Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37332e302f32342d3234203d3e20323135363338.roa
File: 3134312e39382e37332e302f32342d3234203d3e20323135363338.roa (raw, json)
Hash identifier: v0mMmyiVUtCH9nl4Eqkpz1Y64DjC6fn9VWA9+k7QbfM=
Subject key identifier: D2:D2:1D:5C:20:B2:83:96:0F:6C:AB:E8:AC:77:FB:5E:90:4E:A8:F1
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 0443FA84ABB55A18B1A217CFCF16785B10DA5A05
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37332e302f32342d3234203d3e20323135363338.roa
Signing time: Tue 10 Jun 2025 09:53:45 +0000
ROA not before: Tue 10 Jun 2025 09:48:45 +0000
ROA not after: Tue 09 Jun 2026 09:53:45 +0000
asID: 215638
IP address blocks: 141.98.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 04:16:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:43:fa:84:ab:b5:5a:18:b1:a2:17:cf:cf:16:78:5b:10:da:5a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Jun 10 09:48:45 2025 GMT
Not After : Jun 9 09:53:45 2026 GMT
Subject: CN=D2D21D5C20B283960F6CABE8AC77FB5E904EA8F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9f:b1:f3:4f:19:9d:17:a7:35:81:85:aa:e8:
73:10:b3:42:77:8b:4e:27:05:80:38:e2:df:80:ca:
b9:2c:c2:c6:22:9d:5c:79:1d:93:db:67:70:7d:13:
19:2d:c0:db:5e:8f:6b:01:d6:75:c1:24:29:f4:d5:
04:08:59:e8:b0:e0:30:da:9a:ec:aa:6e:83:fb:ed:
4b:e0:77:bd:3f:c1:44:e4:49:f0:46:d5:8c:a6:36:
23:12:19:df:1b:f9:a1:a4:66:40:c8:54:e1:0f:ca:
1e:33:93:e8:46:b6:11:b6:4e:3f:e0:0a:e1:33:c9:
07:04:1c:02:03:c0:4d:f8:88:68:89:61:cb:7b:38:
5f:6e:17:25:84:c5:42:5d:26:8d:21:ce:48:f3:5a:
5f:f2:55:52:cf:1f:42:9f:91:cb:e9:f7:50:0f:5c:
55:f0:c6:f9:1c:e5:74:cf:5c:81:9c:b2:99:fc:c9:
87:14:6b:ba:60:55:65:1f:c1:72:d8:dd:67:c6:94:
32:1d:13:87:92:4a:25:c4:80:ea:49:10:d6:9a:91:
02:ff:63:55:db:79:b3:b8:dc:fb:f9:58:63:fa:1e:
69:ec:4c:f2:24:b3:1b:31:02:bf:0c:1b:4a:04:59:
a4:a5:1a:46:dc:d9:cd:43:b2:bb:ef:11:84:c7:0e:
82:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:D2:1D:5C:20:B2:83:96:0F:6C:AB:E8:AC:77:FB:5E:90:4E:A8:F1
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37332e302f32342d3234203d3e20323135363338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.73.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6b:d9:a4:b9:bc:32:d7:f9:10:cc:ec:a3:37:04:32:00:43:
1f:0d:3f:6a:d9:c5:6b:97:57:e9:fc:11:7b:fb:87:93:c2:9d:
1f:7f:d9:b0:98:c1:51:a2:9b:ef:a6:85:6c:52:96:5f:6b:f0:
f6:b7:5c:e0:27:12:7a:82:d0:8e:37:5b:38:57:57:c8:55:9a:
f9:89:2c:a9:fb:50:c9:d4:c3:af:bb:3f:00:84:44:46:f0:90:
3c:47:51:63:b4:93:74:ce:d9:9b:29:a6:62:25:35:1c:73:39:
de:ee:22:73:72:e3:7e:07:7c:71:4c:b1:19:68:dc:ee:92:42:
6d:81:d8:64:7b:9b:70:6e:36:8c:bd:5a:86:e6:34:3e:81:44:
cd:a6:89:a9:2d:8d:e7:42:e3:06:c4:71:80:1e:4b:44:a3:6f:
99:07:2d:0a:93:76:af:5b:fc:c2:79:8a:d9:9e:78:39:3b:f2:
a7:f9:dd:29:d7:77:04:45:a4:98:a3:d9:d8:ca:03:52:a0:3d:
7a:9e:32:04:de:fd:26:ca:be:c9:18:b6:9e:5f:f6:e2:23:8e:
0f:a7:db:c4:dc:d5:94:95:d4:1d:5d:c1:71:1f:4a:11:5e:1a:
b1:7c:b0:f7:bc:b2:26:f3:a7:4b:70:e0:66:2b:8a:0f:83:e5:
ed:4a:88:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 13:43:17 2025 by rpki-client