Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235322e302f32342d3234203d3e20323734383237.roa
File: 37372e38332e3235322e302f32342d3234203d3e20323734383237.roa (raw, json)
Hash identifier: 1TkU9CuZNSKSA6n8CCEVJKfR3/eejFvKDG72x42fajA=
Subject key identifier: 4C:BA:5E:EF:C8:C5:95:BA:7D:C5:D7:90:4A:D7:EE:41:5F:C2:01:85
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 6A19CDFE50F0D7202051A4DFDBA7C095C9C5FED6
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235322e302f32342d3234203d3e20323734383237.roa
Signing time: Thu 26 Jun 2025 10:37:59 +0000
ROA not before: Thu 26 Jun 2025 10:32:59 +0000
ROA not after: Thu 25 Jun 2026 10:37:59 +0000
asID: 274827
IP address blocks: 77.83.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 09:23:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:19:cd:fe:50:f0:d7:20:20:51:a4:df:db:a7:c0:95:c9:c5:fe:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Jun 26 10:32:59 2025 GMT
Not After : Jun 25 10:37:59 2026 GMT
Subject: CN=4CBA5EEFC8C595BA7DC5D7904AD7EE415FC20185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:65:c5:0c:d7:7e:20:1b:6c:23:b7:66:84:3f:
4c:44:fc:98:60:2f:86:0a:ea:8b:93:96:0c:00:c5:
a2:24:c3:f0:ee:09:c8:54:14:bc:44:af:7d:d6:65:
b9:2a:0f:28:f3:37:77:a0:30:d2:7c:f2:f6:1c:f1:
e9:40:d1:63:a4:42:cb:d3:59:28:a5:50:e9:9a:eb:
05:da:ef:e6:12:7e:ff:f5:28:6b:8b:6a:e7:ad:59:
d3:9c:24:b6:b2:cf:3e:22:26:fd:4a:a2:4c:21:79:
7d:56:cb:81:37:d0:52:92:3d:34:71:3a:d8:98:e4:
ba:a4:a7:d4:bd:ff:d7:a9:a8:6a:8e:08:c1:83:06:
c6:aa:2b:34:32:dc:76:33:65:a1:88:fc:a1:97:51:
1f:ca:76:70:72:cd:24:8f:27:e8:2c:f0:e9:fc:b3:
01:d0:78:84:f1:1a:07:90:6e:f6:2f:54:b0:e7:69:
40:fa:4f:9c:1e:98:ac:77:7e:a2:b4:02:e4:d7:36:
ab:06:f6:93:ba:58:a1:35:f0:28:68:0f:82:fd:0c:
a7:13:a3:b8:a0:f0:7a:15:ea:e8:cd:3c:47:1f:b4:
41:0b:91:e7:98:eb:88:2c:c8:87:91:1b:c2:7c:a1:
eb:74:b3:95:f7:f8:70:5d:05:6d:7a:99:a1:07:d5:
60:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:BA:5E:EF:C8:C5:95:BA:7D:C5:D7:90:4A:D7:EE:41:5F:C2:01:85
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235322e302f32342d3234203d3e20323734383237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.252.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:3c:7f:52:12:0f:d4:d4:ff:4f:1d:a5:00:e2:cc:72:7c:0a:
3f:ae:37:5b:9d:1c:f9:15:72:df:14:b1:24:24:d1:9a:dd:1e:
fa:65:ce:7a:d1:48:c5:1f:6f:87:7c:34:69:aa:36:70:92:93:
9c:c9:d3:32:d8:9f:7f:94:c7:a1:71:5f:c2:78:9d:9d:15:9f:
a5:dc:e0:a8:e3:2c:43:15:0b:b5:6d:cb:2e:c7:f2:13:d6:d5:
74:50:18:22:50:8f:4e:d4:d1:7b:e8:43:4d:54:d5:ca:26:d5:
4f:dc:8e:24:3a:1c:9e:38:61:bc:23:a4:5d:2a:5b:f0:10:f0:
0e:95:76:82:d7:7c:2e:e5:61:1b:f5:e4:8c:21:1e:13:4d:6e:
3e:b6:0c:5a:80:37:e5:9a:03:99:a2:e4:c2:56:df:9f:76:ac:
2e:ce:3f:e4:47:fd:c4:77:e9:65:42:53:d9:0c:86:45:d5:7d:
c6:0f:6f:42:0b:cc:49:6f:e0:68:32:eb:e3:ed:22:88:cd:ad:
8c:28:df:d2:86:65:8e:6f:83:76:96:1c:95:b7:24:5f:ce:c3:
30:27:d5:b6:9c:4e:5a:10:42:1f:a3:9a:a2:8b:bc:2b:3f:2e:
4b:56:f3:fe:a3:a9:a3:3d:cd:a7:a4:0e:14:11:dc:d3:70:a9:
6a:75:c0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 23:28:22 2025 by rpki-client