Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e2039333034.roa
File: 3137382e3230382e3138322e302f32342d3234203d3e2039333034.roa (raw, json)
Hash identifier: 1S3P0fQ3mGz1CctPYlJHJvJ/LM+h1IfNTry3ZVmcXDE=
Subject key identifier: 71:C0:21:B5:9D:B5:9C:88:FA:C2:EF:ED:C8:19:2B:D4:25:B0:52:F5
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 6E021E63F80E916874AAECE75417AA0A7689E060
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e2039333034.roa
Signing time: Mon 04 Aug 2025 13:49:43 +0000
ROA not before: Mon 04 Aug 2025 13:44:43 +0000
ROA not after: Mon 03 Aug 2026 13:49:43 +0000
asID: 9304
IP address blocks: 178.208.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 16:41:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:02:1e:63:f8:0e:91:68:74:aa:ec:e7:54:17:aa:0a:76:89:e0:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Aug 4 13:44:43 2025 GMT
Not After : Aug 3 13:49:43 2026 GMT
Subject: CN=71C021B59DB59C88FAC2EFEDC8192BD425B052F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:eb:40:72:35:12:a7:55:d6:ce:c7:4d:2b:64:
73:94:6b:eb:3f:be:50:74:7c:49:1c:94:a1:ea:e0:
35:6f:07:38:0d:fe:32:d8:cc:a4:36:9f:61:87:d0:
bf:81:82:c5:08:e3:0c:5b:94:7a:8f:3e:72:c7:28:
2b:5c:e9:8d:c8:a1:4f:39:96:76:fb:4b:d0:dd:f8:
a5:78:cc:2e:3f:85:4e:f5:35:13:e0:7b:ba:2c:a6:
40:a5:30:be:e0:a3:00:2b:1c:d7:7a:3a:a0:5a:f0:
6d:db:ad:33:02:1c:8a:68:ed:19:a4:f9:ef:fd:05:
3c:d3:c6:76:7d:24:3b:a7:cf:41:d0:f9:22:6f:2c:
80:fd:af:01:43:bc:de:8e:0c:e0:06:13:fa:b5:5d:
0a:c4:c9:49:ec:28:d0:6f:ee:65:fc:3b:02:83:10:
5f:05:d1:ab:6b:f9:c7:d1:34:ab:8c:e4:f7:b4:24:
e5:ce:5c:ce:88:13:50:05:44:71:fe:18:0f:4d:6c:
49:19:fd:11:63:cb:6c:23:9b:a9:90:9a:24:41:33:
9e:6b:b7:28:f5:dd:32:bb:06:79:ca:e0:7a:73:51:
b9:5d:5d:47:bf:9a:44:ea:1b:3e:21:6b:32:d7:55:
33:c7:eb:9c:cf:ab:f7:0f:01:44:80:07:e2:03:61:
a9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C0:21:B5:9D:B5:9C:88:FA:C2:EF:ED:C8:19:2B:D4:25:B0:52:F5
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e2039333034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.182.0/24
Signature Algorithm: sha256WithRSAEncryption
96:16:3c:18:16:72:52:0f:a5:e7:a3:42:b7:69:62:ed:65:c7:
99:0e:17:9d:11:a6:de:de:10:16:41:ab:e9:00:70:d7:b3:92:
ca:05:b8:51:40:28:1a:ef:34:01:af:49:fc:63:33:77:3c:05:
94:c7:31:93:d6:16:6f:d1:bc:f2:a9:2d:27:6f:e0:a3:7f:f4:
dd:47:0e:dd:e0:be:1d:95:76:8d:c4:eb:f5:4f:67:9b:72:bc:
6c:9f:48:8d:d0:42:99:5f:c7:2c:91:69:5e:64:5d:8a:84:a2:
d5:14:40:60:a4:6c:47:aa:e7:71:f5:4d:a1:7b:98:3f:ca:c6:
12:f8:ee:7c:d9:4f:09:77:27:4d:f3:1c:8d:dc:39:26:2c:af:
4d:4e:3e:ac:b1:ea:f7:5d:ae:7f:be:20:e6:bd:dc:ad:ff:98:
34:42:0e:72:34:1c:af:89:88:e0:15:dd:1a:34:0b:7c:84:57:
78:b3:4f:52:4a:90:e9:51:6d:65:78:c1:eb:eb:55:28:0b:aa:
b9:fa:89:b8:d7:96:26:cf:c2:88:37:06:c7:58:2d:4d:c7:6e:
c7:51:45:65:7d:3a:1c:49:26:f3:51:06:8d:6f:39:93:73:a5:
61:8e:01:29:61:63:2b:3e:3b:02:e1:b3:c0:30:d2:23:7c:87:
6e:22:ba:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:46:54 2025 by rpki-client