Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137352e302f32342d3234203d3e203332313637.roa
File: 36322e3139322e3137352e302f32342d3234203d3e203332313637.roa (raw, json)
Hash identifier: /WAm5dy4jlcwivOnkIFnMuEvBCc6QOLwRlkX4YTGCBc=
Subject key identifier: BC:16:85:4C:B8:31:0A:72:F1:66:21:64:55:10:32:29:F8:72:34:A9
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 2428CC23288F1B4203B7E4546D53DD541636151A
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137352e302f32342d3234203d3e203332313637.roa
Signing time: Fri 25 Apr 2025 14:28:46 +0000
ROA not before: Fri 25 Apr 2025 14:23:46 +0000
ROA not after: Fri 24 Apr 2026 14:28:46 +0000
asID: 32167
IP address blocks: 62.192.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 13:16:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:28:cc:23:28:8f:1b:42:03:b7:e4:54:6d:53:dd:54:16:36:15:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Apr 25 14:23:46 2025 GMT
Not After : Apr 24 14:28:46 2026 GMT
Subject: CN=BC16854CB8310A72F166216455103229F87234A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:73:bc:8b:dc:a7:20:90:91:cd:a6:81:96:99:
4f:58:3a:78:a7:37:09:6c:47:f1:d3:29:20:7c:c7:
b3:3c:c8:ca:ef:0e:55:15:58:52:df:64:91:73:35:
ab:15:96:ee:40:89:1d:22:9c:3b:f6:5b:d1:ab:16:
c4:37:d1:5d:db:fc:91:a5:26:ad:4d:99:d1:62:d0:
c0:d9:f1:85:95:04:72:9e:86:af:5e:7d:11:b2:21:
5a:4d:5a:c7:70:e7:ff:6c:d6:0a:56:80:b3:90:5e:
a5:a9:d5:06:0d:67:96:57:af:71:b9:a3:0a:99:4d:
30:03:f6:a1:7c:9a:9a:53:2b:d6:70:c0:33:b3:dc:
29:c9:1f:67:e3:63:bb:77:a1:f8:b2:a4:58:14:c2:
85:50:8a:47:df:3e:70:fa:86:b9:87:99:6b:13:5f:
80:04:ad:f0:c9:ed:ae:b8:a3:04:9a:bb:2b:ee:52:
a2:d4:75:3b:c3:dd:55:a3:8f:e7:0c:11:3e:39:60:
f9:9b:55:bf:c8:57:75:b2:47:08:3d:fa:cc:48:4e:
38:e0:98:d0:4d:5c:37:32:44:66:4a:73:c1:52:de:
42:8d:2a:23:3d:72:19:9c:3d:04:87:85:68:9f:64:
08:94:18:d2:a4:55:8e:94:6a:86:07:e8:60:6d:2a:
75:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:16:85:4C:B8:31:0A:72:F1:66:21:64:55:10:32:29:F8:72:34:A9
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137352e302f32342d3234203d3e203332313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.175.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:16:eb:35:bc:28:a9:91:a4:45:64:e2:f6:0c:ef:24:e0:77:
7c:de:cb:0b:87:5f:76:2e:83:b8:55:ec:25:10:28:a4:e2:49:
60:d6:70:63:94:db:64:23:2d:d4:1c:f2:1a:38:e3:37:ec:a9:
d8:8e:21:5b:20:34:83:7a:9b:91:ae:56:a6:89:8b:78:47:b7:
56:84:64:1c:6d:ab:48:cb:4b:e4:bd:4c:11:cc:3c:ec:59:97:
80:20:4f:12:ae:62:9e:34:0c:7a:44:b4:1d:da:da:8b:82:db:
df:f3:21:29:e6:9b:12:92:7c:56:50:14:0f:98:02:a8:09:f3:
9c:da:2c:60:63:a7:f5:37:09:d6:be:0d:fc:13:31:98:6d:63:
4f:46:47:a4:6c:5f:31:43:ad:10:02:9a:09:59:2d:4b:84:c4:
a3:87:32:a5:73:4f:e7:b9:6b:47:0e:d0:4b:06:6a:cb:a9:68:
2c:48:41:5d:a3:cc:18:5b:a7:1e:28:41:69:b0:07:58:b3:c6:
d7:69:3c:11:ff:5a:16:52:0e:57:50:4f:53:1b:63:50:47:56:
41:4d:01:85:4b:69:cd:93:63:41:c0:2f:a5:a5:5b:94:7b:cd:
c8:c3:17:d1:ff:ae:b5:f4:28:29:fd:69:d2:c8:95:6b:e2:6b:
6a:08:44:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 23:03:41 2025 by rpki-client