Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139302e3134302e302f32342d3332203d3e203531313637.roa
File: 3138352e3139302e3134302e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: 6yBP+B6Sma3fC3rzTYrF9SLNRW4M21EuN251sBKO4TI=
Subject key identifier: 08:32:41:3F:E1:84:0B:DB:2B:61:34:5B:FE:48:96:25:5B:66:E6:13
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 27667859EBD7FC6C91A44B9C75C4F264B67C6024
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139302e3134302e302f32342d3332203d3e203531313637.roa
Signing time: Fri 22 Aug 2025 14:47:18 +0000
ROA not before: Fri 22 Aug 2025 14:42:18 +0000
ROA not after: Fri 21 Aug 2026 14:47:18 +0000
asID: 51167
IP address blocks: 185.190.140.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:66:78:59:eb:d7:fc:6c:91:a4:4b:9c:75:c4:f2:64:b6:7c:60:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Aug 22 14:42:18 2025 GMT
Not After : Aug 21 14:47:18 2026 GMT
Subject: CN=0832413FE1840BDB2B61345BFE4896255B66E613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3e:9a:5a:e9:0c:0a:ea:65:1a:79:b2:53:9b:
9e:6b:68:93:b3:39:09:09:a1:4b:23:8e:76:4b:9d:
87:71:a8:3b:8b:2b:2e:4c:ab:ce:60:e1:6f:2d:ed:
cd:20:6b:20:f5:d6:72:42:d5:71:99:34:2d:26:32:
ba:55:54:09:66:0f:b1:d2:42:13:58:5f:2a:ce:38:
8e:09:0c:d7:6e:3b:69:1f:5c:99:70:3c:fa:25:99:
df:5d:35:a7:26:eb:cd:25:f1:e3:9f:5a:94:84:a3:
d8:36:af:70:fa:30:bc:da:07:0d:ae:93:52:ce:1d:
77:47:49:e7:51:82:d4:ef:4c:2b:91:33:b0:fe:31:
ab:7a:da:0b:02:de:b4:f3:31:33:a8:95:5b:b8:e5:
37:e6:03:6e:60:7e:27:93:c7:b3:b7:4c:4b:49:2b:
5a:48:8a:54:1c:9d:a6:70:fc:65:13:a2:8f:fc:cf:
74:0c:4b:8c:2b:c0:53:50:75:0b:25:da:6a:ce:c4:
50:2b:55:2c:1f:7c:d4:8c:82:5d:c9:6d:b6:30:dc:
9a:28:72:a2:8e:82:2c:99:68:e6:24:de:c0:0a:43:
c3:b0:9a:26:64:a1:82:75:e8:96:ea:29:ff:73:c3:
c5:fb:71:f9:dc:ee:38:a3:bb:b9:9a:a1:56:bb:58:
5b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:32:41:3F:E1:84:0B:DB:2B:61:34:5B:FE:48:96:25:5B:66:E6:13
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139302e3134302e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.140.0/24
Signature Algorithm: sha256WithRSAEncryption
22:a6:d0:e3:7c:5e:f1:36:5e:b7:04:82:a4:e1:2d:0a:42:9f:
2a:7e:4a:88:7d:1d:a3:a9:bd:eb:ed:66:b1:99:f2:31:0b:8e:
b4:b1:9b:ad:d7:89:ac:b8:fc:58:e0:75:88:a9:55:7f:69:84:
80:31:14:c3:67:a9:dd:36:55:14:f8:53:e5:84:68:04:d9:3c:
de:0c:ad:03:3a:7d:07:a6:1a:55:02:24:fa:1b:6a:c5:0c:cb:
de:ca:25:aa:3e:24:f4:7b:3c:b1:6d:fb:ee:d1:de:c9:00:a3:
5b:10:62:c1:98:af:94:e8:07:31:66:25:67:a5:4e:7b:3d:5e:
ba:45:fa:b5:7d:14:43:5a:77:27:97:80:ba:88:37:05:2a:a4:
f5:1f:c8:81:47:ae:0e:6e:10:5b:ef:aa:62:39:ee:2f:d2:aa:
1d:ae:7a:d0:4b:2a:0b:c2:82:30:30:00:ef:f1:a0:11:90:80:
3a:3f:0e:cf:d0:85:6d:eb:6d:0d:cd:54:54:de:bb:a2:06:e9:
7f:dd:fb:02:bd:68:fd:57:a4:37:cf:0c:72:57:ce:e2:16:ca:
10:60:40:64:e7:47:26:ac:3b:ba:08:a4:7a:88:67:12:b9:1b:
82:87:15:93:3d:21:ee:40:07:4f:6a:e3:bb:34:0f:d9:c5:08:
e1:46:2e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:54:29 2025 by rpki-client