Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
File: 38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa (raw, json)
Hash identifier: yCFgEcnTSAhMVf29HMHp04B1k4DqC3mlqJPDdmg8wFQ=
Subject key identifier: F5:F1:69:CD:15:64:99:E0:E3:CC:8C:96:72:F1:C0:C5:8F:F2:1C:73
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 45292D5CFBBCE1F1FCEDC7FDACBDD00A81B0F7FA
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
Signing time: Sun 08 Jun 2025 11:54:09 +0000
ROA not before: Sun 08 Jun 2025 11:49:09 +0000
ROA not after: Sun 07 Jun 2026 11:54:09 +0000
asID: 199415
IP address blocks: 83.150.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:29:2d:5c:fb:bc:e1:f1:fc:ed:c7:fd:ac:bd:d0:0a:81:b0:f7:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Jun 8 11:49:09 2025 GMT
Not After : Jun 7 11:54:09 2026 GMT
Subject: CN=F5F169CD156499E0E3CC8C9672F1C0C58FF21C73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:45:86:e3:d2:ec:84:b4:6e:fb:0a:88:42:f7:
de:87:d5:fd:b2:71:8c:54:c0:7f:78:94:8e:de:29:
b9:22:9a:d0:49:ae:8f:75:dc:34:b9:86:d0:ff:61:
86:4f:52:fb:c6:58:92:7e:53:98:fd:26:ac:f7:aa:
a6:e7:85:69:1c:1a:22:af:56:0a:f7:62:df:e5:75:
64:76:69:47:4c:92:11:32:25:76:03:44:40:84:ed:
9f:61:05:3c:28:1f:fa:bd:2e:cb:f7:98:70:38:8b:
d6:8b:b2:42:9c:ef:80:4d:ff:ac:4d:6a:cb:59:06:
58:06:d9:3f:dd:96:44:c6:2d:65:61:c4:4c:7c:02:
95:ab:da:b3:80:65:47:1e:cf:25:c2:d8:ca:7a:6b:
fb:f0:ce:3e:cd:ee:90:b5:c0:2d:f2:8e:91:7a:aa:
78:2a:f1:c2:90:da:93:b7:2d:88:8b:6f:54:57:fc:
f0:6e:df:80:f4:7f:33:f2:6d:83:5d:11:80:63:93:
24:95:df:be:80:90:4d:d9:12:c8:75:1d:96:02:ef:
37:30:9f:bf:c4:4a:62:d8:91:89:ec:d7:50:31:b2:
77:2b:ac:51:44:d9:99:58:9a:21:b1:4d:be:61:50:
9f:d4:cd:2c:1d:99:13:b6:b3:6f:24:d5:58:7c:13:
a5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F1:69:CD:15:64:99:E0:E3:CC:8C:96:72:F1:C0:C5:8F:F2:1C:73
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.218.0/24
Signature Algorithm: sha256WithRSAEncryption
20:e7:20:3a:67:eb:2e:b5:1e:73:d9:4e:bf:77:67:63:ec:84:
d6:20:bd:17:84:21:57:b0:e5:28:dd:3a:4d:7b:bc:b7:c8:f4:
68:d4:03:dd:6e:2e:8e:d7:79:7b:0b:ce:df:f4:c9:85:ec:36:
8e:e7:73:36:17:8d:5d:a8:3f:a2:a6:b0:68:32:09:46:b7:73:
2c:9d:95:f9:c3:84:4c:44:69:5e:18:19:8e:49:d6:0e:3e:65:
63:21:b5:e5:a5:f7:95:e6:df:d4:5a:ee:21:2c:e9:bb:fe:6d:
21:3e:83:74:74:b3:cb:00:8d:64:df:ed:73:df:79:35:32:d8:
c0:61:ec:ca:2f:4f:d0:f8:96:87:d0:a5:55:dc:62:db:55:72:
5f:81:13:2f:62:e2:9e:00:0d:c2:ea:54:ce:69:be:3f:d2:f3:
2e:a0:9c:ab:ec:16:06:00:bd:22:21:7f:94:29:2b:5d:08:09:
4a:52:4c:53:cf:b6:66:62:39:d0:33:82:f3:c6:69:d0:56:55:
bf:d3:09:8f:55:2b:5b:0c:d1:e7:93:a7:fe:0b:30:c4:54:d9:
41:b7:a1:94:fd:6f:98:8d:fa:c8:82:24:81:34:ce:e3:1b:55:
3c:90:9a:e0:8d:65:3b:71:57:b7:86:b0:21:1a:83:be:f5:3e:
8c:c7:f8:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 03:12:38 2025 by rpki-client