Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32342d3234203d3e203534323532.roa
File: 3138352e3230352e3232322e302f32342d3234203d3e203534323532.roa (raw, json)
Hash identifier: LQ/9btyYkbGrMGY8831iWg3CQZczQa9Y8xfJwvDVKXM=
Subject key identifier: 33:C7:CC:E6:54:57:70:47:4E:24:A5:5E:4F:06:FF:52:AD:49:75:32
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 564312469B6CB5881F82460D6F90FCBB7C9256B5
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32342d3234203d3e203534323532.roa
Signing time: Wed 08 Oct 2025 19:55:08 +0000
ROA not before: Wed 08 Oct 2025 19:50:08 +0000
ROA not after: Wed 07 Oct 2026 19:55:08 +0000
asID: 54252
IP address blocks: 185.205.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:08:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:43:12:46:9b:6c:b5:88:1f:82:46:0d:6f:90:fc:bb:7c:92:56:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Oct 8 19:50:08 2025 GMT
Not After : Oct 7 19:55:08 2026 GMT
Subject: CN=33C7CCE6545770474E24A55E4F06FF52AD497532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2a:c2:3c:0d:fa:50:6a:f8:20:18:ce:1a:f5:
88:7d:cd:16:0b:9c:bf:02:5c:ec:65:3b:bd:55:68:
61:08:1b:73:d2:3b:f7:aa:01:3b:be:fd:33:e8:57:
80:c3:92:b4:0a:e6:88:e8:22:01:07:c4:08:54:70:
91:ad:09:7a:51:d4:b5:9e:bf:20:c6:55:6b:04:6a:
57:24:fd:c6:74:73:0b:f6:19:ef:c0:a6:9b:77:9f:
1f:6a:23:2c:fe:26:4e:0c:86:68:3e:b4:59:a8:58:
a2:dd:8b:1c:36:50:89:ae:6f:cf:ea:a6:f8:64:3d:
fc:b3:e5:f7:bf:36:ba:ee:79:42:6c:15:9f:56:81:
ac:1a:a3:16:1b:e3:4b:97:0b:9f:39:a0:e5:8f:9a:
be:8d:06:50:11:d3:dc:b4:5f:0c:1f:16:ef:09:18:
ca:87:20:d0:c6:42:ba:fe:8c:1d:a9:99:75:dd:63:
24:1a:27:53:81:d2:c3:7c:5a:36:e6:5e:a2:de:73:
a7:14:ca:80:2a:37:f0:fe:f9:fb:ee:44:47:65:c7:
d2:a8:14:26:33:4d:2b:47:5b:fd:c4:bd:e4:c3:30:
b8:13:3c:94:00:46:1a:b8:58:4d:4a:f3:13:1e:09:
29:12:78:57:1c:47:df:97:b7:01:f8:d9:d0:66:3b:
8f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C7:CC:E6:54:57:70:47:4E:24:A5:5E:4F:06:FF:52:AD:49:75:32
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32342d3234203d3e203534323532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.222.0/24
Signature Algorithm: sha256WithRSAEncryption
58:52:7e:94:a7:2b:95:c8:9a:9c:b5:af:e2:d2:b5:68:cc:45:
fa:81:68:23:e6:df:97:44:02:b0:1a:b4:e9:c0:58:dd:61:b8:
f6:5c:76:cf:35:56:0f:92:1e:cb:4b:8c:b2:3d:c3:85:e0:e8:
21:4f:4e:82:73:f0:e9:5e:1b:6d:90:37:1a:fa:2e:35:65:7c:
37:53:50:b6:8b:85:64:d7:83:e7:f8:f6:86:1c:3c:54:bf:8d:
3b:db:c6:58:32:cb:62:68:85:99:e9:3b:e6:12:0a:f3:61:66:
5f:4f:c3:db:93:2e:17:e9:ca:60:18:3c:da:a6:d1:96:08:f0:
05:d9:2a:16:3b:4a:90:a7:aa:96:7c:98:ea:e7:6a:62:03:f3:
ea:9d:87:d8:91:c0:e7:2a:8d:05:61:96:4a:4f:12:ae:bb:20:
ce:6c:14:2b:7e:bc:ad:ce:bc:4b:a9:40:f1:a6:fe:10:b2:d9:
2e:ee:e4:2d:1a:5f:00:aa:5b:45:5d:5c:8c:66:94:69:ec:99:
54:8b:e8:f2:c4:f8:d6:e5:55:cd:3d:d9:73:a6:12:e8:7f:bf:
50:d9:cd:3f:cc:94:98:23:a8:2a:c5:df:9e:83:b3:25:f4:88:
db:a1:e4:1e:94:5f:57:10:da:67:62:0e:0c:6c:ad:4a:c4:ae:
97:0b:fc:a0
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUVkMSRptstYgfgkYNb5D8u3ySVrUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNTEwMDgxOTUwMDhaFw0yNjEwMDcxOTU1MDhaMDMxMTAvBgNV
BAMTKDMzQzdDQ0U2NTQ1NzcwNDc0RTI0QTU1RTRGMDZGRjUyQUQ0OTc1MzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAKsI8DfpQavggGM4a9Yh9zRYL
nL8CXOxlO71VaGEIG3PSO/eqATu+/TPoV4DDkrQK5ojoIgEHxAhUcJGtCXpR1LWe
vyDGVWsEalck/cZ0cwv2Ge/Appt3nx9qIyz+Jk4Mhmg+tFmoWKLdixw2UImub8/q
pvhkPfyz5fe/NrrueUJsFZ9WgawaoxYb40uXC585oOWPmr6NBlAR09y0XwwfFu8J
GMqHINDGQrr+jB2pmXXdYyQaJ1OB0sN8WjbmXqLec6cUyoAqN/D++fvuREdlx9Ko
FCYzTStHW/3EveTDMLgTPJQARhq4WE1K8xMeCSkSeFccR9+XtwH42dBmO4/ZAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUM8fM5lRXcEdOJKVeTwb/Uq1JdTIwHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzODM1MmUzMjMwMzUyZTMy
MzIzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzQzMjM1MzIucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5zd4wDQYJKoZIhvcNAQELBQADggEBAFhSfpSnK5XImpy1r+LStWjMRfqBaCPm
35dEArAatOnAWN1huPZcds81Vg+SHstLjLI9w4Xg6CFPToJz8OleG22QNxr6LjVl
fDdTULaLhWTXg+f49oYcPFS/jTvbxlgyy2JohZnpO+YSCvNhZl9Pw9uTLhfpymAY
PNqm0ZYI8AXZKhY7SpCnqpZ8mOrnamID8+qdh9iRwOcqjQVhlkpPEq67IM5sFCt+
vK3OvEupQPGm/hCy2S7u5C0aXwCqW0VdXIxmlGnsmVSL6PLE+NblVc092XOmEuh/
v1DZzT/MlJgjqCrF356DsyX0iNuh5B6UX1cQ2mdiDgxsrUrErpcL/KA=
-----END CERTIFICATE-----
Generated at Sun Oct 19 23:58:41 2025 by rpki-client