Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137342e302f32342d3234203d3e20313939303538.roa
File: 36322e3139322e3137342e302f32342d3234203d3e20313939303538.roa (raw, json)
Hash identifier: 7SPDhEMWd1gl2XtQJzxrngcOVdYu9T7eD0t4enh6w+8=
Subject key identifier: DE:0D:A1:21:6E:89:38:A6:84:CF:0F:F0:E3:1D:F5:A4:26:DE:C3:1F
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 067BCA5554D73CCD076620373352D278C19BB29A
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137342e302f32342d3234203d3e20313939303538.roa
Signing time: Thu 07 Aug 2025 07:54:13 +0000
ROA not before: Thu 07 Aug 2025 07:49:13 +0000
ROA not after: Thu 06 Aug 2026 07:54:13 +0000
asID: 199058
IP address blocks: 62.192.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 06:17:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:7b:ca:55:54:d7:3c:cd:07:66:20:37:33:52:d2:78:c1:9b:b2:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Aug 7 07:49:13 2025 GMT
Not After : Aug 6 07:54:13 2026 GMT
Subject: CN=DE0DA1216E8938A684CF0FF0E31DF5A426DEC31F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:98:c3:e4:25:db:4a:28:51:f8:ad:6a:45:4c:
fa:74:3c:66:16:e8:3f:9f:d0:33:d0:e9:5f:9d:32:
0d:0b:43:02:eb:47:5c:4f:b0:a1:1a:25:2f:f0:59:
ce:38:c9:f7:92:6d:2d:64:0b:9e:9c:26:18:eb:70:
0f:6a:66:e9:22:d9:fd:a3:7a:cc:db:ab:e5:7b:32:
fd:a6:63:e0:0d:04:05:a6:d0:24:64:bd:69:a2:f5:
33:bc:37:eb:2f:a8:90:fd:03:e9:ce:2f:72:7d:fe:
2a:c3:54:86:61:4f:a5:6e:b7:48:af:7c:86:79:dd:
ed:50:82:99:cc:b2:d1:56:26:b1:d2:bb:98:6c:05:
40:9a:30:2e:f3:b2:34:73:7e:5a:35:ba:b4:74:8c:
d0:ce:b3:3e:41:8d:89:fa:30:85:18:34:31:26:1a:
9b:99:4e:03:9c:5b:0f:43:3b:8c:1a:45:99:9a:5b:
03:31:43:e3:24:5c:84:c4:c2:92:56:77:7c:d1:9a:
24:8c:02:bc:de:45:e3:07:f9:3b:f9:3c:98:45:b0:
6f:a1:da:39:2f:77:27:38:9c:28:19:08:f9:ba:55:
ca:bb:39:e1:f2:c0:b5:0f:c3:a9:43:95:7e:b0:c5:
3a:e6:8f:e6:82:ca:27:71:da:2e:6c:17:80:c8:fc:
07:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:0D:A1:21:6E:89:38:A6:84:CF:0F:F0:E3:1D:F5:A4:26:DE:C3:1F
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137342e302f32342d3234203d3e20313939303538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.174.0/24
Signature Algorithm: sha256WithRSAEncryption
36:fe:12:bc:53:61:f9:96:93:6f:a6:e4:6a:b4:02:44:5a:60:
a7:18:12:01:cf:06:33:dc:89:8f:63:88:f4:69:b2:e5:3a:44:
8f:8c:91:3a:cd:ca:42:0c:0d:69:a9:33:21:d1:8d:67:87:94:
89:33:0b:7c:91:74:54:93:75:13:59:d8:02:34:9b:b7:ff:89:
7d:c5:c6:02:e8:9d:ba:c7:f0:09:c5:08:c1:9e:76:d6:e9:c1:
b7:5b:74:34:f6:41:2a:61:8e:4e:f9:e4:2f:db:5b:00:95:c9:
b4:95:c4:5a:76:a7:6f:f8:20:35:0c:3b:aa:68:7e:af:82:5e:
21:dc:cd:91:e1:e2:c4:74:e6:d1:e9:c3:99:79:3b:9f:d3:30:
61:bc:ed:61:ea:27:d6:19:b8:f1:c3:7e:aa:7e:62:3c:75:be:
c1:eb:26:9e:35:df:84:02:3b:85:6a:6c:c3:01:94:84:4f:11:
8c:79:e2:e6:14:9a:d3:bd:4f:75:b1:c1:56:f0:cd:4d:02:c6:
6a:82:59:6a:15:6a:9c:b2:3a:5e:a4:4f:e7:6b:b9:c7:12:ec:
6c:e5:f3:ac:dd:30:42:f8:6d:6b:ee:2a:53:2d:75:1b:16:fd:
5b:b7:47:c7:c4:3f:f3:ce:6a:94:da:40:50:e5:d7:6b:54:81:
c2:47:65:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:35:09 2025 by rpki-client