Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20333937363330.roa
File: 34352e36352e3131392e302f32342d3234203d3e20333937363330.roa (raw, json)
Hash identifier: ehPjLw1cp2F6dw50ZDxthR5IEUtjCv3e9NFGey6ydLs=
Subject key identifier: 73:3D:BD:83:2D:B8:9E:72:9F:0D:74:48:AF:1C:7F:75:E2:9C:D5:9A
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 3D1F3875A259C625DA067D9E880FAF3CC9C9955C
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20333937363330.roa
Signing time: Tue 19 Aug 2025 16:58:03 +0000
ROA not before: Tue 19 Aug 2025 16:53:03 +0000
ROA not after: Tue 18 Aug 2026 16:58:03 +0000
asID: 397630
IP address blocks: 45.65.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:37:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:1f:38:75:a2:59:c6:25:da:06:7d:9e:88:0f:af:3c:c9:c9:95:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Aug 19 16:53:03 2025 GMT
Not After : Aug 18 16:58:03 2026 GMT
Subject: CN=733DBD832DB89E729F0D7448AF1C7F75E29CD59A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:36:7e:c5:6b:b7:67:2e:60:50:dc:ae:e0:db:
68:4a:53:26:95:9c:62:67:e0:10:89:a5:77:b1:9a:
95:76:01:86:82:1b:d2:17:fd:03:55:96:58:c0:ae:
b8:6d:dc:87:c4:ef:4f:1d:d5:3d:fa:ec:da:f8:02:
55:dd:4e:36:32:ca:fa:78:ab:99:af:a0:01:85:fd:
9a:61:dc:26:9d:10:3f:7d:85:fb:33:be:ba:50:35:
77:8d:bf:3e:99:05:c0:76:f2:c2:13:82:4e:6c:94:
89:23:81:bb:92:19:8f:32:8f:5e:03:6c:ab:f0:42:
0a:b3:b0:b1:60:a8:1f:56:99:9b:6a:de:40:f1:d3:
7f:1d:4a:a2:50:f8:1c:82:5a:c2:7e:87:ac:31:b6:
0b:50:bb:10:40:80:66:ef:c8:4b:38:88:52:13:ee:
80:2e:9d:ca:11:6b:d7:70:1a:d9:25:0c:40:d4:45:
2a:58:51:67:56:51:f9:93:f4:e4:52:2a:15:45:a3:
7e:dd:ef:62:9b:80:51:8e:83:93:70:b6:31:8b:f6:
39:a0:29:3c:32:ed:35:e1:ac:68:39:48:59:bd:da:
06:e2:ce:fa:97:87:46:44:2a:f9:4b:96:ec:8a:87:
29:55:21:bc:73:71:10:19:d4:93:47:90:ff:68:68:
10:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:3D:BD:83:2D:B8:9E:72:9F:0D:74:48:AF:1C:7F:75:E2:9C:D5:9A
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20333937363330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.119.0/24
Signature Algorithm: sha256WithRSAEncryption
18:80:84:93:22:5a:11:49:42:e2:2c:b9:a8:db:61:7a:1a:c6:
f2:0f:dc:e8:6b:7d:ef:33:81:32:53:81:1d:c1:b8:a4:e8:34:
dc:50:6d:43:1e:34:70:c6:37:0e:3e:42:47:e7:11:1a:14:85:
3a:c4:eb:c2:a1:5b:a0:7f:68:09:44:37:f8:24:bd:b0:90:99:
ae:af:ef:71:ed:04:ab:92:87:c2:92:36:40:b1:44:32:72:75:
a3:07:e1:b6:41:64:68:94:45:eb:7d:f0:0a:73:93:d8:04:d7:
37:8f:38:61:f6:c6:a6:95:0b:36:49:78:41:ea:77:f4:43:88:
ed:fa:c2:52:71:44:cf:3f:41:c4:ce:f7:75:15:00:ee:cd:45:
26:5a:b2:42:26:40:4f:8d:37:b3:6f:51:25:fa:4e:d6:33:16:
51:6e:07:b8:95:fd:32:f8:f1:b0:55:e6:28:62:29:c0:a8:67:
42:00:df:ca:e4:d4:62:82:34:63:52:f6:ea:4e:ca:d5:7e:b5:
11:b2:7f:ac:ea:19:08:96:83:4a:69:3f:34:2e:3d:da:b8:18:
63:95:4e:8e:17:80:b3:ec:bd:b5:e2:08:f2:9f:6e:c4:12:cf:
17:a2:76:ca:40:9c:75:0f:a7:3a:7a:e9:8b:13:9c:03:ef:e0:
7d:e7:88:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:41:11 2025 by rpki-client