Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3134342e302f32302d3234203d3e203230333236.roa
File: 36322e3131322e3134342e302f32302d3234203d3e203230333236.roa (raw, json)
Hash identifier: PvFG9BZ+YdbKPRfUC/0dM3w7V209DRWmI/bk8VoBnFU=
Subject key identifier: 00:B4:E7:02:3F:A0:64:09:15:6E:A7:47:13:DE:22:9F:84:A2:EA:B6
Certificate issuer: /CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Certificate serial: 760CAEED27D3F15D81863DF5F9544993DCCE216B
Authority key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3134342e302f32302d3234203d3e203230333236.roa
Signing time: Tue 29 Jul 2025 13:41:59 +0000
ROA not before: Tue 29 Jul 2025 13:36:59 +0000
ROA not after: Tue 28 Jul 2026 13:41:59 +0000
asID: 20326
IP address blocks: 62.112.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 11:17:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:0c:ae:ed:27:d3:f1:5d:81:86:3d:f5:f9:54:49:93:dc:ce:21:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Validity
Not Before: Jul 29 13:36:59 2025 GMT
Not After : Jul 28 13:41:59 2026 GMT
Subject: CN=00B4E7023FA06409156EA74713DE229F84A2EAB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b9:1f:de:ce:fd:dd:21:09:79:8f:dc:eb:5f:
ca:be:3b:23:1b:14:38:ef:79:f3:54:34:fa:39:a0:
ee:9c:2f:fe:73:8b:3d:ea:d1:20:3b:eb:02:1a:30:
64:70:58:81:24:9b:5a:8c:74:48:52:60:f4:4a:e1:
e9:96:3a:ee:b8:d7:13:29:9f:4c:cd:7c:01:85:b8:
be:2b:ed:67:f0:27:49:eb:a7:7b:1d:b5:cb:79:43:
dd:3d:4f:b9:f5:25:f8:69:1b:1a:ea:73:c8:39:08:
f4:46:8e:f5:fa:0e:11:c9:a0:e4:32:23:43:bd:f0:
54:b5:d9:f7:de:12:2e:22:ca:ef:06:9a:ff:db:d1:
c7:94:cb:c2:bd:c3:56:f9:c8:50:63:9b:9d:3a:af:
75:9e:ad:99:17:14:74:8a:22:93:33:ab:9d:0f:f2:
b5:87:97:8d:db:52:d5:51:74:c1:60:46:6b:34:73:
5a:20:d6:22:a6:c7:fc:8c:b9:8b:aa:c4:5d:5a:57:
cb:59:7c:67:6f:d1:b0:fc:08:17:41:8d:da:8e:97:
9a:20:34:9d:3c:c8:95:81:10:67:54:5c:3e:a7:5c:
4f:fe:7d:0c:83:7c:80:e8:80:4b:1d:00:94:0d:22:
92:87:05:4f:62:78:de:71:3e:a9:95:79:27:38:ee:
7e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B4:E7:02:3F:A0:64:09:15:6E:A7:47:13:DE:22:9F:84:A2:EA:B6
X509v3 Authority Key Identifier:
keyid:9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3134342e302f32302d3234203d3e203230333236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.144.0/20
Signature Algorithm: sha256WithRSAEncryption
48:00:7c:00:85:d6:93:fc:6a:be:64:1f:33:93:d5:2a:22:9d:
d3:e4:73:94:42:87:9b:86:ab:bd:2f:d6:36:6e:e0:ac:3a:13:
5f:5b:2e:97:5c:c9:b9:2c:c6:76:82:cb:69:5f:af:80:49:1b:
4f:e6:16:a9:8f:14:5a:93:32:37:d9:df:c1:44:c9:e1:b4:2d:
36:7c:39:51:27:8d:ce:74:9f:b2:fe:3f:c9:fa:44:a1:bc:60:
a5:3a:91:f4:c4:ba:d1:7a:fd:b9:05:68:8e:f2:f9:45:b5:3e:
aa:f8:54:d1:db:e6:10:c6:cb:37:0b:f7:ea:72:a5:6c:84:b8:
9e:27:77:f3:ec:5a:99:4f:4d:c4:d8:ea:87:7d:2b:e7:09:33:
5c:00:df:d2:72:71:a8:36:a6:8c:66:e2:af:91:59:cc:ee:cf:
38:7c:71:eb:35:06:59:e8:22:f4:55:eb:14:d6:3b:b3:21:cd:
e3:bb:b6:35:0c:cb:30:d3:5b:9a:fc:c9:82:f8:29:8b:f4:88:
66:44:45:6a:b2:15:0d:14:2c:06:9b:a0:c0:15:89:28:ee:af:
76:0f:a4:1c:45:e8:2c:ed:f8:fe:5e:67:9a:31:7d:50:9f:90:
4b:22:af:7c:73:24:89:c2:d2:a8:f0:8e:40:aa:7f:ec:ad:b3:
9e:96:ab:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:01:50 2025 by rpki-client