Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e2037303138.roa
File: 3138352e3232322e3138362e302f32332d3234203d3e2037303138.roa (raw, json)
Hash identifier: 1sCituXxyzBbHM0DSZ/PNMrkoe6VAvmoCYH0yWXLT3k=
Subject key identifier: 30:04:CA:81:41:CD:88:B2:EE:95:3E:7E:68:B6:97:48:74:DD:93:68
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 131EC592530107794AFE8616A6FAF94997697A3D
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e2037303138.roa
Signing time: Thu 11 Sep 2025 14:55:07 +0000
ROA not before: Thu 11 Sep 2025 14:50:07 +0000
ROA not after: Thu 10 Sep 2026 14:55:07 +0000
asID: 7018
IP address blocks: 185.222.186.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:08:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:1e:c5:92:53:01:07:79:4a:fe:86:16:a6:fa:f9:49:97:69:7a:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Sep 11 14:50:07 2025 GMT
Not After : Sep 10 14:55:07 2026 GMT
Subject: CN=3004CA8141CD88B2EE953E7E68B6974874DD9368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b6:a1:19:a2:0b:8c:69:1b:a8:aa:1f:ef:f2:
a6:51:54:ec:d8:06:bf:af:d1:19:be:1d:e5:09:dd:
b3:4a:b7:0f:b3:4b:29:6c:67:b9:92:70:20:26:9c:
94:c6:75:c7:4e:3f:90:33:6b:f6:54:69:60:92:9e:
df:bc:26:01:66:98:7b:15:fe:c4:77:7b:a7:a1:3d:
05:8b:93:01:13:1f:de:18:95:4a:f9:cc:1d:55:e6:
46:0f:43:79:ac:8a:fd:72:e3:ad:36:8d:7d:5e:96:
49:1b:e1:f1:ac:05:f2:61:e6:ab:a4:47:9b:29:53:
b7:6f:6f:7e:d5:74:e8:b8:cc:e5:12:f2:73:ff:02:
8d:61:19:c2:7c:67:dd:08:3f:99:32:f0:26:12:eb:
72:a1:8b:fa:c5:17:3b:23:1d:12:2f:12:d0:97:5f:
d5:55:9d:c1:16:de:f7:fa:50:2a:2f:b4:f0:76:49:
d5:ea:07:d4:00:11:74:9a:92:35:84:64:f2:da:8a:
ab:bc:ac:bb:95:06:b3:f3:98:dd:59:5a:66:7e:49:
63:c7:7d:49:38:e2:53:28:b7:43:39:ef:4b:18:82:
3c:8f:91:14:b8:7b:28:6f:67:f0:66:a1:ff:ec:99:
85:49:84:29:d0:bc:b4:86:e9:8b:80:69:d4:d4:58:
99:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:04:CA:81:41:CD:88:B2:EE:95:3E:7E:68:B6:97:48:74:DD:93:68
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.186.0/23
Signature Algorithm: sha256WithRSAEncryption
50:9f:c6:c0:2f:ba:31:a1:4f:b1:23:f8:9b:47:67:3f:40:ab:
cd:bc:c7:8b:14:c2:4f:1f:34:1d:15:bc:86:b8:5e:55:be:a0:
30:9a:80:0c:ac:12:73:fb:6c:7c:cc:6f:d4:f2:16:c6:23:0c:
09:22:20:75:f0:06:9c:d4:16:d1:cd:ae:1e:f0:01:b9:8c:23:
95:eb:05:19:76:d8:ab:97:ae:36:6c:e0:43:a1:e3:2d:79:9a:
a7:d9:d3:b5:4a:fc:80:8e:c5:94:29:09:94:e7:44:08:cc:75:
b2:dd:ee:03:9d:ab:04:2a:47:b2:c6:43:4b:9d:20:7f:97:f6:
78:ba:b3:a5:62:fd:62:bc:17:6c:01:88:ef:18:4c:a6:6d:d3:
50:33:b5:86:a9:dd:cb:07:09:60:63:20:94:79:e8:24:e9:9a:
67:84:34:a6:71:60:be:65:dd:25:c1:62:5f:b9:57:e6:0c:2e:
91:7e:a3:c9:06:5d:bc:d6:8e:56:42:ad:3a:84:e0:4a:54:b9:
c3:a8:35:af:d0:2d:3a:a2:27:8c:42:fc:9f:ca:f3:39:91:ae:
03:66:48:8b:98:19:ae:11:70:2a:14:aa:73:de:83:a6:d8:ce:
55:91:d5:3d:80:56:ee:7d:f8:80:c1:82:05:14:58:5c:81:b5:
d6:c2:2b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:05:03 2025 by rpki-client