Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31322e302f32342d3234203d3e20313336353537.roa
File: 34352e3132382e31322e302f32342d3234203d3e20313336353537.roa (raw, json)
Hash identifier: Og0W7TwDKg18gSOzRskc5OEF19lsnNis615D+7M7BhY=
Subject key identifier: 2C:31:43:0E:98:A9:95:E4:3B:76:4F:97:F7:2C:F2:AD:22:04:29:47
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 1C34F60C2C0FB699464D20C454A881CDCE71F1AD
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31322e302f32342d3234203d3e20313336353537.roa
Signing time: Thu 28 Aug 2025 09:54:58 +0000
ROA not before: Thu 28 Aug 2025 09:49:58 +0000
ROA not after: Thu 27 Aug 2026 09:54:58 +0000
asID: 136557
IP address blocks: 45.128.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 14:58:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:34:f6:0c:2c:0f:b6:99:46:4d:20:c4:54:a8:81:cd:ce:71:f1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Aug 28 09:49:58 2025 GMT
Not After : Aug 27 09:54:58 2026 GMT
Subject: CN=2C31430E98A995E43B764F97F72CF2AD22042947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:17:4a:1e:07:ef:24:d1:61:31:db:b0:fd:17:
3d:d3:ab:cd:30:e1:87:af:b7:0a:6b:e4:f3:99:2c:
eb:47:a7:7e:88:c0:38:54:7f:d4:3f:10:71:a7:56:
73:c6:27:d4:e6:7d:1c:98:42:28:ec:62:5e:11:65:
7a:c4:ca:a1:f1:ad:da:9f:13:82:9d:5d:74:58:09:
fb:4d:70:17:1b:f6:53:42:4c:24:f2:8a:c5:aa:6c:
99:1a:26:95:b8:a4:b1:a9:1a:2c:c3:d3:58:f4:53:
3b:c2:52:5f:e9:11:c9:f3:05:3b:5d:9b:dd:51:df:
2c:d2:b4:8b:05:da:88:5a:0a:c3:bb:fd:b2:99:12:
9a:2f:49:ab:18:91:c5:50:cf:6a:47:42:be:7c:cd:
61:75:3c:72:cf:9e:f8:3f:c9:dc:95:81:a4:54:c2:
48:ce:24:35:18:13:39:bc:34:3a:f2:26:75:6d:79:
11:65:37:98:40:8d:96:57:00:85:82:e8:8a:45:5e:
be:74:c7:ff:02:f8:81:d8:4b:7a:38:6a:68:ed:af:
a6:0f:f7:76:9a:7d:7a:2d:26:fe:18:2d:28:7d:37:
1b:f9:c8:1d:d8:fd:4c:95:cd:b3:50:38:d0:63:8e:
ab:c2:c2:a3:e3:47:76:a7:40:ba:e9:3b:00:80:69:
19:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:31:43:0E:98:A9:95:E4:3B:76:4F:97:F7:2C:F2:AD:22:04:29:47
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31322e302f32342d3234203d3e20313336353537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.12.0/24
Signature Algorithm: sha256WithRSAEncryption
80:eb:49:a6:5f:65:80:88:39:d4:dd:1d:e1:79:65:9e:c2:7e:
47:33:99:09:a2:d0:2e:1f:27:0b:53:91:a2:22:fd:5f:e3:32:
ce:38:a3:ba:e7:50:c7:d0:62:3f:fc:85:c2:28:f3:c8:d6:89:
c8:8a:da:a6:bd:ea:a1:a7:6c:b1:8c:35:ca:77:cc:4a:e1:fb:
ba:50:fd:b3:cf:56:6e:f9:95:f8:ba:62:61:b9:f2:10:bf:4e:
c3:b3:b5:70:f4:b3:91:97:e5:35:5e:a9:fd:82:51:cb:87:0e:
51:a5:25:8f:46:1c:68:26:90:3d:4f:9d:5b:a0:fc:22:9d:b0:
95:35:e9:2d:cf:d3:68:f7:1d:7f:7d:6c:84:04:76:fc:74:8b:
56:77:d7:76:7b:b8:c5:b2:bb:b3:02:6f:c0:27:cb:25:ae:f7:
f8:06:fb:9f:9e:2f:82:dc:dc:d2:6a:ba:1b:d8:87:93:98:b2:
ec:da:2d:cb:ad:a7:2f:16:63:46:b2:15:fe:e4:25:b7:60:d5:
3d:4d:86:50:c7:e7:da:26:61:0b:60:3d:85:8a:4e:28:ac:4c:
f0:0b:f7:9f:1e:a4:ea:91:c8:f2:50:33:e7:45:4f:62:e4:47:
3e:9d:6a:b7:42:b6:27:70:0f:2b:4b:da:9f:02:9c:e2:32:c3:
be:e7:ef:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:01:43 2025 by rpki-client