Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232332e302f32342d3234203d3e20323132323338.roa
File: 3138352e342e3232332e302f32342d3234203d3e20323132323338.roa (raw, json)
Hash identifier: WFDBKAlA0ovS4eyGUqL6Qm+AUNqdeszwjPcBry4YyT0=
Subject key identifier: FF:69:8E:70:A3:0A:12:4C:F0:CC:61:F1:A2:9F:80:6E:44:E6:4A:39
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 1CF39C8A234308B6E3F6CD1E3F7416DF97EE6035
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232332e302f32342d3234203d3e20323132323338.roa
Signing time: Mon 14 Apr 2025 07:53:17 +0000
ROA not before: Mon 14 Apr 2025 07:48:17 +0000
ROA not after: Mon 13 Apr 2026 07:53:17 +0000
asID: 212238
IP address blocks: 185.4.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:f3:9c:8a:23:43:08:b6:e3:f6:cd:1e:3f:74:16:df:97:ee:60:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Apr 14 07:48:17 2025 GMT
Not After : Apr 13 07:53:17 2026 GMT
Subject: CN=FF698E70A30A124CF0CC61F1A29F806E44E64A39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5a:4d:df:ad:5b:c6:42:cf:98:e4:a8:dc:ab:
b2:78:e0:b0:66:e7:0c:d9:b9:b7:a2:c3:12:21:bd:
b1:ec:6b:8a:0d:09:54:75:30:30:3c:c3:01:71:b9:
07:24:93:01:ae:c3:ce:6b:f9:bf:5a:ac:17:45:7f:
e7:1f:b7:63:cd:0c:6b:fc:e4:a4:f6:51:08:32:07:
35:70:f1:4b:ea:20:62:77:13:c4:be:ba:2e:9d:24:
e7:13:34:91:23:d9:c2:ca:99:58:8b:af:e1:c2:c6:
ef:a9:0f:1a:8c:39:1e:e0:f7:5a:42:ac:9c:51:d9:
99:4e:e8:9e:71:2d:58:4b:e5:4a:28:b1:99:6c:73:
79:85:a7:a8:77:96:c8:3b:6e:90:b2:84:c9:ad:1c:
2a:bd:d7:da:f2:a6:59:a3:f9:1b:73:cd:f9:a8:6f:
3d:c5:38:61:8f:db:2f:75:34:72:b5:f3:94:08:f9:
7e:2b:a5:cf:a8:b2:0b:be:0a:4b:39:bd:76:27:63:
1c:31:05:03:f1:68:9c:a2:a4:56:dd:e3:63:ae:14:
d0:49:98:95:09:bf:9e:af:79:8a:b1:b0:67:67:b1:
d4:3d:40:01:0c:68:4d:ba:e1:ee:f6:0d:32:67:54:
db:64:67:27:84:43:29:f7:fe:3d:25:1e:11:5e:44:
c7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:69:8E:70:A3:0A:12:4C:F0:CC:61:F1:A2:9F:80:6E:44:E6:4A:39
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232332e302f32342d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.223.0/24
Signature Algorithm: sha256WithRSAEncryption
99:fd:98:5a:78:bd:85:54:2c:84:95:f3:26:73:c2:84:6a:81:
f8:5b:0b:e9:eb:90:23:4a:b0:64:69:75:a8:79:f9:0e:86:75:
07:38:33:3c:f7:75:7d:8b:0c:3c:95:3e:d0:f1:46:ff:7c:59:
e0:de:c4:e1:bf:ea:8c:f3:3c:8d:9d:7d:7e:48:04:16:e4:f0:
ec:72:80:fb:09:d0:9a:e2:4a:0a:c0:1a:a8:6e:1b:b3:e9:30:
b4:53:f4:04:ca:05:bd:5a:1a:c4:11:aa:4f:a8:90:d7:32:9b:
22:ed:93:02:3a:e3:31:da:03:9d:f0:ad:5f:80:ec:ac:86:65:
f5:3b:6e:3e:e5:17:74:6d:d9:1f:45:c1:2e:77:a5:a4:e2:b7:
aa:d0:7f:ce:16:5f:4d:f9:e3:7f:2d:ad:70:62:bc:ce:36:db:
51:4f:7e:7a:92:e1:79:5a:3a:10:22:75:89:fd:50:7d:45:f0:
ce:de:04:72:03:22:11:56:53:1b:ba:b9:0b:13:08:fd:6c:a1:
71:a3:82:d1:82:0b:62:a1:e7:fd:19:aa:74:cb:96:7f:07:e0:
ed:03:a4:55:16:11:83:21:db:9c:6c:4f:37:4c:96:44:4e:da:
c1:de:8f:d8:00:c1:77:18:fe:b7:55:46:9d:4a:8f:94:0f:be:
37:fa:9f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:12:45 2025 by rpki-client