Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233332e302f32342d3234203d3e203233383635.roa
File: 34362e3130322e3233332e302f32342d3234203d3e203233383635.roa (raw, json)
Hash identifier: e+SnYwDfi/1yFie63JthDdkoXVxOgCTXFxhh6sC9If8=
Subject key identifier: 75:48:FB:B4:A8:26:74:78:3D:73:CC:80:23:4D:CE:F3:2F:11:37:4C
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 35673307BCEE0B31D06582285CDEB066D5200F32
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233332e302f32342d3234203d3e203233383635.roa
Signing time: Tue 14 Oct 2025 05:13:32 +0000
ROA not before: Tue 14 Oct 2025 05:08:32 +0000
ROA not after: Tue 13 Oct 2026 05:13:32 +0000
asID: 23865
IP address blocks: 46.102.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:67:33:07:bc:ee:0b:31:d0:65:82:28:5c:de:b0:66:d5:20:0f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Oct 14 05:08:32 2025 GMT
Not After : Oct 13 05:13:32 2026 GMT
Subject: CN=7548FBB4A82674783D73CC80234DCEF32F11374C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b2:6c:0d:d3:74:09:1a:b4:e0:b2:bb:76:b4:
a7:da:7c:1d:69:2d:99:56:0e:38:8e:0e:a1:1f:fc:
aa:0b:fe:9c:e3:eb:2d:b7:df:cd:7f:39:1b:dc:3f:
80:44:68:a1:d2:7b:cc:9e:38:9b:13:04:53:09:e3:
21:f9:e6:2c:e3:b5:82:e7:1c:67:fb:c8:e6:b5:e9:
49:0a:5e:2c:b9:6e:5f:79:55:00:67:18:63:df:ee:
5f:e8:6f:ce:d3:8a:6f:4e:de:dd:8d:6b:20:57:ff:
96:5e:b6:3d:6d:5d:fa:dc:8d:31:d0:80:4b:c3:3c:
32:fc:e5:63:66:15:53:c4:26:3a:ab:8f:a8:c4:a0:
f6:2a:03:59:3b:cf:09:cb:87:0e:3c:51:92:b5:44:
68:76:a1:d2:0b:02:2d:16:5c:9e:69:77:3b:0f:b1:
66:04:d4:d0:e3:8f:9b:a4:78:b2:6d:f6:de:b8:3d:
76:f9:84:51:b5:fa:81:e4:db:92:87:f4:a4:df:5b:
f2:d8:32:98:db:9f:fa:36:2a:18:20:9d:c3:9a:0f:
78:04:24:96:20:b1:98:74:13:32:4e:c4:a2:00:6a:
3b:24:9a:aa:64:97:71:f6:1c:3c:f9:1c:db:6c:63:
00:e4:e0:cd:5e:33:9e:02:23:3c:39:9e:96:3f:99:
8f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:48:FB:B4:A8:26:74:78:3D:73:CC:80:23:4D:CE:F3:2F:11:37:4C
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233332e302f32342d3234203d3e203233383635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.233.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:4c:cf:95:05:39:a6:c2:4b:48:7a:0e:92:7c:fd:36:f5:ff:
d6:4f:fd:c0:db:de:8f:5b:ae:11:d8:61:9e:f7:15:be:74:5a:
9d:1e:c4:97:2b:e2:6e:77:a1:3a:72:d1:5e:2d:12:b7:e1:fe:
f6:87:e1:88:e8:34:6f:76:fb:a1:10:d9:54:c1:75:ad:1d:db:
12:43:5a:f3:a0:c1:64:60:c7:b3:2c:b4:75:ca:96:9c:8d:19:
ed:96:f6:68:4a:18:68:83:0c:cc:46:1d:c4:70:39:65:9d:38:
97:55:19:3d:a5:88:53:5c:0e:67:a4:ea:14:ab:86:ac:6c:cd:
38:08:7d:ab:6a:ef:72:45:66:9a:7f:c2:3a:ab:ad:5b:c3:e0:
f9:e1:1c:b2:d1:50:53:75:d0:55:e6:c8:04:66:5e:8d:c2:14:
0f:78:59:d6:9c:b7:80:4a:96:70:79:98:88:ef:cd:5b:fb:39:
1a:f0:69:28:47:5d:9f:ff:90:85:42:20:2c:ab:2e:e2:02:6a:
e9:18:d3:76:4d:41:c7:41:21:75:64:60:81:d6:db:13:0f:d7:
c2:f8:06:d4:c4:48:74:f4:5d:5b:03:e7:59:86:47:7c:8a:5c:
f2:2f:3c:44:cd:aa:fc:d0:e1:8e:91:72:15:c9:b7:42:5c:98:
b3:9d:27:26
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUNWczB7zuCzHQZYIoXN6wZtUgDzIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZWQ5ZWRiMmExNTg3MTc4NWZiYWUzOGUyM2MzODgyMGRi
ZmEyY2NhNDAeFw0yNTEwMTQwNTA4MzJaFw0yNjEwMTMwNTEzMzJaMDMxMTAvBgNV
BAMTKDc1NDhGQkI0QTgyNjc0NzgzRDczQ0M4MDIzNERDRUYzMkYxMTM3NEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQsmwN03QJGrTgsrt2tKfafB1p
LZlWDjiODqEf/KoL/pzj6y23381/ORvcP4BEaKHSe8yeOJsTBFMJ4yH55izjtYLn
HGf7yOa16UkKXiy5bl95VQBnGGPf7l/ob87Tim9O3t2NayBX/5Zetj1tXfrcjTHQ
gEvDPDL85WNmFVPEJjqrj6jEoPYqA1k7zwnLhw48UZK1RGh2odILAi0WXJ5pdzsP
sWYE1NDjj5ukeLJt9t64PXb5hFG1+oHk25KH9KTfW/LYMpjbn/o2KhggncOaD3gE
JJYgsZh0EzJOxKIAajskmqpkl3H2HDz5HNtsYwDk4M1eM54CIzw5npY/mY9XAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUdUj7tKgmdHg9c8yAI03O8y8RN0wwHwYDVR0j
BBgwFoAU7Z7bKhWHF4X7rjjiPDiCDb+izKQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZWEwZGU5N2YtN2VlOC00Y2UwLWIwNDUtZWZhYzhjMjQz
Yzc5LzAvRUQ5RURCMkExNTg3MTc4NUZCQUUzOEUyM0MzODgyMERCRkEyQ0NBNC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdaN2JLaFdIRjRYN3JqamlQRGlDRGIt
aXpLUS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZWEwZGU5N2Yt
N2VlOC00Y2UwLWIwNDUtZWZhYzhjMjQzYzc5LzAvMzQzNjJlMzEzMDMyMmUzMjMz
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMzMzgzNjM1LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
LmbpMA0GCSqGSIb3DQEBCwUAA4IBAQB8TM+VBTmmwktIeg6SfP029f/WT/3A296P
W64R2GGe9xW+dFqdHsSXK+Jud6E6ctFeLRK34f72h+GI6DRvdvuhENlUwXWtHdsS
Q1rzoMFkYMezLLR1ypacjRntlvZoShhogwzMRh3EcDllnTiXVRk9pYhTXA5npOoU
q4asbM04CH2rau9yRWaaf8I6q61bw+D54Ryy0VBTddBV5sgEZl6NwhQPeFnWnLeA
SpZweZiI781b+zka8GkoR12f/5CFQiAsqy7iAmrpGNN2TUHHQSF1ZGCB1tsTD9fC
+AbUxEh09F1bA+dZhkd8ilzyLzxEzar80OGOkXIVybdCXJiznScm
-----END CERTIFICATE-----
Generated at Mon Oct 20 07:45:10 2025 by rpki-client