Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32322d3234203d3e203631333137.roa
File: 38332e3135302e3231362e302f32322d3234203d3e203631333137.roa (raw, json)
Hash identifier: bA7vtpR0TyML0HjZJJdgMHPc1uK0jGA3YpWrjwZ8y+U=
Subject key identifier: B7:CF:87:BE:55:9A:BC:E4:92:99:2F:44:E8:5E:F2:72:40:60:17:07
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 62200FF1C6A7C5552F265365989CA0A49B28B4DA
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32322d3234203d3e203631333137.roa
Signing time: Thu 09 Oct 2025 17:55:08 +0000
ROA not before: Thu 09 Oct 2025 17:50:08 +0000
ROA not after: Thu 08 Oct 2026 17:55:08 +0000
asID: 61317
IP address blocks: 83.150.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:20:0f:f1:c6:a7:c5:55:2f:26:53:65:98:9c:a0:a4:9b:28:b4:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Oct 9 17:50:08 2025 GMT
Not After : Oct 8 17:55:08 2026 GMT
Subject: CN=B7CF87BE559ABCE492992F44E85EF27240601707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5f:db:c9:3f:20:ed:ea:ec:8a:d0:f5:4f:38:
52:51:e7:d6:ae:4a:86:c2:e0:54:fb:82:83:79:de:
62:6f:8d:ae:c9:23:cf:3e:47:ab:b7:7e:00:88:36:
aa:66:e1:87:ec:a1:12:0c:a6:05:28:ed:40:e2:d8:
86:e8:36:6a:34:03:aa:d5:71:e1:4b:05:f9:15:0b:
21:dc:23:8f:a1:a7:6b:60:03:ba:01:1f:e0:e6:9c:
9f:d2:03:69:86:5a:e1:9b:4b:c9:f8:46:ba:0a:c8:
b3:b5:c4:36:74:19:e2:64:49:e2:14:19:d1:d4:69:
21:aa:fd:5c:14:a0:5e:45:81:3c:29:aa:16:e2:ff:
c8:8a:e7:08:a2:ca:a3:c4:42:32:cd:a8:ba:4b:36:
2a:41:b9:08:f3:dd:07:38:2d:a5:26:8c:b6:5f:f5:
86:0e:98:a5:17:81:fc:3d:8d:5f:d1:17:83:6a:a1:
d1:4a:2c:7a:b0:12:1c:03:99:f0:f3:49:95:2f:a9:
dd:15:49:10:86:31:98:a6:12:21:4e:f7:46:05:fa:
64:bb:2c:84:78:94:e6:dc:3b:5d:3f:d3:1a:ef:a6:
42:68:67:33:f9:22:5d:c7:37:a5:a6:97:93:31:f6:
99:5d:c3:a9:23:37:8b:38:40:18:60:4b:e1:15:8e:
0f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CF:87:BE:55:9A:BC:E4:92:99:2F:44:E8:5E:F2:72:40:60:17:07
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32322d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.216.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:55:7a:0c:fe:8d:e4:e0:0f:1e:d1:66:ef:27:e4:05:67:47:
79:ac:3f:19:fc:5d:06:f7:90:9e:7c:35:59:66:45:c8:09:a7:
6d:a9:ea:ab:fd:49:a2:b3:23:26:11:1a:d3:3c:3d:ff:9d:1a:
31:af:21:29:f9:8d:77:3d:7d:53:70:e8:79:26:b2:51:37:2f:
77:24:f8:9b:1d:39:f4:68:98:c8:f6:9d:e1:62:7f:c5:f0:1d:
c4:00:44:6a:52:85:d7:be:21:dc:4c:eb:01:44:a3:ee:87:b1:
c4:a3:96:cf:fb:2f:60:dd:82:c5:1d:c7:34:e2:14:d9:71:e7:
8d:97:c4:c7:31:59:ee:fe:eb:b5:63:90:25:3b:6e:47:65:08:
42:01:51:58:d6:31:72:69:50:d4:a4:5e:dd:e1:ac:f0:94:84:
57:9c:a2:fe:c4:8c:f7:2a:a7:99:ee:ad:b2:9d:0d:08:06:c2:
40:ad:96:dc:65:43:a3:31:0c:5b:50:85:96:8d:20:54:ae:94:
53:53:6d:7d:5d:54:73:ad:c5:7c:1a:52:62:94:d3:b6:85:5e:
d6:28:e0:4a:c3:f4:24:73:af:8f:19:54:0f:5f:6a:d9:0b:ab:
21:2c:f3:cf:81:48:2d:d4:67:86:a8:78:89:2a:f9:84:0b:50:
a2:0c:66:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:56:00 2025 by rpki-client