Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136312e302f32342d3234203d3e203631313132.roa
File: 3139332e3234362e3136312e302f32342d3234203d3e203631313132.roa (raw, json)
Hash identifier: 19vlwnhzCvB3Xf2YwWvShk0KtRnpQyLIe0zy/tNC7Ms=
Subject key identifier: 8F:7A:39:1C:07:45:5C:7B:A9:F3:5B:33:14:18:C8:7A:88:48:5D:A1
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 58A296CBBCE09F931869EF2FF43DA54CFA90324B
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136312e302f32342d3234203d3e203631313132.roa
Signing time: Sun 26 Oct 2025 11:55:10 +0000
ROA not before: Sun 26 Oct 2025 11:50:10 +0000
ROA not after: Sun 25 Oct 2026 11:55:10 +0000
asID: 61112
IP address blocks: 193.246.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:a2:96:cb:bc:e0:9f:93:18:69:ef:2f:f4:3d:a5:4c:fa:90:32:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Oct 26 11:50:10 2025 GMT
Not After : Oct 25 11:55:10 2026 GMT
Subject: CN=8F7A391C07455C7BA9F35B331418C87A88485DA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:36:2b:90:c2:bd:69:ae:01:5e:98:61:f5:7b:
b3:9d:4b:2b:d4:6a:1c:e5:17:7a:6a:73:9b:56:0d:
7d:7e:72:d2:5e:cf:d8:4a:84:15:77:75:8d:8d:cd:
d3:56:77:26:3e:1d:17:fc:8f:99:12:85:e4:a4:2b:
24:db:66:0d:23:6f:a3:72:80:78:8f:95:27:9f:d4:
d7:2c:e2:c9:21:45:63:72:c8:24:84:db:34:85:8f:
c0:9d:3c:b9:5b:2b:24:9a:83:42:89:df:28:a1:d7:
f2:8a:b8:6b:36:ae:9c:14:70:a8:af:0c:0c:fc:49:
a1:2f:1c:b9:49:1c:e8:7f:ba:ca:1f:53:c6:3f:f6:
9c:8c:74:6b:60:30:03:d8:0a:de:6d:74:e0:d6:b5:
70:df:25:9a:9a:58:c5:aa:37:2e:bc:ad:30:a0:f5:
1f:37:a5:7d:70:95:5c:06:fd:f9:df:5b:e9:68:45:
18:d1:a7:d7:af:2d:e8:26:2c:1d:d3:b6:0e:d0:72:
1c:3f:17:31:54:bf:bb:7f:12:6e:1d:68:f0:f4:e6:
ee:ad:19:e1:d0:2f:62:fa:bb:5e:81:a3:cd:39:a3:
e6:16:8d:6f:0e:c4:5d:14:8b:b7:6d:03:f2:25:72:
78:ed:08:8f:9d:58:67:c6:52:da:d7:37:04:76:88:
c5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:7A:39:1C:07:45:5C:7B:A9:F3:5B:33:14:18:C8:7A:88:48:5D:A1
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136312e302f32342d3234203d3e203631313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.161.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:9d:f1:da:01:4b:95:97:54:bc:c9:0a:7f:8b:11:b4:19:6d:
70:2f:55:39:d0:af:49:82:96:6a:d2:47:85:37:45:9e:c5:70:
ab:4a:04:90:d8:a3:58:fa:5a:83:27:a4:be:24:b1:83:ef:a6:
2e:95:51:46:87:59:28:b2:42:e1:d8:2d:fa:02:39:be:61:27:
e7:59:2c:13:30:59:78:f5:d1:20:3c:d2:8e:fe:fe:a2:74:66:
74:2a:cd:04:f4:e8:90:d5:c6:3c:ed:55:57:56:c0:5d:f9:77:
cf:3a:a7:47:4e:ad:3a:54:43:83:b3:b7:21:7b:cc:1a:55:ab:
1e:21:65:e2:cb:53:e5:be:34:84:67:e4:88:5c:1a:9c:c3:a2:
58:b5:04:0f:97:21:ee:68:62:b9:d0:f4:79:f6:2c:5f:09:46:
51:fc:a3:1e:e7:99:94:9f:5d:a2:88:eb:d9:af:4a:cb:a2:e7:
58:c3:16:ce:f2:9f:d6:75:fb:99:3b:eb:a7:83:84:53:6c:d4:
01:56:de:c4:fd:12:6f:4a:09:6c:da:1c:06:18:38:48:48:26:
bb:fb:86:41:28:9b:82:f5:51:e6:0a:7a:be:d1:d2:78:d4:ab:
40:e1:60:2e:d9:7d:c0:39:b1:6d:b8:7a:c1:a5:74:e2:3e:ca:
86:75:84:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 19:15:14 2025 by rpki-client