Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: AtAeJEVyWA2THiCvh9gnTMC7QXsgtKqH5VVF3kpUBOU=
Subject key identifier: F7:C8:FC:AD:81:40:06:60:5E:F0:2E:7D:2F:61:7D:5C:12:F6:B9:67
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 48A87651211C2C6DBD1D459AA72D37C4513E8E32
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS834.roa
Signing time: Wed 11 Jun 2025 19:20:53 +0000
ROA not before: Wed 11 Jun 2025 19:15:53 +0000
ROA not after: Wed 10 Jun 2026 19:20:53 +0000
asID: 834
IP address blocks: 193.151.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:a8:76:51:21:1c:2c:6d:bd:1d:45:9a:a7:2d:37:c4:51:3e:8e:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jun 11 19:15:53 2025 GMT
Not After : Jun 10 19:20:53 2026 GMT
Subject: CN=F7C8FCAD814006605EF02E7D2F617D5C12F6B967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:9c:a1:55:2a:ba:29:5d:61:30:1b:a9:d8:d3:
14:49:84:1e:cd:e0:a3:c9:87:91:51:1d:37:8e:b5:
31:23:a2:a4:3c:76:f8:e7:82:86:08:e5:98:67:b9:
c0:d5:95:a9:e4:2d:22:be:ba:6e:17:a5:3d:30:68:
84:a4:41:6b:db:7f:79:27:bf:91:89:1b:bc:fd:09:
79:eb:4c:7d:1d:13:84:75:92:20:73:d7:bf:38:bd:
26:b9:fb:ac:9f:14:30:95:b9:cf:73:0a:c6:ed:71:
3d:3a:25:35:db:96:2e:10:24:db:9d:96:96:38:23:
8c:2e:ec:b9:3f:2e:c1:d6:dd:9b:1e:b3:c1:51:ee:
42:44:6b:50:35:26:c8:1a:57:f3:86:51:ef:f7:4e:
8d:38:fe:b0:aa:5f:d2:bd:81:46:d7:ba:6e:c7:ea:
dd:ed:dc:77:39:ab:44:b5:ec:56:c8:e1:db:2a:5f:
86:4c:66:7e:55:86:c4:8e:d7:9a:ec:27:41:7c:14:
80:30:17:d8:9e:eb:10:7b:c7:e7:22:b6:0a:d8:65:
e0:fa:ce:44:67:56:40:3f:67:d5:91:0a:d8:35:23:
cd:b0:4a:78:c8:62:5e:56:49:dd:3e:d7:67:32:b3:
a3:97:2f:f6:71:6f:0d:22:07:33:11:55:a8:be:4c:
a5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C8:FC:AD:81:40:06:60:5E:F0:2E:7D:2F:61:7D:5C:12:F6:B9:67
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.181.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:16:bb:fa:09:b6:e3:54:d6:78:e1:18:53:ff:7f:5a:d9:3d:
36:45:5c:f5:c6:7e:ad:98:1c:17:f8:0f:56:c5:16:2e:76:4a:
8b:5a:05:ed:cc:92:d3:1d:89:45:93:32:f6:1e:25:83:40:c8:
f3:f4:a1:34:de:7d:8c:e7:5a:67:54:0b:e9:6e:e6:ed:3c:bb:
33:34:3e:a8:28:59:e8:a0:28:3c:0b:f4:c4:1a:b2:2e:b0:8f:
35:03:ab:37:b3:f4:ee:0f:ef:1c:c5:5a:a8:7a:f0:25:e7:37:
20:f0:f0:b2:5f:5e:b5:1c:ba:aa:40:c0:7a:24:8e:24:02:fb:
57:f1:a3:03:f7:83:23:82:e0:0a:c2:dc:0d:4e:3f:09:a5:24:
d4:3c:7c:61:41:d3:c5:19:05:11:f3:45:65:d4:3d:78:bc:13:
11:ef:fc:b0:2f:2a:70:e6:b9:cb:9a:03:90:e6:33:9e:3e:3e:
92:59:b6:8f:06:51:c2:85:47:76:c3:80:c6:07:d3:d4:50:ba:
6e:8b:0c:be:06:2a:cf:6c:e1:33:40:87:10:b8:5c:8d:ed:7b:
8e:93:71:17:f2:77:04:bb:cb:dd:31:e7:18:33:92:78:70:72:
34:46:b4:02:57:ef:04:4a:b8:86:46:c1:0d:50:b3:b4:a1:ab:
59:d4:f9:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:58:33 2025 by rpki-client