Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e203230343733.roa
File: 3137382e3230382e3138322e302f32342d3234203d3e203230343733.roa (raw, json)
Hash identifier: iJ2VGOBGRV0UwryhI9Y6Iy2YOUu+zPMvR4JlDv9Rbgk=
Subject key identifier: CE:8C:AB:6A:00:41:4C:10:28:29:34:DB:62:D8:80:6D:8D:47:F2:D7
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 75434F378790E4174E139F588D231A656F4DF8F4
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e203230343733.roa
Signing time: Sun 04 May 2025 15:04:13 +0000
ROA not before: Sun 04 May 2025 14:59:13 +0000
ROA not after: Sun 03 May 2026 15:04:13 +0000
asID: 20473
IP address blocks: 178.208.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:43:4f:37:87:90:e4:17:4e:13:9f:58:8d:23:1a:65:6f:4d:f8:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: May 4 14:59:13 2025 GMT
Not After : May 3 15:04:13 2026 GMT
Subject: CN=CE8CAB6A00414C10282934DB62D8806D8D47F2D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:74:3b:91:f6:14:8e:88:35:64:cc:c3:79:16:
2f:4f:93:d5:99:3e:5c:f6:19:7a:b9:80:08:ee:0c:
8d:8c:c0:da:84:46:c9:ec:c0:9c:c8:f9:74:e6:dd:
8d:8a:06:7d:11:79:13:a1:d5:73:4a:1e:e9:a6:ff:
62:85:bb:ee:81:a9:69:d4:89:05:3d:8b:99:22:72:
fc:d9:db:4b:b2:9b:2a:f2:da:89:a8:8e:12:a4:5c:
12:12:9c:dd:97:ec:e5:53:44:20:09:48:aa:ab:b3:
60:6c:3e:a0:41:66:23:df:00:81:be:cc:42:da:57:
15:6f:4a:23:af:23:80:52:bb:7c:7f:d7:31:21:c8:
33:b4:92:19:b7:7c:28:8f:a9:08:9b:39:f0:82:30:
cd:de:10:e5:63:2f:c9:ab:db:9d:04:00:82:68:3e:
30:18:68:5e:be:f4:23:77:18:c2:ec:eb:e2:5d:04:
1f:63:39:d0:3c:fb:48:a9:7e:08:fe:5c:94:f1:25:
f6:b9:48:3d:1c:43:70:e7:ad:1b:5d:43:fc:fd:89:
e5:e4:98:7e:ab:5e:27:ef:e7:dd:5f:44:2a:a1:ea:
48:c0:9c:f0:4f:2f:0e:cc:fd:c4:fa:58:19:82:d4:
92:7c:de:16:f3:8d:2d:b3:0d:af:d9:cc:a8:65:a9:
c0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:8C:AB:6A:00:41:4C:10:28:29:34:DB:62:D8:80:6D:8D:47:F2:D7
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e203230343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.182.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:d9:b2:27:9f:54:b8:82:c1:54:3f:16:33:93:a5:87:6d:2c:
84:4f:fb:0a:fc:79:a6:f7:d1:32:54:ff:b0:44:6c:85:2c:74:
89:6a:2e:6d:1e:d6:9b:41:a4:f1:74:1d:27:99:7c:66:b0:e0:
24:f7:53:84:6c:89:68:e3:00:e7:8d:f3:c5:62:22:1a:e5:c4:
72:fd:d7:88:f9:49:7a:ab:27:8f:49:57:ce:8b:84:d1:6a:a6:
c8:ab:7f:4c:5c:eb:48:5f:8a:24:a9:54:44:29:1c:1d:20:8c:
a3:e8:ae:dc:70:4a:c5:94:a8:c9:4b:f1:f8:ae:18:ec:78:e2:
82:e1:49:d2:fd:f5:0a:df:26:ca:e0:69:d7:93:be:ea:ce:c8:
7a:d5:fc:fc:47:3a:f4:ef:40:ab:0b:70:47:65:a8:f1:0e:4c:
f1:66:bb:ba:2f:b8:a0:fd:b7:45:f5:36:a0:21:a2:75:23:46:
61:05:00:a3:97:78:cc:6b:b5:0f:b7:81:15:92:6c:a1:8b:21:
1a:43:ca:a8:89:73:30:46:4c:f1:00:aa:2c:04:d3:db:a9:d1:
49:4b:24:d5:b0:48:04:50:9d:d0:6e:ab:a3:3a:66:43:e2:86:
21:4a:9a:bb:26:65:0b:d8:c7:40:0d:0f:64:8b:a2:33:30:99:
12:df:64:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 06:08:31 2025 by rpki-client