Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa
File: 3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa (raw, json)
Hash identifier: dMB17tYcnWCHjDz7p/E3hD1IpyVd5Prnm9njzu1d5og=
Subject key identifier: A6:11:F5:3B:34:1A:A6:04:C3:64:C0:F8:43:C0:54:EA:AD:5B:3A:E8
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 448D227C5E12C5B14B18902A13FA124804DECCF5
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa
Signing time: Mon 18 Aug 2025 11:54:13 +0000
ROA not before: Mon 18 Aug 2025 11:49:13 +0000
ROA not after: Mon 17 Aug 2026 11:54:13 +0000
asID: 212815
IP address blocks: 193.246.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:23:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:8d:22:7c:5e:12:c5:b1:4b:18:90:2a:13:fa:12:48:04:de:cc:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Aug 18 11:49:13 2025 GMT
Not After : Aug 17 11:54:13 2026 GMT
Subject: CN=A611F53B341AA604C364C0F843C054EAAD5B3AE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:dc:1f:3f:f8:11:da:16:c6:a2:28:70:b9:32:
d0:25:ec:d2:f5:df:9b:03:3d:62:34:0a:9f:d2:39:
5b:1a:02:c3:df:9b:e2:4b:f6:b9:9c:05:f5:d3:d1:
04:d1:23:4e:ae:c1:e9:4d:3a:ec:86:5a:90:e3:9c:
f9:35:80:f5:51:d0:33:5f:cb:7c:a8:be:01:cf:a2:
a7:a9:7b:4d:7e:33:49:88:d0:26:d6:c3:22:75:de:
f3:cc:1b:55:e8:8a:c2:c8:46:17:cf:d1:cd:e3:b9:
e9:6d:a4:03:40:8c:21:d3:99:53:c1:b3:08:80:a8:
35:a1:ee:4e:87:fd:f8:6b:42:ce:a5:cb:b8:b9:60:
da:b3:f1:5a:fd:3e:85:c4:5b:41:96:ad:eb:ac:b8:
e0:70:3f:3c:c2:b8:76:29:7c:f1:5c:eb:ae:12:12:
4d:c7:02:3f:f2:bb:32:9e:1b:17:34:86:22:af:6c:
74:03:4c:8a:4b:11:73:89:d7:d9:e2:60:6d:51:af:
c4:70:ce:9c:78:22:ea:42:77:b3:84:96:87:83:0b:
37:0f:1e:7b:8b:5c:52:50:4e:03:3a:a8:64:31:61:
29:5e:15:e5:cc:f5:a4:ca:21:80:fe:ee:31:ec:b5:
d2:5d:33:30:02:aa:b0:e9:aa:74:0a:be:4b:f2:b0:
66:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:11:F5:3B:34:1A:A6:04:C3:64:C0:F8:43:C0:54:EA:AD:5B:3A:E8
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.165.0/24
Signature Algorithm: sha256WithRSAEncryption
43:6b:18:eb:ed:4d:eb:0c:3c:9b:43:b2:79:be:d1:aa:cb:35:
a3:5c:df:b7:00:4b:41:d6:27:a4:73:44:5c:95:46:bc:33:28:
09:3c:d4:d2:6b:92:06:ed:d1:d5:5e:ce:96:ef:17:ea:65:ce:
c9:a0:0d:f4:a2:f4:d2:d0:48:7a:ad:10:7c:00:10:3d:28:2b:
b2:f0:f1:68:83:bd:66:03:98:d9:12:ad:32:ff:90:0f:3b:12:
64:9c:f7:77:97:ba:12:07:a8:f2:f9:c5:37:63:5d:9a:a4:9e:
c0:61:1c:72:9d:3c:2e:f8:d7:6c:af:cb:ab:e4:53:f0:84:f6:
4e:89:eb:02:d6:5d:72:ef:84:15:bc:0d:df:20:f7:2e:a4:b5:
b4:69:bc:a9:1d:f1:3e:e3:19:84:c6:b2:77:c1:e3:9e:77:69:
d0:67:f4:34:dc:6a:1d:05:6b:d3:4b:29:e3:7e:0c:40:cf:9e:
af:51:70:c6:e0:98:4f:d2:e3:f1:86:10:e2:ff:10:59:1e:35:
fd:0f:46:cb:e0:07:9b:3c:41:ba:64:78:5f:0c:43:32:16:50:
9f:fa:78:0a:06:4c:ef:4f:43:15:98:4b:bc:bd:38:06:2d:44:
c2:8b:9a:c6:04:9a:d6:da:fd:b4:e1:e0:f5:13:a8:94:9e:e5:
2d:d9:bc:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:13:51 2025 by rpki-client