Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3133332e302f32342d3234203d3e20333935373933.roa
File: 3134352e37392e3133332e302f32342d3234203d3e20333935373933.roa (raw, json)
Hash identifier: ryQb8nx0nHl35ytksHkp9JiMm3wkhzcTAPv2XqcofYA=
Subject key identifier: 90:5E:68:A0:ED:19:84:28:A9:4B:88:51:57:54:52:98:F3:FF:3B:AC
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1FD987C20E973EF75276997714B50D2917F229E6
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3133332e302f32342d3234203d3e20333935373933.roa
Signing time: Thu 29 May 2025 19:06:56 +0000
ROA not before: Thu 29 May 2025 19:01:56 +0000
ROA not after: Thu 28 May 2026 19:06:56 +0000
asID: 395793
IP address blocks: 145.79.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:d9:87:c2:0e:97:3e:f7:52:76:99:77:14:b5:0d:29:17:f2:29:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 29 19:01:56 2025 GMT
Not After : May 28 19:06:56 2026 GMT
Subject: CN=905E68A0ED198428A94B885157545298F3FF3BAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:be:54:f2:56:64:a6:4c:4d:5c:34:70:55:50:
88:cd:46:2f:6e:ce:8c:26:cc:5d:7a:e4:96:18:44:
34:e8:1b:ab:37:ca:26:54:5b:1c:a5:cd:e3:c4:8c:
58:e4:27:e1:52:f8:6d:7d:ea:11:ad:92:6a:76:33:
86:63:74:9b:b0:b9:73:6e:32:9b:cf:4c:63:2a:fe:
dd:e2:2b:1a:e7:b1:95:7b:cc:9f:6e:b1:ce:c0:94:
8d:7d:28:6b:e3:93:0d:95:26:7d:e6:0b:20:ca:d2:
ef:56:a4:8c:01:ff:b4:19:a3:51:02:79:3f:b9:70:
54:ef:41:98:f8:0d:56:44:1c:9f:51:e7:a3:80:1f:
04:f8:31:63:bd:58:0c:a9:8d:bf:9f:98:51:fa:1a:
1c:e7:21:eb:7c:9e:dc:86:cd:3c:97:31:ba:4c:c2:
db:3e:27:63:d0:76:5a:41:60:bc:cf:6c:84:21:de:
8b:b1:d6:26:e6:30:25:8c:77:c9:a0:76:19:12:15:
f9:84:8a:76:60:c6:77:8b:c7:1f:6c:01:5c:b7:48:
21:15:c9:dc:98:87:8f:18:1d:c9:22:eb:37:49:6e:
bf:ae:b4:eb:e3:85:5a:0c:99:b2:c2:5f:01:85:b3:
e6:7f:fb:41:41:71:12:71:c5:d9:21:08:97:8f:e9:
89:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:5E:68:A0:ED:19:84:28:A9:4B:88:51:57:54:52:98:F3:FF:3B:AC
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3133332e302f32342d3234203d3e20333935373933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.133.0/24
Signature Algorithm: sha256WithRSAEncryption
88:92:e1:85:aa:62:66:4d:6a:3f:b2:94:db:cd:03:f0:a5:95:
d6:63:8c:9b:26:f9:88:46:13:aa:06:78:4b:4c:3d:2a:37:d6:
7b:58:62:01:6e:67:4c:e8:19:58:22:d2:61:18:84:0e:71:d0:
cb:de:6e:dc:ad:09:be:cb:60:16:f7:33:57:79:06:f4:5a:82:
9e:d8:45:7d:fc:bf:29:3b:ff:aa:48:8d:1f:1b:50:27:04:f0:
e3:9b:50:d7:f6:15:43:46:69:a5:8d:13:7b:30:23:50:c1:2d:
f5:64:81:19:c8:6f:1a:0c:7d:ae:9b:07:b1:77:b6:5c:27:e0:
5f:f4:2e:3e:6c:f3:c7:42:66:c1:63:d5:0a:e0:75:63:fc:72:
89:8f:46:3f:a3:c7:63:45:c3:03:80:33:73:8a:ab:62:60:52:
53:dd:b4:01:89:d9:5b:96:13:27:17:2b:b0:75:c5:ef:66:25:
b6:0f:0e:f1:1f:fd:ca:66:f1:78:d3:04:75:4c:e1:9f:ff:56:
d7:4f:ac:6f:ff:e3:a4:15:72:c5:f5:10:b0:ff:b3:23:f6:51:
35:54:73:fc:0b:aa:bc:2d:6f:b2:2d:60:79:0e:10:0c:c2:12:
b5:48:17:06:72:c4:36:41:66:ac:b5:c4:49:30:ad:20:81:e7:
bc:60:9e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 19:57:25 2025 by rpki-client