Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3138342e302f32322d3232203d3e203230333236.roa
File: 3134352e37392e3138342e302f32322d3232203d3e203230333236.roa (raw, json)
Hash identifier: RINRRRGob9kFj4lIqkayYxl8gq80Ev1qCtC19pw+rHg=
Subject key identifier: F1:91:9C:9D:F1:39:EE:AD:D2:57:23:02:E5:CC:83:49:24:1F:66:91
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1F63D66493434F043EDF94E7AC8EBDD05E900526
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3138342e302f32322d3232203d3e203230333236.roa
Signing time: Sun 17 Aug 2025 12:22:04 +0000
ROA not before: Sun 17 Aug 2025 12:17:04 +0000
ROA not after: Sun 16 Aug 2026 12:22:04 +0000
asID: 20326
IP address blocks: 145.79.184.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:63:d6:64:93:43:4f:04:3e:df:94:e7:ac:8e:bd:d0:5e:90:05:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Aug 17 12:17:04 2025 GMT
Not After : Aug 16 12:22:04 2026 GMT
Subject: CN=F1919C9DF139EEADD2572302E5CC8349241F6691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ab:b1:7f:01:05:a9:3c:0c:5d:29:61:87:88:
87:24:1c:40:aa:1f:f3:be:25:c1:03:2d:41:44:9b:
a2:a6:c5:57:bc:41:79:94:73:0e:48:ea:ff:26:4d:
1a:29:37:62:69:b4:c4:ba:5e:d4:3a:7a:36:3f:db:
01:30:51:5e:4f:61:53:92:52:29:df:ea:5b:05:d5:
4d:d0:a6:df:26:9a:93:3c:bc:1f:10:a4:55:56:1f:
14:63:8e:9a:a0:a1:02:03:78:a9:84:5f:09:02:17:
fe:f7:32:4b:5e:77:b0:18:41:f4:6e:fc:b8:67:58:
ff:8c:11:e1:8f:fd:ff:3a:bb:42:e0:cc:27:30:ce:
db:41:55:77:8b:bb:f1:d8:8a:7b:de:77:f1:9f:62:
6c:43:95:da:ad:0f:c0:d5:53:a6:84:35:f5:05:e1:
86:d0:7f:69:d0:e6:46:b0:c7:ae:7e:bd:25:4d:48:
7b:e6:e3:f6:1a:e2:36:27:37:76:df:af:b7:ff:6d:
77:be:f7:ca:6f:ae:61:5f:66:8e:bf:23:72:df:b6:
d2:7f:cf:1d:8c:0d:a0:af:61:6e:6f:8e:5f:de:f4:
48:a2:68:f1:ab:47:ac:7a:60:37:49:95:6a:c7:7b:
70:d6:4d:59:48:92:d9:28:b4:55:06:65:50:6d:8c:
35:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:91:9C:9D:F1:39:EE:AD:D2:57:23:02:E5:CC:83:49:24:1F:66:91
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3138342e302f32322d3232203d3e203230333236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.184.0/22
Signature Algorithm: sha256WithRSAEncryption
61:cb:62:a4:da:01:3b:e3:e3:66:3e:8b:fb:a9:80:71:42:ce:
7b:01:6a:bc:0d:ba:cc:08:a8:7f:4c:1e:fa:19:51:20:b9:ae:
e4:96:1d:a3:1e:24:fb:ef:e4:5b:30:9e:8b:7a:34:cd:8f:09:
c0:b5:a9:eb:e0:5c:7c:2e:50:c2:18:61:ca:09:fa:ca:81:c4:
5c:6c:31:9e:f3:fc:58:95:ba:5d:dd:23:a8:d0:48:dc:67:a4:
f0:6e:eb:2d:1d:33:0d:9d:d9:f0:3f:37:26:c4:e3:41:04:de:
81:ef:cc:d6:9b:67:d1:2a:ab:12:02:ec:69:07:08:2a:c5:a4:
41:cc:70:2c:a0:c2:30:aa:e9:1b:79:3b:86:8c:3d:43:e7:2c:
18:54:42:77:5f:f7:83:a9:79:ad:14:9e:8c:2a:9b:b4:90:bc:
98:39:93:78:5e:14:cc:4e:df:a9:8c:40:45:57:f5:23:1b:c6:
3e:f6:a6:03:bf:d5:b2:ee:b9:44:31:ac:b1:93:5c:14:a0:cf:
00:b1:22:47:ce:e0:6a:57:7c:92:aa:7f:3d:dc:a4:fb:4a:6b:
3f:1b:6d:c0:6a:c9:fa:28:c7:ab:39:6c:0f:72:1d:06:c5:d9:
75:f7:97:71:f4:e0:d8:b9:e0:0d:3f:e1:6b:36:e4:82:ef:78:
6d:14:cd:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:43:18 2025 by rpki-client