Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS197715.roa
File: AS197715.roa (raw, json)
Hash identifier: Y3tdZ2zdMo13qzkIo8DCFUifeZZ1KxfnvYlnfTQEA+I=
Subject key identifier: 89:09:55:86:9B:1E:EB:6C:27:53:56:05:D2:6A:19:78:D9:0A:F9:F5
Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Certificate serial: 3CC389F75BCE7E5D5264E75753E0EF4B62308E1E
Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS197715.roa
Signing time: Sun 29 Jun 2025 15:25:03 +0000
ROA not before: Sun 29 Jun 2025 15:20:03 +0000
ROA not after: Sun 28 Jun 2026 15:25:03 +0000
asID: 197715
IP address blocks: 193.38.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft
rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 16:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:c3:89:f7:5b:ce:7e:5d:52:64:e7:57:53:e0:ef:4b:62:30:8e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Validity
Not Before: Jun 29 15:20:03 2025 GMT
Not After : Jun 28 15:25:03 2026 GMT
Subject: CN=890955869B1EEB6C27535605D26A1978D90AF9F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:40:53:4b:a5:86:1a:be:e8:1d:95:0f:7c:79:
3d:3c:53:16:b6:78:6e:96:00:92:69:60:e7:80:87:
28:9d:ce:60:fc:b2:1f:78:ff:4e:0e:78:1e:80:19:
de:53:59:12:f8:3a:ff:f1:ba:a6:e7:1d:15:76:2c:
b2:eb:52:15:78:49:42:17:d9:5d:b1:1a:5e:01:dd:
7e:f3:62:2a:8a:99:23:97:fd:45:31:c5:11:86:28:
b9:50:9c:82:57:16:82:94:80:07:a9:0d:c4:ac:6d:
09:6b:4f:27:52:26:d9:e3:18:e9:aa:79:d3:6e:d6:
fd:5e:fb:36:04:91:34:d5:73:8e:8a:19:ff:ac:51:
01:be:33:6b:7c:df:3e:4e:7c:50:3e:c0:9e:15:54:
bc:2c:04:4e:2e:50:24:1e:cb:ef:5d:75:21:c2:0b:
c2:bb:d6:3f:b0:a1:01:c1:c6:7e:cd:c3:9a:3b:10:
10:3f:12:f1:0f:f6:b0:75:46:d7:37:8d:b4:d0:b5:
9b:b4:c5:74:1c:87:58:ba:f6:e1:8d:d7:0a:97:21:
a4:ea:db:de:f7:42:b7:79:17:82:7f:83:e6:19:8a:
70:1d:90:a5:71:0d:77:81:85:57:49:82:09:fd:3c:
7f:58:66:38:80:c4:ad:6d:8e:5c:01:b0:27:74:87:
e3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:09:55:86:9B:1E:EB:6C:27:53:56:05:D2:6A:19:78:D9:0A:F9:F5
X509v3 Authority Key Identifier:
keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS197715.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.46.0/24
Signature Algorithm: sha256WithRSAEncryption
27:08:58:4d:92:70:b9:9f:93:56:1e:98:9c:1a:25:9a:75:c1:
47:93:00:e9:25:61:a1:62:ac:7f:42:88:90:d9:68:ea:eb:75:
6c:4b:6b:31:9d:b7:ec:1d:f6:d2:f2:cb:57:21:d5:d5:49:13:
bb:6f:a2:50:88:92:c2:b9:59:6d:a1:fa:47:34:6f:07:84:c8:
54:6a:6c:be:e2:b4:e7:6d:27:98:f3:78:1b:68:88:6c:d9:05:
7f:26:59:7d:db:d7:2a:ac:5a:5b:29:fe:45:84:27:72:35:03:
9b:1f:4a:24:ba:d2:d7:67:2b:7a:06:58:49:ac:17:2a:dd:65:
49:47:be:f5:90:9d:30:15:2d:b7:a3:10:fa:0c:13:e3:9d:7d:
93:6e:b5:b9:5c:b8:05:8d:fa:56:90:a1:ae:65:50:b6:ad:55:
de:1e:31:34:e1:5e:fa:74:dd:a7:c2:a1:67:e0:3b:7c:29:29:
cb:9b:7b:c9:7d:b4:05:4a:19:9c:69:56:c5:fb:e1:53:81:a6:
3f:b5:c8:1b:74:33:2d:44:1a:54:0d:97:69:03:91:61:48:35:
e4:a6:36:40:76:1d:18:e9:2e:01:50:05:ca:e1:92:5f:1b:a1:
00:1f:c2:fd:2a:df:53:cd:9d:9d:92:c3:7a:4f:66:39:ee:24:
a2:ad:8b:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 00:38:08 2025 by rpki-client