Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20313937353337.roa
File: 3138352e342e3232312e302f32342d3234203d3e20313937353337.roa (raw, json)
Hash identifier: h3tCn5shniUjLMNPSzHa2wHTP7EaxuEOtUznUxH/D4o=
Subject key identifier: 08:75:6A:51:03:56:D8:B2:A2:C0:10:5A:0E:6F:27:9D:27:FF:BB:F5
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 44D021E22253550789DDED4B5EC56D61DC414CB2
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20313937353337.roa
Signing time: Wed 06 Aug 2025 09:42:46 +0000
ROA not before: Wed 06 Aug 2025 09:37:46 +0000
ROA not after: Wed 05 Aug 2026 09:42:46 +0000
asID: 197537
IP address blocks: 185.4.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 19:52:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:d0:21:e2:22:53:55:07:89:dd:ed:4b:5e:c5:6d:61:dc:41:4c:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Aug 6 09:37:46 2025 GMT
Not After : Aug 5 09:42:46 2026 GMT
Subject: CN=08756A510356D8B2A2C0105A0E6F279D27FFBBF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:81:8b:bd:9f:21:94:d1:3b:61:cf:5a:0c:7e:
4a:2e:5f:aa:5f:71:ef:77:93:de:50:29:04:73:95:
cd:c6:be:c9:53:6c:49:e6:b0:6f:33:44:00:f6:2c:
c8:be:c4:ec:3d:2f:5a:51:b7:33:34:ee:0c:5f:10:
83:88:33:a9:ec:dc:ae:d3:d7:29:8a:71:df:55:86:
be:c7:15:8e:90:96:29:7b:5c:b6:c5:49:0c:ee:41:
d0:f1:88:bd:a8:18:6a:27:ba:2e:30:de:a7:4b:5c:
91:a1:66:2b:54:9d:41:51:73:2a:60:52:b2:5c:4a:
56:d0:ac:f5:c3:11:5e:bd:94:b4:e0:d3:a0:69:6d:
af:58:13:21:2f:05:7e:b7:f4:9a:84:69:e5:ce:55:
e7:ae:d9:9f:01:69:01:cc:3a:37:53:aa:f6:95:7a:
fa:37:d9:b0:5f:92:a4:60:ab:49:86:d1:4c:45:6a:
b4:04:45:5a:d2:e8:6f:9b:87:14:d2:89:29:3f:a9:
33:34:9a:41:c3:a5:24:50:c9:db:7d:69:ce:4b:fa:
e8:7f:ee:de:2b:d1:ee:5b:30:c1:a7:a9:63:1c:95:
40:fd:8e:54:ae:57:52:bf:ba:67:5a:14:4c:af:46:
2b:fa:01:56:00:be:f9:a4:9b:d1:5f:b2:19:8c:67:
0b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:75:6A:51:03:56:D8:B2:A2:C0:10:5A:0E:6F:27:9D:27:FF:BB:F5
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20313937353337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.221.0/24
Signature Algorithm: sha256WithRSAEncryption
24:2d:c7:db:ad:68:84:dd:ff:1d:86:a4:83:81:fc:ad:0c:6e:
c5:26:86:35:df:84:00:a8:76:44:cc:4d:8b:7c:e2:8d:9f:5f:
d7:c5:24:e2:c7:99:6b:d3:d4:43:f4:9f:80:70:8b:d0:06:0f:
ba:d1:7a:30:ad:2f:97:83:26:e5:fe:3d:9d:d5:57:e8:73:87:
8f:d9:71:4b:61:e8:e8:1d:eb:04:20:cc:56:77:aa:d9:d5:bf:
6f:d2:0c:4e:35:45:8c:a8:8d:e6:4b:75:a0:b9:ab:e6:f0:ec:
c4:0c:79:e8:be:b4:dd:eb:fa:7b:1f:e8:24:9d:a2:7d:79:51:
75:b3:15:a0:07:80:de:3e:63:98:0d:82:ee:37:dc:8a:60:3f:
fa:92:37:b8:de:6b:5c:c5:85:f7:1e:85:9d:6a:07:68:4e:64:
d1:30:b0:06:6d:22:34:6b:fd:86:ba:7e:18:05:62:0c:84:66:
3e:85:b8:fe:6c:87:86:be:d1:c7:b6:84:36:b9:7e:a2:84:47:
c8:ce:b8:ad:ab:d2:4d:b4:b6:66:4e:d3:9d:6c:d5:81:90:a5:
50:5c:c6:1c:f2:e6:25:38:e7:d6:80:75:10:cb:bc:cf:5b:1f:
d8:b0:a6:f6:6f:95:ae:76:48:03:47:fd:b4:4d:f0:44:6e:5e:
87:58:12:ec
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIURNAh4iJTVQeJ3e1LXsVtYdxBTLIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNTA4MDYwOTM3NDZaFw0yNjA4MDUwOTQyNDZaMDMxMTAvBgNV
BAMTKDA4NzU2QTUxMDM1NkQ4QjJBMkMwMTA1QTBFNkYyNzlEMjdGRkJCRjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2gYu9nyGU0Tthz1oMfkouX6pf
ce93k95QKQRzlc3GvslTbEnmsG8zRAD2LMi+xOw9L1pRtzM07gxfEIOIM6ns3K7T
1ymKcd9Vhr7HFY6Qlil7XLbFSQzuQdDxiL2oGGonui4w3qdLXJGhZitUnUFRcypg
UrJcSlbQrPXDEV69lLTg06Bpba9YEyEvBX639JqEaeXOVeeu2Z8BaQHMOjdTqvaV
evo32bBfkqRgq0mG0UxFarQERVrS6G+bhxTSiSk/qTM0mkHDpSRQydt9ac5L+uh/
7t4r0e5bMMGnqWMclUD9jlSuV1K/umdaFEyvRiv6AVYAvvmkm9FfshmMZwt1AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUCHVqUQNW2LKiwBBaDm8nnSf/u/UwHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzODM1MmUzNDJlMzIzMjMx
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzOTM3MzUzMzM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
uQTdMA0GCSqGSIb3DQEBCwUAA4IBAQAkLcfbrWiE3f8dhqSDgfytDG7FJoY134QA
qHZEzE2LfOKNn1/XxSTix5lr09RD9J+AcIvQBg+60XowrS+Xgybl/j2d1Vfoc4eP
2XFLYejoHesEIMxWd6rZ1b9v0gxONUWMqI3mS3Wguavm8OzEDHnovrTd6/p7H+gk
naJ9eVF1sxWgB4DePmOYDYLuN9yKYD/6kje43mtcxYX3HoWdagdoTmTRMLAGbSI0
a/2Gun4YBWIMhGY+hbj+bIeGvtHHtoQ2uX6ihEfIzritq9JNtLZmTtOdbNWBkKVQ
XMYc8uYlOOfWgHUQy7zPWx/YsKb2b5WudkgDR/20TfBEbl6HWBLs
-----END CERTIFICATE-----
Generated at Thu Aug 7 11:22:00 2025 by rpki-client