ee:f7:3d:91:36:19:94:ec:88:
97:fb:09:6e:ed:55:c9:df:66:ff:06:73:ed:4c:27:
d5:53:ec:a7:78:55:5b:62:30:c3:f6:1f:84:df:bf:
bd:71:fd:af:d4:71:7c:46:43:68:bd:a8:0d:b3:00:
b3:c2:6e:55:a1:45:d4:a0:36:e4:b4:be:62:4d:75:
47:02:cf:29:d2:8f:3a:17:1d:d7:e9:79:16:bc:55:
e7:86:41:bd:2d:f6:e6:29:b6:57:5f:99:a2:e7:8e:
5e:20:32:63:94:7a:03:9d:50:41:9d:9b:e2:b2:6b:
bf:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:2D:AB:4D:4A:0F:57:E7:99:1F:52:68:66:5F:EB:1A:79:7C:F9:23
X509v3 Authority Key Identifier:
keyid:8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.164.155.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:51:e7:1e:fc:5b:35:ae:98:23:73:0b:f8:fa:83:f2:bc:0f:
21:94:09:d8:25:3e:7e:3b:81:90:0e:51:1c:69:4d:95:87:30:
24:58:d6:a9:0e:2a:cd:a2:1b:39:eb:b7:e3:47:27:b0:ab:24:
63:3b:12:aa:f1:02:a8:9c:19:b4:04:cb:59:b3:01:a3:7d:c7:
b7:c7:b8:f5:49:ca:ea:16:d1:9d:c6:5b:b9:78:cc:64:7a:10:
5d:98:b1:77:d8:3d:2c:34:64:aa:eb:92:ab:d9:0e:08:5a:43:
1b:fa:c1:a9:c6:1f:37:e1:e1:96:16:5c:83:04:36:88:81:1d:
2c:e5:15:7d:99:25:a3:cf:dc:d1:20:b7:7b:f5:f1:63:46:2a:
15:c1:03:bf:57:6b:b1:c4:99:6d:7e:c1:c1:dd:c7:b3:c0:9c:
52:f1:90:e5:99:24:c1:97:9c:81:4d:83:98:07:41:00:e9:56:
ef:77:82:63:c7:53:4a:2e:c4:6d:68:9c:63:e8:bd:c4:0f:3f:
d9:cd:c0:11:28:31:27:36:05:95:f2:1d:79:64:fd:25:56:60:
3a:cb:59:fb:e1:4b:33:02:3d:75:65:0d:dd:62:2c:92:27:5b:
2d:79:e6:bc:7d:9f:8b:16:59:94:0a:ca:67:64:84:29:7f:f5:
c1:bd:cc:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:38:10 2025 by rpki-client