Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e203230313135.roa
File: 3138352e3232322e3138362e302f32332d3234203d3e203230313135.roa (raw, json)
Hash identifier: att4ujVZlv+GYCNSoZ0NdLL6l99k01bcF4dZgxQJqw0=
Subject key identifier: 55:11:E6:45:49:B4:7E:3D:0C:71:0F:80:58:D1:36:DF:15:39:6C:F5
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 3581DFC6F156C3DD461D8DCF27FF0843E7C4C356
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e203230313135.roa
Signing time: Thu 17 Jul 2025 17:33:07 +0000
ROA not before: Thu 17 Jul 2025 17:28:07 +0000
ROA not after: Thu 16 Jul 2026 17:33:07 +0000
asID: 20115
IP address blocks: 185.222.186.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:81:df:c6:f1:56:c3:dd:46:1d:8d:cf:27:ff:08:43:e7:c4:c3:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jul 17 17:28:07 2025 GMT
Not After : Jul 16 17:33:07 2026 GMT
Subject: CN=5511E64549B47E3D0C710F8058D136DF15396CF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:9c:ac:cf:b8:b5:1e:d2:85:94:6b:b4:fd:98:
02:18:db:cc:f9:2f:c2:11:a2:43:c6:fc:b1:e1:2e:
f4:ec:16:15:d0:be:5c:ad:4a:19:d0:c5:02:6a:c9:
2f:6e:19:30:80:2e:50:af:db:4d:0d:f9:ca:17:32:
6b:37:df:63:df:e6:4a:35:48:fe:df:96:4e:59:f9:
47:e9:59:62:db:c2:64:27:4c:b3:7a:a9:19:da:71:
3d:bc:8f:4d:b5:79:bc:00:8b:74:94:e0:de:8c:29:
9d:56:2a:1e:a9:1e:f5:c6:c9:e4:75:a0:70:fc:f3:
21:4d:d6:97:db:d6:21:8e:4d:63:09:d0:fa:03:72:
d8:b8:2e:63:47:d2:a9:27:54:64:0b:ee:68:cf:01:
c6:5d:64:9b:a7:2e:ea:20:44:35:28:fd:a3:4c:7d:
ec:a8:7c:ec:47:83:a1:c3:fa:ae:c0:9e:9f:fd:29:
ec:55:55:6b:62:2f:50:5d:83:00:8d:b3:7b:2a:5f:
d5:22:55:3e:2c:49:5b:db:09:6f:f7:91:28:7b:97:
0d:29:a8:68:cf:82:d8:a4:ca:61:c7:b1:75:4d:35:
bf:ca:0b:e7:3a:dc:cd:f2:0f:14:88:81:b1:97:52:
58:62:b2:39:9d:94:6f:68:97:fd:4f:68:e5:e6:eb:
53:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:11:E6:45:49:B4:7E:3D:0C:71:0F:80:58:D1:36:DF:15:39:6C:F5
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e203230313135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.186.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:69:1c:ee:25:3a:4d:82:e7:17:d1:29:11:cf:88:87:d5:32:
44:c9:e8:3f:1d:6e:63:b6:f0:b9:a1:36:8f:5a:d4:4f:28:c7:
71:26:3c:e9:9b:14:22:84:be:f4:ec:4b:1c:be:2b:a8:c7:90:
9c:3e:e2:fc:e6:e7:5c:18:1c:61:e2:c2:2b:73:ff:8e:40:d6:
de:fc:67:cf:c7:d0:77:90:72:42:c3:75:19:cc:0a:bd:78:fc:
5e:62:14:91:c3:c5:dd:d3:2d:73:12:3f:00:c6:62:da:73:ab:
f5:93:15:96:97:3e:6e:63:fb:61:ae:95:fa:0d:17:0f:56:4d:
2a:53:7c:5a:73:9f:71:27:e9:47:ae:34:7d:87:68:26:c4:d9:
f3:5c:86:c9:61:13:6b:d6:5f:e6:a4:c0:93:57:90:ed:db:2c:
e3:39:ba:6d:d3:2e:f2:fd:37:05:39:34:39:82:24:18:54:25:
e1:e8:ca:3e:4a:9d:fb:f2:50:06:66:41:12:57:fa:0b:63:61:
0d:40:21:05:d3:99:96:7c:fb:9e:9c:cc:ab:31:e6:54:22:c6:
5b:82:0d:00:fc:a8:7b:2d:b6:05:0e:ae:00:35:77:a0:7b:5c:
64:16:de:18:4f:e4:e4:1a:e4:11:dc:52:2a:2f:77:3d:0f:13:
a2:f1:34:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 20:18:13 2025 by rpki-client