Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3139372e302f32342d3234203d3e20313336373837.roa
File: 3134352e37392e3139372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Jo0sS3eZe2RjAk8NCbeTn59BXBN1LRP7cahfxd/HL+I=
Subject key identifier: 00:9A:FF:7D:F3:DF:92:38:F1:67:57:0C:AD:6C:23:61:5D:77:53:49
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 483EF07B1F91A0BF2751823880D9E5AF52019038
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3139372e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 06 Jun 2025 12:01:25 +0000
ROA not before: Fri 06 Jun 2025 11:56:25 +0000
ROA not after: Fri 05 Jun 2026 12:01:25 +0000
asID: 136787
IP address blocks: 145.79.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 15:10:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:3e:f0:7b:1f:91:a0:bf:27:51:82:38:80:d9:e5:af:52:01:90:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 6 11:56:25 2025 GMT
Not After : Jun 5 12:01:25 2026 GMT
Subject: CN=009AFF7DF3DF9238F167570CAD6C23615D775349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f5:1d:98:4a:1c:ec:b6:48:bb:ba:4b:a7:5e:
52:aa:16:de:5b:bd:f0:68:7a:54:40:6c:87:c3:6c:
c8:3e:33:25:f1:56:a8:1a:11:2f:b9:5e:15:d5:17:
48:20:33:56:0c:59:b4:1e:03:35:5c:cf:8c:93:b2:
d4:a3:d3:a0:47:2e:74:d9:89:53:78:0a:5d:12:d0:
8c:50:48:cd:be:47:de:ac:59:6c:ae:21:1c:48:70:
66:5c:55:b7:ab:76:1f:25:d6:a5:c5:65:25:d2:74:
a5:73:d9:ec:02:0a:9e:03:a5:56:bb:c5:7d:ad:27:
8f:1f:b7:29:12:c0:73:c4:fc:38:05:e7:72:b8:23:
14:a6:1e:1d:bd:42:43:da:12:ae:af:f8:7a:b9:4b:
ef:96:80:e0:cc:d7:5f:44:d2:16:3a:8a:5e:d8:f6:
62:34:56:61:41:d3:ce:09:2c:16:19:5f:bb:93:c1:
ff:a7:6f:f5:f9:6b:2e:c9:a0:0f:48:02:e8:f6:35:
b0:87:b5:15:3a:e9:57:cc:f1:f2:f8:28:38:07:4c:
a0:ec:72:26:78:15:12:67:b2:f8:8e:3c:8d:76:71:
d5:1a:ca:b4:8b:b2:33:37:c1:b5:00:f4:80:a0:1b:
04:f4:06:8f:77:05:81:d5:e8:41:20:6c:5f:68:77:
c4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:9A:FF:7D:F3:DF:92:38:F1:67:57:0C:AD:6C:23:61:5D:77:53:49
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3139372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.197.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:b5:a8:f8:f6:83:5f:85:51:ff:bd:79:73:a8:a4:3e:19:1d:
bc:19:ff:ec:9d:d1:f6:e0:cf:08:9e:1d:fc:bf:05:38:f8:35:
26:dd:bc:66:6d:12:b2:9c:ed:a4:1b:dd:0c:2e:52:6a:02:44:
b2:b9:56:27:e2:b9:34:b0:d3:cb:5b:4d:82:d2:0f:c0:f8:f4:
c1:70:e8:0a:de:09:72:89:9d:39:b0:b2:0d:8a:0f:0f:d7:96:
ed:e7:74:89:5d:4c:b9:a3:8d:77:ad:49:d9:ce:a2:3a:6b:f8:
af:6f:c7:98:c0:de:ed:3f:7a:bc:e4:a5:db:68:c7:7b:21:ea:
6f:0d:01:30:f8:bf:d7:3b:16:bb:dd:bb:99:c5:4c:4e:bd:f9:
5f:ab:6d:de:5f:f5:1e:59:81:b3:1d:c2:f9:b3:97:12:8a:1c:
5a:4a:e7:e6:1b:d4:45:62:4b:37:63:fb:34:6d:48:58:05:c8:
0f:61:5a:4d:a8:ce:5a:9b:43:3f:1e:36:e4:b4:e8:e4:70:0a:
39:80:8e:e0:fe:b2:df:fb:f8:79:88:5d:2e:20:be:ef:89:df:
13:34:2c:ff:b8:50:08:31:cf:69:42:4b:94:90:ab:21:9b:48:
42:fa:14:7a:10:d1:27:42:8c:e4:85:40:19:e9:c1:fe:c7:86:
43:2d:65:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:34:47 2025 by rpki-client