Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137382e302f32332d3233203d3e2035353131.roa
File: 3130392e3131302e3137382e302f32332d3233203d3e2035353131.roa (raw, json)
Hash identifier: m2iBPkS+mTTN9h+rug4CmqgkLLmBIAWcMLhbpNbOaWY=
Subject key identifier: 17:19:B0:37:7C:B4:51:27:E0:84:99:A0:87:62:E6:F1:F1:00:D7:E7
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 77322BD44F6C6EEBE084E55B1E09613D1922E312
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137382e302f32332d3233203d3e2035353131.roa
Signing time: Thu 10 Jul 2025 17:54:13 +0000
ROA not before: Thu 10 Jul 2025 17:49:13 +0000
ROA not after: Thu 09 Jul 2026 17:54:13 +0000
asID: 5511
IP address blocks: 109.110.178.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 00:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:32:2b:d4:4f:6c:6e:eb:e0:84:e5:5b:1e:09:61:3d:19:22:e3:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jul 10 17:49:13 2025 GMT
Not After : Jul 9 17:54:13 2026 GMT
Subject: CN=1719B0377CB45127E08499A08762E6F1F100D7E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:4e:6c:44:91:f8:55:30:b0:fa:bb:ad:b3:1f:
63:eb:28:bb:82:51:c0:57:4f:2e:bc:90:1c:5f:5f:
a3:0c:1f:d2:78:dd:92:3b:bc:83:ba:21:b2:3e:b0:
bc:91:af:fc:2b:2f:5d:d2:34:fe:27:82:d7:5d:f7:
01:a8:d3:81:6d:90:72:b7:d2:98:aa:5f:49:fa:e5:
7a:7d:02:b4:e4:38:8c:87:9c:7d:b1:54:82:31:79:
cd:5c:b0:56:73:49:4f:85:76:2f:df:cb:f6:7d:80:
4c:ac:39:96:b9:03:0c:d3:cc:f2:d0:29:e9:c1:68:
d1:f2:96:55:bc:22:f0:94:d6:7b:58:78:d5:41:2c:
d6:00:c9:97:2b:40:44:18:b8:c8:24:e9:9c:6d:dc:
1f:2f:fa:b8:de:e4:49:66:b0:21:4e:f2:89:c4:5d:
1a:e9:29:66:06:d7:78:9a:b5:20:75:71:9f:00:3a:
67:59:09:75:37:42:82:82:c1:87:f2:fe:1c:b4:06:
30:8f:e3:91:98:e7:7c:67:ea:60:70:88:0e:50:c1:
c3:32:f3:88:24:d7:3d:ec:48:fb:12:7a:d6:e9:49:
ff:86:0d:f6:85:e8:58:a8:a4:64:65:76:5a:bf:fc:
a9:d8:42:83:d8:14:6d:54:67:93:84:c4:c8:9f:ef:
83:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:19:B0:37:7C:B4:51:27:E0:84:99:A0:87:62:E6:F1:F1:00:D7:E7
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137382e302f32332d3233203d3e2035353131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.178.0/23
Signature Algorithm: sha256WithRSAEncryption
81:5a:ff:e1:07:25:ac:90:85:ba:18:4f:20:6c:f1:6d:b7:cf:
04:25:52:95:54:cf:89:94:b5:8a:1f:39:23:81:be:5b:c2:3e:
8c:ef:de:34:7b:18:9a:be:a7:8d:4f:95:f2:9d:af:b2:ed:17:
20:4b:a9:ae:b6:32:b5:ce:c4:89:de:4b:4d:67:d3:58:eb:dc:
d3:1c:8f:bd:0f:63:8a:b4:87:26:0e:e7:8f:3b:b3:ab:c1:47:
25:4f:08:4f:11:f9:0f:7e:66:2b:98:6e:87:e3:c6:d9:94:8f:
2a:6b:ff:b4:7f:0c:0f:7f:25:fa:03:8f:6d:67:79:57:6d:04:
9e:a4:19:1d:52:02:ae:d4:48:3a:7b:53:93:d6:d8:dd:ae:bf:
b3:c0:76:45:2b:8b:3e:6d:1b:93:b5:7f:e3:1f:0a:e2:93:ca:
e0:9c:02:09:71:44:ba:96:6f:f9:f0:80:00:94:98:eb:1c:21:
2a:78:d4:8c:b3:01:68:7c:a5:f7:1f:2b:59:28:dd:4b:42:78:
14:aa:e7:45:a3:ff:16:97:ab:bd:6f:75:5a:45:4f:c7:37:45:
25:6b:4f:b4:20:75:5e:85:3b:98:e6:5d:bd:ee:e5:e6:19:d8:
4b:04:24:b4:b6:35:55:ba:14:59:5d:cb:9c:21:ad:b4:0f:79:
95:b5:c4:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 14:14:11 2025 by rpki-client