Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3137382e3133322e3139332e302f32342d3234203d3e2035303635.roa
File: 3137382e3133322e3139332e302f32342d3234203d3e2035303635.roa (raw, json)
Hash identifier: By8mvurmjlAnp9WfoOey8QgJAgL8b092fmLqJit2ilQ=
Subject key identifier: F2:AD:F0:87:F6:74:0F:49:22:CD:F5:3C:BC:5A:FD:7C:97:3E:01:AD
Certificate issuer: /CN=f768ff6e681858c0ec19f3a93fa1792cd16ceed3
Certificate serial: 3884DDEF54A179FF61C202A274040C8405088E02
Authority key identifier: F7:68:FF:6E:68:18:58:C0:EC:19:F3:A9:3F:A1:79:2C:D1:6C:EE:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3137382e3133322e3139332e302f32342d3234203d3e2035303635.roa
Signing time: Sat 29 Mar 2025 12:08:25 +0000
ROA not before: Sat 29 Mar 2025 12:03:25 +0000
ROA not after: Sat 28 Mar 2026 12:08:25 +0000
asID: 5065
IP address blocks: 178.132.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.crl
rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.mft
rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 14:22:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:84:dd:ef:54:a1:79:ff:61:c2:02:a2:74:04:0c:84:05:08:8e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f768ff6e681858c0ec19f3a93fa1792cd16ceed3
Validity
Not Before: Mar 29 12:03:25 2025 GMT
Not After : Mar 28 12:08:25 2026 GMT
Subject: CN=F2ADF087F6740F4922CDF53CBC5AFD7C973E01AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cd:37:5b:6b:7d:8c:af:37:db:a4:8f:77:86:
c1:61:09:df:c4:5e:41:01:07:2b:d6:ea:a9:08:c7:
c4:76:d3:16:c8:6a:c9:8c:31:09:40:6d:70:51:89:
fd:58:82:1c:f9:33:8b:4e:01:ff:01:ca:42:b9:8d:
cd:4b:61:50:35:15:45:e2:fc:0a:31:b8:f8:57:a4:
b0:84:dd:ff:b1:bf:99:74:15:10:49:a9:8d:35:3a:
29:1a:67:86:1f:53:86:e9:96:f6:06:f0:ad:b6:93:
30:ca:eb:1b:38:74:9a:17:e6:49:22:fa:bf:6e:96:
80:3d:d8:42:8a:62:2b:99:4f:84:72:0a:5c:c8:38:
ab:a0:aa:ed:bc:3e:86:79:4d:a4:a2:1d:40:22:d8:
f6:ed:cc:3b:51:08:5b:3a:fd:0b:49:ae:20:59:19:
a2:70:5f:07:b6:59:05:11:c7:96:70:9f:25:8b:f4:
37:a6:68:86:73:b3:ca:51:fc:6c:d3:47:81:50:fa:
80:f0:2b:7b:71:b1:0d:ff:af:bb:95:78:f0:13:d5:
31:9f:5b:ef:1d:8e:a6:d3:37:a7:84:08:30:02:cf:
cd:e6:5a:38:c9:c5:48:88:29:6b:cf:84:b5:55:c2:
ba:59:69:fc:6e:29:26:d9:4c:66:16:c1:06:4f:cb:
75:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:AD:F0:87:F6:74:0F:49:22:CD:F5:3C:BC:5A:FD:7C:97:3E:01:AD
X509v3 Authority Key Identifier:
keyid:F7:68:FF:6E:68:18:58:C0:EC:19:F3:A9:3F:A1:79:2C:D1:6C:EE:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/3137382e3133322e3139332e302f32342d3234203d3e2035303635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.132.193.0/24
Signature Algorithm: sha256WithRSAEncryption
82:fe:05:8c:6e:ea:55:38:70:e8:5b:15:a5:00:3f:55:38:d1:
d8:9d:5d:04:18:da:94:58:c1:e9:b7:f0:01:9e:df:97:e4:8a:
54:18:c1:62:45:6f:d2:c1:e8:2a:8d:3f:a1:41:d6:97:39:b2:
9c:0f:33:53:0a:dc:6f:37:53:12:60:70:2f:34:86:28:3a:a6:
87:fd:04:d0:92:d5:63:fc:7f:0a:1c:26:16:8e:5c:a2:e5:63:
86:2a:dd:0b:70:27:1c:d9:5d:3f:ff:2c:27:fa:b0:3e:e1:d8:
7a:8f:8c:97:5d:33:c5:88:3c:51:24:95:6f:3f:8a:89:38:71:
85:a2:92:68:87:ce:68:0d:5c:d2:22:36:ca:ca:ea:07:42:9d:
91:60:11:52:c2:45:bf:9a:5b:51:f1:d9:2c:d6:fe:38:b5:09:
57:45:eb:4c:a8:fd:a4:34:83:10:85:0f:54:1c:c6:99:ff:70:
99:2b:89:a4:fb:f7:f8:89:df:90:c9:73:1c:b2:d3:ff:20:a3:
62:07:73:a4:79:b2:75:78:90:98:fb:a5:01:50:64:be:e5:a8:
99:c3:6d:62:17:a4:cd:04:25:05:48:dc:30:88:a0:48:85:56:
35:19:93:a9:e4:8a:8d:08:6a:68:ae:37:02:94:9c:fa:fe:5a:
64:d3:6e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:56:29 2025 by rpki-client