Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203530393137.roa
File: 3130392e3131302e3137352e302f32342d3234203d3e203530393137.roa (raw, json)
Hash identifier: aHf6zCyKzvT2FhZu8my/z+Erh6qR8HHY03lQ68n+D1E=
Subject key identifier: 17:64:30:3D:E4:8D:6D:D5:0F:E7:29:48:13:51:0F:1B:B8:A2:2E:CE
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 307482AA6C45F4A612AC5E6BC1B9DE56EED7BB33
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203530393137.roa
Signing time: Sun 17 Aug 2025 06:54:13 +0000
ROA not before: Sun 17 Aug 2025 06:49:13 +0000
ROA not after: Sun 16 Aug 2026 06:54:13 +0000
asID: 50917
IP address blocks: 109.110.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:23:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:74:82:aa:6c:45:f4:a6:12:ac:5e:6b:c1:b9:de:56:ee:d7:bb:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Aug 17 06:49:13 2025 GMT
Not After : Aug 16 06:54:13 2026 GMT
Subject: CN=1764303DE48D6DD50FE7294813510F1BB8A22ECE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:dd:c6:7a:5c:9b:33:ac:c5:3a:d1:54:8a:dc:
fc:69:1a:b9:de:c7:e4:74:79:21:4b:e8:a7:0a:28:
c6:04:77:fd:ee:35:ae:8b:77:e2:42:da:ec:84:6e:
94:86:50:aa:94:fe:2a:3c:23:b1:33:80:a7:13:28:
c1:6f:ac:83:33:ba:e8:d9:a8:9f:19:ee:50:68:1e:
14:97:cb:77:c1:72:57:fc:9b:c6:c7:c1:68:f3:15:
9c:6d:60:67:05:05:39:d9:88:9e:b9:65:2f:ba:81:
f9:14:21:b6:45:82:68:7b:83:1d:94:16:de:98:10:
e3:19:11:56:1f:0d:95:82:0e:2b:69:08:e1:ea:ef:
d6:e9:30:76:a4:12:a0:e6:33:da:c1:a5:d7:2b:cb:
80:5c:cc:92:51:73:82:6f:2d:10:6b:e9:93:7f:fc:
83:ef:66:39:aa:dd:06:f9:08:1d:a6:b4:8d:ec:e0:
6e:9b:4a:cc:5a:66:8b:6d:b4:f5:27:ab:cc:4b:ed:
46:f3:7a:d5:0f:d3:d8:b6:f1:05:04:2f:24:6b:de:
62:a1:5c:96:8d:04:97:c8:12:58:34:59:00:aa:87:
57:fb:43:66:5e:a4:7c:1a:47:25:29:51:cc:47:f6:
04:91:a8:4d:e0:d6:eb:81:4a:6c:6e:08:56:76:dc:
28:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:64:30:3D:E4:8D:6D:D5:0F:E7:29:48:13:51:0F:1B:B8:A2:2E:CE
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203530393137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.175.0/24
Signature Algorithm: sha256WithRSAEncryption
03:b6:05:4c:ac:e1:b4:e9:54:10:4b:cb:59:f6:67:1e:42:58:
7a:45:20:5e:75:6d:49:a3:d8:36:91:16:70:10:64:9f:f7:5e:
93:55:6a:44:53:4f:b2:0c:59:86:f4:06:76:5d:c5:fb:c9:5c:
9b:81:b8:6e:0a:dc:c3:cf:16:e3:4c:49:21:6b:67:93:38:54:
85:8c:11:70:d1:3d:be:54:ee:88:b3:5a:1a:56:67:7d:62:13:
71:df:22:c1:ce:f9:0b:19:df:ff:c2:53:ac:74:02:b4:b0:6a:
d9:20:4e:c9:9e:70:e0:3e:de:5b:aa:b1:cf:e8:05:e4:f0:b0:
fa:4b:8e:ea:bf:26:6d:91:01:27:ee:df:0b:95:08:4f:59:7a:
88:71:d2:d8:ab:0b:86:84:f4:c5:7d:2c:74:84:c6:09:63:21:
4e:67:c5:ed:a7:21:1d:55:f0:3e:94:03:50:29:45:dc:7e:dd:
9e:b2:84:71:bb:94:ef:26:fa:1b:ac:63:59:5c:1c:4c:47:cb:
20:09:04:c6:ea:92:86:d8:52:55:29:65:de:5f:4d:69:c0:f8:
7d:67:74:d8:f9:ba:53:01:ce:0b:9e:a4:9a:97:39:0a:ae:9b:
63:a1:73:f1:f7:fc:9e:cc:62:59:48:0d:c6:af:21:50:89:ac:
ca:67:3a:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:14:20 2025 by rpki-client