Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3131302e302f32332d3332203d3e20313431393935.roa
File: 3135362e36372e3131302e302f32332d3332203d3e20313431393935.roa (raw, json)
Hash identifier: V0FmduIhNyZKHP+OZPY0EPocv2pSm0t4W2ckqTiU0w0=
Subject key identifier: B5:69:02:64:AA:FC:39:B5:32:87:0B:58:6B:C9:1C:58:7F:7F:C1:D6
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 0BE52AB82B4AD99085A7819DA2A9798536B79D9D
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3131302e302f32332d3332203d3e20313431393935.roa
Signing time: Mon 12 May 2025 11:46:13 +0000
ROA not before: Mon 12 May 2025 11:41:13 +0000
ROA not after: Mon 11 May 2026 11:46:13 +0000
asID: 141995
IP address blocks: 156.67.110.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 15:10:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:e5:2a:b8:2b:4a:d9:90:85:a7:81:9d:a2:a9:79:85:36:b7:9d:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 12 11:41:13 2025 GMT
Not After : May 11 11:46:13 2026 GMT
Subject: CN=B5690264AAFC39B532870B586BC91C587F7FC1D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:45:90:29:d1:e4:61:3c:28:34:a2:62:88:25:
29:57:4b:26:17:2a:3a:33:7f:3c:3b:23:d8:14:a0:
82:e0:d7:06:84:0c:c2:d3:e7:5b:0d:a0:7e:32:b6:
0e:16:ab:59:9f:16:80:25:8d:99:a8:b1:28:ed:07:
7f:88:95:7c:ce:e2:f9:57:01:18:33:37:bb:37:e7:
9f:e7:ec:1c:9b:f7:75:81:09:cd:04:43:00:0b:1a:
b3:c7:bb:1b:b3:dd:c3:34:65:87:33:f5:49:eb:8a:
71:4a:64:af:9f:0c:94:4c:e0:2d:1b:f1:97:cd:46:
c5:24:4c:e8:4b:3d:2b:59:82:f3:d8:1d:a3:29:33:
48:45:75:70:a8:3e:af:75:4a:30:62:16:52:58:77:
4a:22:e3:a1:cc:5d:22:6a:32:14:94:0b:57:97:84:
02:ae:9d:52:21:5e:1e:d5:c6:73:bc:c6:c7:bf:ea:
2e:fa:bf:9a:c8:69:62:e6:d8:8d:37:49:57:9c:91:
10:ad:10:99:20:ed:84:28:2f:75:73:3d:66:c2:41:
16:17:de:f4:f1:1b:61:36:d7:c1:32:f2:16:88:8a:
b4:26:75:cd:ed:af:6e:38:0c:23:13:2c:1b:00:c3:
68:5d:18:9c:bd:cd:6b:b7:f0:f8:a5:33:87:c5:c9:
85:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:69:02:64:AA:FC:39:B5:32:87:0B:58:6B:C9:1C:58:7F:7F:C1:D6
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3131302e302f32332d3332203d3e20313431393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.110.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:46:20:ec:09:f2:ea:cf:75:78:2e:0f:43:db:96:96:98:30:
8e:55:fc:ee:84:a0:8b:d6:14:0b:ca:5c:37:76:41:a1:97:a7:
8f:03:7c:32:8f:c7:26:0d:88:24:f5:b8:08:51:ab:19:2b:1d:
19:12:8d:84:3f:a7:48:66:56:61:51:68:3c:0e:09:69:a3:8a:
0b:e2:4d:bf:f3:a8:ca:f5:c5:37:68:a1:ce:71:85:18:2a:b2:
25:0b:3e:4c:49:71:bb:66:f7:34:7d:ce:7f:aa:74:6f:22:41:
16:bd:2c:1e:d8:80:03:ff:87:81:84:2c:d4:c2:02:2b:9f:0e:
83:21:e4:36:eb:73:9f:4c:be:50:79:ad:5d:9c:1b:a6:2a:4c:
51:87:84:16:49:a0:ba:ef:4f:20:c4:aa:f6:cd:6d:a9:ff:dd:
5b:bb:cb:c1:0c:ab:8b:6f:f5:83:b7:51:ef:35:7f:55:81:b6:
b0:a8:af:a4:ab:d8:67:b4:a1:46:1c:36:72:b9:19:c7:5c:72:
e9:cf:54:c2:55:51:3b:28:83:3a:b8:65:cd:fe:2c:33:2d:de:
2d:1c:64:19:d0:17:15:4c:c2:cd:b9:0b:d6:96:ed:95:59:8b:
23:10:41:25:3e:ad:12:b8:1c:92:28:0a:4f:d4:87:4d:80:54:
33:da:c8:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:13:00 2025 by rpki-client