Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130352e302f32342d3234203d3e203431353634.roa
File: 3138352e3234302e3130352e302f32342d3234203d3e203431353634.roa (raw, json)
Hash identifier: TlWGN33+lROz/SyNNq5fptfqzBonbreTLNbM3qDOA4Q=
Subject key identifier: B3:ED:78:32:66:0A:AD:12:08:BE:4F:6C:06:34:5E:E1:7B:24:EE:A9
Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Certificate serial: 61F66CC780F6263A875AC3ECB1A27828AAEC0092
Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130352e302f32342d3234203d3e203431353634.roa
Signing time: Tue 22 Jul 2025 14:18:31 +0000
ROA not before: Tue 22 Jul 2025 14:13:31 +0000
ROA not after: Tue 21 Jul 2026 14:18:31 +0000
asID: 41564
IP address blocks: 185.240.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft
rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:32:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:f6:6c:c7:80:f6:26:3a:87:5a:c3:ec:b1:a2:78:28:aa:ec:00:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Validity
Not Before: Jul 22 14:13:31 2025 GMT
Not After : Jul 21 14:18:31 2026 GMT
Subject: CN=B3ED7832660AAD1208BE4F6C06345EE17B24EEA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:07:84:21:2f:ab:3f:09:95:cb:89:41:20:d9:
d2:a2:0e:46:c4:af:bd:ae:5a:08:79:72:01:5e:83:
fd:a1:8f:8e:84:05:58:ba:1f:bc:c3:a3:39:12:35:
cd:f6:9b:1d:7e:e0:6f:07:aa:d0:8f:ba:90:d5:de:
98:51:ed:23:39:c3:c0:a8:9e:d2:7b:32:18:19:61:
8a:60:d3:ea:13:52:c9:17:97:4a:b3:e4:66:05:50:
52:7d:43:00:83:07:2d:8e:66:56:0f:87:ad:dd:64:
6f:81:45:cf:e9:66:9e:6e:b5:3c:84:7d:fe:a4:17:
cf:69:5a:18:05:d6:10:ae:cd:39:6c:8e:8d:20:52:
c8:bd:ad:cc:f9:7c:23:61:f9:1d:97:b4:24:79:4c:
7e:d0:3b:98:eb:46:ac:1b:05:4f:da:40:81:cc:06:
0a:2f:5a:67:e7:8f:f9:e5:7b:df:2a:7a:b7:74:f1:
12:6b:0e:86:07:ee:2b:34:46:c2:71:34:e1:da:7c:
6e:45:79:0e:5a:4b:bd:a9:e8:1c:e5:bb:f5:e8:71:
42:47:e1:2f:e0:3b:ea:51:f9:9f:2c:d5:f9:cb:6e:
ee:f1:3f:23:35:65:2e:23:60:42:88:0f:b9:4f:65:
35:fc:e7:4d:7c:ae:36:00:99:93:54:00:c8:bb:cf:
26:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:ED:78:32:66:0A:AD:12:08:BE:4F:6C:06:34:5E:E1:7B:24:EE:A9
X509v3 Authority Key Identifier:
keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130352e302f32342d3234203d3e203431353634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.105.0/24
Signature Algorithm: sha256WithRSAEncryption
20:f2:4c:9e:07:f7:9b:29:b2:b3:00:95:04:d9:ee:4f:c6:69:
92:4f:e8:60:fd:91:f2:af:9f:3e:2d:08:2f:f4:2f:f4:ca:03:
96:97:19:69:46:34:05:77:81:9d:88:83:7a:5f:07:0c:44:ed:
8d:a6:1c:a6:cd:80:2a:78:d7:16:97:b6:67:4b:ef:ab:83:2f:
af:06:34:86:2e:24:b6:84:cd:c4:3a:a0:09:ef:32:70:5e:8a:
b0:cc:15:d6:6e:4b:8f:26:ef:bc:67:9e:9c:41:6d:a1:be:8a:
f5:5b:fc:d3:e3:24:b1:de:b4:56:8b:71:c8:bc:62:f3:55:83:
c4:30:21:c4:8d:1b:7f:b3:27:f4:91:34:39:4e:50:9c:0f:d6:
db:34:63:5c:5c:ad:e8:7d:7a:78:ae:c8:66:fc:10:e8:ed:86:
ea:39:9e:75:98:b0:f3:17:6b:23:cc:b3:3c:a4:6f:34:aa:de:
f8:34:48:5f:ce:46:d8:77:c1:1f:fd:3d:f0:41:db:14:af:d5:
36:17:96:8c:81:39:3c:74:7e:dc:09:23:c4:7d:b3:6e:e1:ae:
fa:a8:43:46:90:02:cf:a9:bb:23:4a:79:c7:3c:2b:4d:6e:7c:
5a:3f:b3:d4:bd:a0:a9:67:1e:0a:4a:4b:5e:31:b7:04:0e:f1:
6f:c3:bc:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:00:53 2025 by rpki-client