Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3133362e3138342e302f32312d3332203d3e20313431393935.roa
File: 39342e3133362e3138342e302f32312d3332203d3e20313431393935.roa (raw, json)
Hash identifier: bNvK23bow2hjPd1lxwoN4uOdH9A+ImQaG47V6GZlI80=
Subject key identifier: 23:73:75:5F:59:22:A7:70:A2:A8:5B:B2:2E:A7:9C:88:6D:0C:38:36
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 15F03987602ED8ECB34C4D9230C4BD74A8BA7B22
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3133362e3138342e302f32312d3332203d3e20313431393935.roa
Signing time: Thu 29 May 2025 17:46:34 +0000
ROA not before: Thu 29 May 2025 17:41:34 +0000
ROA not after: Thu 28 May 2026 17:46:34 +0000
asID: 141995
IP address blocks: 94.136.184.0/21 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 15:10:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:f0:39:87:60:2e:d8:ec:b3:4c:4d:92:30:c4:bd:74:a8:ba:7b:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 29 17:41:34 2025 GMT
Not After : May 28 17:46:34 2026 GMT
Subject: CN=2373755F5922A770A2A85BB22EA79C886D0C3836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:67:f7:0f:5a:c0:d2:8b:27:2f:6a:40:fa:ee:
82:62:67:f3:8b:93:81:75:61:23:c0:a3:22:45:79:
6c:f6:17:48:be:86:45:9a:f1:1f:db:1b:4d:d6:66:
48:81:04:40:a8:21:0f:28:e2:f1:c8:59:4f:b3:db:
94:74:d9:7e:24:23:6b:68:2a:a5:28:94:dd:35:49:
dc:45:93:06:8a:cc:06:6d:32:09:c1:82:6e:da:5e:
1e:1a:ad:22:7d:01:e7:97:c3:d7:0e:87:d1:57:23:
af:c0:4b:58:7b:eb:98:42:61:8b:90:c2:e3:da:8b:
18:bb:56:d9:66:3e:99:e6:de:a5:15:b5:72:29:e4:
94:75:01:ef:49:3d:59:3b:5a:25:46:f8:25:c7:7a:
7a:c0:cb:10:6b:c2:56:4c:fd:e4:ca:5b:9d:25:cc:
34:77:28:aa:ef:cf:13:28:8b:37:6e:c9:f3:35:1c:
80:82:6d:9e:2c:18:25:71:08:7f:4c:bd:db:10:ec:
40:53:16:04:a0:5d:4a:ae:67:8f:bf:25:1a:69:3d:
bf:1c:de:fc:a4:6d:6a:2e:3d:4a:36:8a:2b:c3:0a:
d4:45:a9:21:6e:55:93:c2:d4:e3:79:cf:e4:f1:01:
54:ab:c8:da:f7:b0:e0:ef:08:93:a6:52:b7:48:5e:
bb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:73:75:5F:59:22:A7:70:A2:A8:5B:B2:2E:A7:9C:88:6D:0C:38:36
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3133362e3138342e302f32312d3332203d3e20313431393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.136.184.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:ae:4e:1d:32:ca:83:8b:5f:57:45:4b:46:6b:b9:cb:02:0f:
b4:03:06:7a:0d:e0:dc:f5:a5:25:1c:ec:85:e4:c1:14:2a:6a:
bd:bc:85:b7:91:ee:94:a1:07:e8:8c:15:35:ec:48:68:eb:f0:
5e:0d:60:46:21:6a:94:76:f1:18:6d:08:cb:e3:5b:aa:16:d7:
f5:c9:66:b8:79:99:66:34:46:d3:b7:12:c1:a5:2d:f0:e7:18:
01:01:b2:c6:c0:28:49:a8:a1:14:70:e1:1a:51:e1:a7:e9:98:
49:fa:e6:ce:1b:17:62:5e:8d:30:fa:ee:09:11:b5:a3:3f:54:
89:ce:e4:c5:2a:96:14:95:f0:f3:e6:e9:57:67:bd:a7:34:00:
47:76:f3:cf:1e:82:a7:1f:dd:d7:4a:d8:96:df:35:be:19:2d:
35:37:ec:14:bd:87:2e:43:6f:28:18:87:ed:5d:ff:6a:50:43:
53:ed:80:29:27:b8:9f:3f:0f:81:24:05:e2:24:ec:4f:c5:33:
c2:82:2b:79:a4:c7:79:4e:be:c2:14:a2:49:3d:dd:91:44:2d:
77:57:a0:b5:a9:48:88:06:13:9a:ca:2f:7d:a0:20:c2:ec:83:
89:dd:45:4e:ba:0a:12:c1:95:20:6b:52:28:f9:86:1e:be:fe:
bc:e7:c9:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:59:16 2025 by rpki-client