Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130322e302f32342d3234203d3e203630373831.roa
File: 3139332e3234362e3130322e302f32342d3234203d3e203630373831.roa (raw, json)
Hash identifier: 9YIjshhRHJCTBV0dIP18GlVU8/qr9siO7bVSgJFYoAw=
Subject key identifier: F2:48:DB:1B:FB:E9:DC:F4:74:1A:B7:69:C3:38:5A:07:DF:2D:12:B4
Certificate issuer: /CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Certificate serial: 2CE672365CC42FAC4F064203C3F6E2D9B2F10CD2
Authority key identifier: C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130322e302f32342d3234203d3e203630373831.roa
Signing time: Fri 17 Oct 2025 12:55:08 +0000
ROA not before: Fri 17 Oct 2025 12:50:08 +0000
ROA not after: Fri 16 Oct 2026 12:55:08 +0000
asID: 60781
IP address blocks: 193.246.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.mft
rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 01:49:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:e6:72:36:5c:c4:2f:ac:4f:06:42:03:c3:f6:e2:d9:b2:f1:0c:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Validity
Not Before: Oct 17 12:50:08 2025 GMT
Not After : Oct 16 12:55:08 2026 GMT
Subject: CN=F248DB1BFBE9DCF4741AB769C3385A07DF2D12B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2d:fb:0a:43:e1:b8:1d:41:91:dc:58:77:4b:
f7:89:6f:c7:56:af:d5:85:a4:80:84:7a:2c:41:67:
eb:50:15:f8:e8:31:79:ae:bb:70:5e:11:47:ee:cd:
d8:a1:73:26:2d:df:f4:bc:64:56:f2:8c:2f:9c:9f:
c0:97:61:f7:b1:10:c9:89:6a:c7:60:19:81:26:85:
2f:73:18:33:f4:4b:9e:0c:0b:e6:7d:cd:39:fa:46:
cc:27:69:c2:90:79:54:34:2f:ff:86:b7:0a:64:fb:
5c:3f:c2:96:b6:32:3d:4a:d8:25:40:bb:31:ce:32:
99:61:9a:e3:23:ad:b5:85:33:c4:62:b8:6f:6c:e7:
d9:1e:b4:ca:1e:9b:7c:57:de:80:e7:05:75:ec:e4:
fc:23:53:0e:dd:a4:cc:8f:4e:3e:49:2b:5a:6e:5e:
58:7c:b2:f8:72:a9:31:8f:62:d1:f8:c1:70:39:2b:
e7:85:07:50:7e:81:20:58:5d:f8:2f:fb:a7:0e:c1:
63:8c:18:f6:e5:80:ad:41:5d:ae:af:71:59:4a:00:
35:88:2a:25:dc:ff:33:ea:4f:74:94:0f:27:3d:e7:
9f:88:af:6e:33:47:16:2b:c8:b5:d3:7e:4c:e4:24:
35:b7:ec:b8:6a:5e:22:e7:99:59:c7:d0:62:6c:a4:
bf:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:48:DB:1B:FB:E9:DC:F4:74:1A:B7:69:C3:38:5A:07:DF:2D:12:B4
X509v3 Authority Key Identifier:
keyid:C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130322e302f32342d3234203d3e203630373831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.102.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:2f:47:29:c1:60:a4:81:8e:98:e9:3a:19:0e:f6:1d:e0:c3:
4e:75:39:86:4f:21:ba:0f:90:5c:06:ec:11:15:9c:7d:cc:6b:
e4:75:1f:1d:c0:44:36:3c:e2:85:c9:d7:c7:db:6b:1e:a4:34:
13:ee:19:9d:86:8a:24:3a:ff:6b:1d:a1:9c:ce:0f:29:83:17:
33:c5:c1:da:12:8d:33:c8:46:eb:66:68:01:c7:9a:d6:52:da:
2c:7c:3a:27:c5:d4:46:9e:d7:03:84:0f:1c:e7:78:90:6c:f2:
ed:2c:b0:ab:df:2d:b6:0f:62:22:db:b6:4d:6a:ee:5d:f6:0f:
4e:2b:1e:28:0e:b6:7a:f8:13:c3:63:a6:8a:91:33:4b:d0:b4:
bb:29:25:b9:10:b8:f5:bc:ca:5f:4e:80:ec:bb:4c:16:a4:fc:
6d:94:71:3e:38:1c:ab:62:8d:9b:cd:7c:83:cb:52:4f:35:64:
2e:60:35:04:ed:22:a5:f3:a5:ae:5b:e6:d2:f1:e5:1c:a4:fa:
bc:53:08:84:cc:b6:fe:1c:45:64:00:8c:a5:0c:e8:3e:01:e3:
81:a2:e0:ff:60:0e:cb:ea:b4:85:8f:98:fd:1a:a9:ed:7f:23:
65:62:fa:d3:39:9a:18:70:71:aa:bb:ed:c6:dd:25:5e:84:f9:
f9:20:9c:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:26:12 2025 by rpki-client