Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3138342e302f32322d3234203d3e203239383032.roa
File: 3134352e37392e3138342e302f32322d3234203d3e203239383032.roa (raw, json)
Hash identifier: hGrBA6p9B3hBxui7sqiYxm5WuSopKWRDDi7gyMzvGjU=
Subject key identifier: 5C:6E:0E:14:D2:80:43:8C:CE:95:03:65:26:BB:8D:34:3F:1E:55:49
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6B0511BAFE4DB0A216B4F1D2EE50DC3D8B726A28
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3138342e302f32322d3234203d3e203239383032.roa
Signing time: Thu 17 Jul 2025 17:43:04 +0000
ROA not before: Thu 17 Jul 2025 17:38:04 +0000
ROA not after: Thu 16 Jul 2026 17:43:04 +0000
asID: 29802
IP address blocks: 145.79.184.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:05:11:ba:fe:4d:b0:a2:16:b4:f1:d2:ee:50:dc:3d:8b:72:6a:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 17 17:38:04 2025 GMT
Not After : Jul 16 17:43:04 2026 GMT
Subject: CN=5C6E0E14D280438CCE95036526BB8D343F1E5549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a1:3e:62:f2:b3:cb:57:67:af:85:72:1f:cb:
c2:f1:f4:f4:44:15:a6:4f:f2:3e:3f:b0:c2:bc:0f:
de:a8:b8:f9:4f:a8:81:39:04:18:ae:fa:1f:17:ba:
32:5a:35:75:ab:75:d4:0c:84:08:eb:c3:4d:9f:55:
c0:d3:3f:3a:18:53:50:8b:47:4d:6e:dd:18:84:47:
23:a3:dc:67:db:ad:f3:0f:b4:ba:19:93:f1:44:0f:
16:3a:a3:02:bb:1a:ec:2e:91:5b:67:a9:9e:7a:68:
3c:49:d5:9b:fd:61:f4:12:96:59:b9:67:b9:2a:47:
24:8a:85:c6:d2:f0:ff:53:b7:64:60:57:57:c7:81:
25:7f:7c:a9:12:7f:4e:96:f2:14:6b:1e:bf:06:20:
6e:f7:54:c7:f4:6b:f0:ae:30:40:78:2e:6f:f6:3e:
af:21:49:56:c4:d6:6d:fd:54:89:57:6f:39:6e:8e:
02:1c:f2:3d:0c:59:df:3e:d8:25:cf:d7:00:8c:e2:
5d:b8:40:80:e4:21:51:a7:f6:ca:70:45:ab:93:be:
c9:a0:8b:52:16:c7:db:18:07:05:2a:d9:45:e3:e7:
ca:99:0c:6f:1e:94:f4:13:ac:45:4c:13:38:c5:51:
65:dd:fa:be:23:21:aa:86:10:4f:2b:ac:83:cf:3f:
f4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:6E:0E:14:D2:80:43:8C:CE:95:03:65:26:BB:8D:34:3F:1E:55:49
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3138342e302f32322d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.184.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:0a:8b:74:ed:0f:42:ec:f6:47:2c:4d:25:cf:4f:03:48:70:
12:08:f2:a7:2d:03:5a:69:6e:66:d9:a2:1a:86:35:d1:09:12:
3b:d8:26:85:38:c7:00:5c:86:b6:2b:c9:ea:f4:d4:1f:b9:dc:
18:ba:99:57:2e:57:61:fe:63:94:d7:c6:df:7d:98:4c:9a:6c:
f5:2a:8d:d9:18:9e:3b:66:b1:eb:be:db:7f:04:dd:ef:61:8c:
7e:5a:fb:34:6e:6a:61:92:4a:0c:ae:59:da:e7:65:96:59:0e:
5a:8b:c8:5c:68:94:c1:e7:14:bf:fd:70:91:36:10:01:a4:e7:
ed:24:dd:be:d4:14:ce:75:a2:46:c4:2b:0d:78:ff:a0:af:00:
fc:aa:1a:31:9a:8b:18:4b:8d:41:eb:84:82:5c:f5:46:12:f5:
81:c4:dc:aa:a2:a8:22:25:c0:4c:d9:09:34:7e:5d:c2:60:e8:
89:bf:b9:ac:07:3b:95:3c:f4:0b:4b:78:74:a3:1d:8c:8a:7c:
a5:5a:e0:c0:20:43:ad:f8:3e:34:42:ba:f7:11:28:bb:c5:1e:
f1:cf:bb:4d:49:53:bc:a5:77:b4:aa:ab:87:c6:60:9c:be:c1:
12:2c:a8:ce:51:13:c3:ab:ab:09:a5:fd:cd:04:34:de:16:1f:
14:6d:c4:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:24:27 2025 by rpki-client