Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131362e302f32342d3234203d3e203630373831.roa
File: 39332e39352e3131362e302f32342d3234203d3e203630373831.roa (raw, json)
Hash identifier: wiR4lXrHDBacVR9rhY/OZ5EVnNOlMyR8f6ZVRqs7p88=
Subject key identifier: 7B:AB:EA:8E:CC:00:24:62:9D:A7:D3:89:FF:D9:5C:EF:E6:3D:FC:1F
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 7A83AFEBA72BE6D09240ED5B129225B685D0C659
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131362e302f32342d3234203d3e203630373831.roa
Signing time: Tue 30 Sep 2025 13:55:07 +0000
ROA not before: Tue 30 Sep 2025 13:50:07 +0000
ROA not after: Tue 29 Sep 2026 13:55:07 +0000
asID: 60781
IP address blocks: 93.95.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:83:af:eb:a7:2b:e6:d0:92:40:ed:5b:12:92:25:b6:85:d0:c6:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Sep 30 13:50:07 2025 GMT
Not After : Sep 29 13:55:07 2026 GMT
Subject: CN=7BABEA8ECC0024629DA7D389FFD95CEFE63DFC1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:60:07:da:34:b8:d7:12:20:ca:69:50:79:34:
40:be:8c:e5:26:47:c0:d6:62:dc:cd:a9:a3:cc:dd:
49:ef:a7:32:e0:23:2a:be:55:e4:1c:b3:6d:d6:c2:
42:24:d9:95:66:23:d3:d1:e0:21:fe:ba:d7:e5:df:
68:b8:23:08:86:36:7f:21:0b:47:9a:8c:d6:8f:d9:
fa:fa:18:82:0a:85:99:a8:d1:9d:a4:44:dd:10:cd:
86:c2:22:6b:94:33:ea:52:c9:b2:d8:da:34:50:35:
99:26:d7:28:7e:c0:50:07:fc:f4:c8:7a:85:20:c7:
c3:ae:34:be:6a:ac:03:05:2b:49:a5:9f:84:6c:a0:
af:79:da:e3:71:1d:75:45:ca:2f:3c:e6:5c:98:20:
0d:45:25:de:94:de:2b:85:99:36:11:d6:20:9e:35:
10:b3:b4:83:04:99:f3:85:39:7b:73:f0:77:dc:a4:
0c:cd:4e:6e:5e:10:0e:ab:fb:9d:4c:fb:c7:10:68:
28:d4:6c:37:6c:7b:46:73:c6:4d:1c:59:d4:dd:ee:
ed:b9:37:2b:84:3e:9d:ab:d0:5b:4d:22:b5:da:1b:
ee:50:b9:da:18:69:a4:03:4f:b1:9a:ce:d1:25:a8:
3d:01:4d:c1:f9:19:ff:53:98:38:54:a4:14:49:33:
bf:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AB:EA:8E:CC:00:24:62:9D:A7:D3:89:FF:D9:5C:EF:E6:3D:FC:1F
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131362e302f32342d3234203d3e203630373831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.116.0/24
Signature Algorithm: sha256WithRSAEncryption
94:c4:ff:bc:e0:f2:d1:a0:3e:cc:69:ba:b8:36:d8:fc:7e:21:
68:63:ea:4c:d0:09:46:74:45:e4:c2:55:ec:8e:e6:d3:09:73:
3e:ef:d2:50:09:68:88:6d:bd:51:01:04:b3:78:20:50:a3:a6:
96:f2:c0:bb:59:18:a5:6c:8d:1b:d5:25:d1:3b:67:15:33:66:
1a:95:fc:53:df:cc:74:03:31:b5:90:f0:a7:65:33:aa:df:a9:
12:18:ea:8a:cb:9b:c0:ee:3a:69:96:1f:12:c8:45:dc:82:62:
79:fe:3a:10:15:44:38:b2:69:d1:09:43:a6:e2:a8:24:2c:70:
a1:10:9d:d3:bc:1d:2c:7d:27:6e:58:6b:4f:58:cc:ee:8e:26:
9a:d5:f6:7f:aa:7b:66:96:f9:3f:e5:33:ee:18:ac:1e:e1:5d:
b1:c6:57:20:0f:af:36:12:68:e3:9a:63:9b:f1:9f:f4:6c:ec:
1d:f5:cc:21:1b:05:84:1c:9d:2f:2b:66:02:b0:61:9c:97:9c:
e4:91:ee:13:43:a5:4b:e5:96:3b:ad:3c:e4:33:ae:aa:01:4f:
90:9c:2b:34:b0:df:91:bf:37:8f:83:e1:cf:7a:4d:96:2b:32:
b5:77:ad:78:a1:1f:d6:1a:b3:64:c9:29:e6:4a:57:fd:e0:70:
02:ca:75:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:57 2025 by rpki-client