Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134312e302f32342d3234203d3e203530363733.roa
File: 34352e3134382e3134312e302f32342d3234203d3e203530363733.roa (raw, json)
Hash identifier: hozDDD12cZmU9uwqtlG3YW2MQMFya58e1DSCYqdV4xM=
Subject key identifier: 64:AD:86:99:0A:7D:93:96:F3:CF:ED:5D:6D:88:70:A3:E2:51:48:90
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 02BB62B0B9960C7BCD573E30144F61E333B26203
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134312e302f32342d3234203d3e203530363733.roa
Signing time: Mon 25 Aug 2025 09:54:13 +0000
ROA not before: Mon 25 Aug 2025 09:49:13 +0000
ROA not after: Mon 24 Aug 2026 09:54:13 +0000
asID: 50673
IP address blocks: 45.148.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 20:56:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:bb:62:b0:b9:96:0c:7b:cd:57:3e:30:14:4f:61:e3:33:b2:62:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Aug 25 09:49:13 2025 GMT
Not After : Aug 24 09:54:13 2026 GMT
Subject: CN=64AD86990A7D9396F3CFED5D6D8870A3E2514890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:48:6e:c1:46:99:72:61:87:08:4d:3b:86:c9:
75:13:00:9a:dc:a6:ab:b9:55:7a:ff:0e:f4:a0:19:
61:b5:8b:76:67:25:04:56:07:13:2b:8b:b9:74:1d:
fc:b4:a1:99:7c:cb:53:1d:af:0b:2d:b6:10:5d:1e:
2b:87:1f:84:76:f6:d8:fe:94:61:11:59:91:af:43:
1a:b9:2f:65:a4:3d:36:a9:16:7b:55:6f:26:eb:5c:
d2:da:6f:ec:16:80:38:4a:a7:ad:39:8e:4c:92:50:
ed:a7:b8:de:fd:d1:53:ef:9a:61:c5:3f:67:b1:80:
29:94:6e:7f:44:c0:f5:55:30:a0:4b:9b:ef:c6:ed:
c7:3d:54:34:f9:38:d6:57:2c:d4:ef:1c:b8:d4:99:
e9:62:73:06:9c:16:0d:0d:6a:e8:0d:25:1e:1b:76:
74:1e:de:f1:41:6f:0e:f4:2a:1c:cd:bb:12:d0:01:
97:30:4f:ad:ca:51:0b:13:31:30:66:39:9d:c4:cc:
1d:ad:09:97:4a:f2:1c:04:d6:45:e8:e5:b4:3e:59:
aa:ec:81:0a:c4:e3:82:8a:29:74:68:0c:b1:9f:da:
8b:17:40:00:f4:82:91:63:45:d7:14:ad:63:d6:cc:
17:4a:3a:55:25:0b:42:d3:b8:76:cf:26:24:6f:1b:
f9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:AD:86:99:0A:7D:93:96:F3:CF:ED:5D:6D:88:70:A3:E2:51:48:90
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134312e302f32342d3234203d3e203530363733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.141.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:69:43:a0:82:9f:f2:d6:d5:05:04:a0:0b:c8:3d:96:f2:1a:
19:78:a7:c2:cf:0e:43:e6:b5:23:55:02:06:0a:d2:2c:9e:ea:
a7:55:7c:9e:aa:0f:03:60:e9:52:87:d0:b4:d1:06:16:27:06:
83:45:ee:be:08:4f:85:a2:4e:ae:c7:f4:ce:e9:e7:3d:31:d2:
49:49:d0:15:c8:6c:0f:e9:1e:a8:98:d5:31:ea:f9:d6:77:ec:
ca:d8:d5:53:47:25:ad:82:7a:41:6a:06:8b:f9:b1:c7:b4:99:
f6:aa:10:9d:e4:ae:3f:f5:01:f4:9e:87:9b:5a:99:63:d8:39:
b5:0f:72:fa:6f:29:ed:77:c6:98:d6:a7:65:99:70:9d:57:4d:
7a:9d:f5:a8:b2:d1:21:39:6c:32:c0:b2:55:1a:24:d9:cd:c2:
b9:ab:dc:29:ec:c3:54:95:0b:b4:5d:ba:4c:37:68:57:cf:0a:
e1:98:4d:fc:63:47:11:69:f9:0b:62:c1:93:b8:81:6f:15:3f:
06:2d:31:0e:24:d3:3d:38:ff:91:fa:ca:9b:9b:ce:c0:39:7c:
a1:50:a1:8f:72:c0:ec:64:bc:9e:fd:f5:15:1d:33:8b:cd:ef:
6f:9d:4a:18:84:5d:d6:48:11:cd:a1:75:bd:f0:76:c6:f8:11:
f2:88:dd:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 05:01:14 2025 by rpki-client