Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3139332e332e3136352e302f32342d3234203d3e20323032333539.roa
File: 3139332e332e3136352e302f32342d3234203d3e20323032333539.roa (raw, json)
Hash identifier: PN7OPw6x8T4uLhMmLkm8sVVlgwZlpPub1GieXN4o6dQ=
Subject key identifier: 5A:94:6E:09:D2:B9:8C:19:ED:B3:4B:C0:0A:B2:4D:00:36:48:C5:37
Certificate issuer: /CN=0839a93dab544c296ffa143456844a8b2818b1d0
Certificate serial: 750A2085AD9EFD49F2F46E59AB8C33BE8B4813AF
Authority key identifier: 08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3139332e332e3136352e302f32342d3234203d3e20323032333539.roa
Signing time: Sun 01 Jun 2025 12:18:35 +0000
ROA not before: Sun 01 Jun 2025 12:13:35 +0000
ROA not after: Sun 31 May 2026 12:18:35 +0000
asID: 202359
IP address blocks: 193.3.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 16:19:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:0a:20:85:ad:9e:fd:49:f2:f4:6e:59:ab:8c:33:be:8b:48:13:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0839a93dab544c296ffa143456844a8b2818b1d0
Validity
Not Before: Jun 1 12:13:35 2025 GMT
Not After : May 31 12:18:35 2026 GMT
Subject: CN=5A946E09D2B98C19EDB34BC00AB24D003648C537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:24:74:ec:f1:09:fc:1c:01:8e:27:78:3e:c1:
98:6b:c4:e4:fa:c0:78:7e:23:2a:3c:7c:64:35:f7:
04:7d:17:c2:6f:55:30:d9:7d:e0:54:8e:b9:5f:4d:
1e:7c:89:9f:7d:31:ac:cb:85:80:a6:de:d6:eb:ff:
0c:35:48:cc:4c:cf:06:2a:99:78:87:c1:95:7d:2f:
a0:49:bb:e0:c2:55:bd:dd:e1:01:01:c8:04:70:5e:
79:f0:df:f3:c8:e7:cb:1d:12:07:d1:99:99:dc:dd:
8a:bd:e6:c0:db:36:be:2d:9b:1d:63:76:fc:49:d1:
f1:5d:1b:88:8e:19:4d:22:72:89:83:0f:fe:55:63:
00:d8:3d:74:3e:fb:cf:1f:80:f0:f9:cf:e8:a8:91:
7b:09:17:73:66:5b:80:48:98:23:a5:30:74:60:27:
df:6d:af:9a:0f:1e:6b:14:5b:a5:46:72:69:19:77:
7b:a8:f7:38:9d:da:43:eb:ff:b5:82:c3:0f:69:52:
93:e5:01:5b:78:a6:8e:f1:45:0e:9a:43:2d:50:7e:
fd:a3:a1:b2:51:cc:55:18:8c:81:86:6c:c2:86:e9:
48:d9:41:16:83:71:f8:14:c7:01:91:88:01:80:eb:
c6:03:be:d4:0e:88:6d:11:64:25:6c:8d:fa:67:ad:
d7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:94:6E:09:D2:B9:8C:19:ED:B3:4B:C0:0A:B2:4D:00:36:48:C5:37
X509v3 Authority Key Identifier:
keyid:08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3139332e332e3136352e302f32342d3234203d3e20323032333539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.165.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:d9:bf:63:37:99:27:a5:fd:20:f2:8e:b0:98:3b:e9:9c:46:
06:09:b5:8f:66:34:2a:df:f0:f3:1a:99:2e:7c:aa:dd:b9:ea:
58:8e:ed:63:02:67:14:ac:60:27:96:7c:1a:74:e4:35:85:40:
ed:52:b6:5a:2b:d6:19:ba:e1:9b:24:f0:da:e2:8e:dc:ad:71:
be:0c:1c:b9:60:8f:60:84:3c:4f:b1:68:6a:f0:60:ea:5d:d6:
e3:20:2e:85:26:6d:49:fd:aa:55:9a:c8:b1:6d:3f:54:0f:7b:
a7:ee:74:7e:dd:6d:28:a8:22:40:27:22:56:64:fd:aa:ad:df:
77:c1:ee:79:17:cf:e3:0b:1c:d3:3c:a9:f9:5c:4a:be:55:bd:
b7:30:39:57:92:ad:03:19:a0:d9:7f:15:80:ab:f7:b7:de:1b:
b4:89:dd:03:53:d2:da:e9:50:cb:ab:13:d5:d5:86:70:39:0d:
58:dd:cf:6c:0a:64:c2:c0:57:54:04:8c:e9:2e:84:93:14:71:
da:5f:48:07:80:ff:84:28:aa:5a:89:80:7b:e7:17:c8:6d:d4:
d6:e4:03:02:ff:dd:52:f2:d0:f4:de:81:5d:f6:b7:9d:62:e6:
70:75:09:63:d1:45:f1:49:f5:36:0b:f3:a4:cd:34:db:e3:93:
be:4e:c8:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:45:25 2025 by rpki-client