Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130332e302f32342d3234203d3e20323032373336.roa
File: 3139332e3234362e3130332e302f32342d3234203d3e20323032373336.roa (raw, json)
Hash identifier: 25OCay2OV/7fsFzlQCaWuZFV/8gtz5r77rm0KuzYhQc=
Subject key identifier: BC:99:09:41:03:24:EE:3B:D9:D9:6F:98:9E:EF:A0:78:A2:D2:F0:11
Certificate issuer: /CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Certificate serial: 6B5D57A28AC8EBF52D7F80CB82DA320FB78AAB0B
Authority key identifier: C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130332e302f32342d3234203d3e20323032373336.roa
Signing time: Wed 24 Sep 2025 09:44:48 +0000
ROA not before: Wed 24 Sep 2025 09:39:48 +0000
ROA not after: Wed 23 Sep 2026 09:44:48 +0000
asID: 202736
IP address blocks: 193.246.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.mft
rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 Oct 2025 11:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:5d:57:a2:8a:c8:eb:f5:2d:7f:80:cb:82:da:32:0f:b7:8a:ab:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Validity
Not Before: Sep 24 09:39:48 2025 GMT
Not After : Sep 23 09:44:48 2026 GMT
Subject: CN=BC9909410324EE3BD9D96F989EEFA078A2D2F011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8d:5d:b3:3d:06:8d:ca:60:be:96:4e:50:9b:
dc:7b:da:ab:09:a0:a4:da:87:63:9b:02:ff:25:00:
49:e5:c3:a0:12:ea:ec:00:8a:e0:48:17:bf:69:ee:
d7:5c:43:7d:0b:a8:3c:12:5c:f3:fd:cd:eb:c4:27:
18:0f:8b:19:56:99:5e:b9:ee:2e:dd:64:dc:8a:b2:
e8:98:2b:06:e2:3d:55:ca:cd:ad:be:2b:9e:2e:1b:
8c:c3:f7:c4:85:2a:9c:f6:ba:fa:8c:36:ce:db:5d:
c6:fe:da:9b:1b:7a:ee:39:1c:b1:7d:ce:42:b5:7b:
27:6e:3e:5b:18:19:c5:ce:68:c9:80:1b:37:9f:d9:
c3:1e:d9:2e:5d:17:3d:22:03:dd:ac:86:ac:26:cc:
7c:30:49:47:fa:3b:a5:1b:19:b7:60:46:23:9b:3c:
0f:80:c8:58:df:1a:d1:db:fc:63:82:80:29:ee:fa:
b6:6d:10:fe:a1:64:7a:34:f4:96:8b:6b:e7:29:5e:
85:6b:e1:c7:49:30:8b:50:2f:e8:6f:d9:d3:76:77:
74:3a:da:17:16:81:ff:c3:9c:27:15:a9:9e:de:c6:
c6:79:fb:90:02:fc:67:77:fe:28:16:b7:93:c9:b8:
e6:36:77:14:c6:d7:78:89:b3:bd:b9:0b:f5:90:1f:
31:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:99:09:41:03:24:EE:3B:D9:D9:6F:98:9E:EF:A0:78:A2:D2:F0:11
X509v3 Authority Key Identifier:
keyid:C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130332e302f32342d3234203d3e20323032373336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.103.0/24
Signature Algorithm: sha256WithRSAEncryption
92:0f:5f:12:c9:22:a4:b4:83:0c:85:76:5e:84:2d:e3:23:a1:
60:c1:49:00:87:d8:2f:22:8d:7e:ee:42:a4:57:71:1d:3b:75:
92:e0:33:f9:72:11:e7:48:99:6c:78:53:a5:dc:fd:c8:53:06:
d5:69:a2:57:8d:14:c3:59:9d:c3:79:42:8b:5b:54:f3:21:9d:
4b:72:19:11:be:a7:49:a9:b6:cc:75:78:d5:0e:41:36:21:91:
67:2f:1a:32:ea:d3:6c:8f:eb:c6:9f:85:66:70:15:4b:70:e3:
a9:a3:bb:ed:db:ca:7e:41:df:90:ff:11:cf:af:17:8b:c4:22:
1e:d3:0b:8d:1b:26:14:ce:f7:a6:40:79:ab:6f:86:48:8c:a6:
fd:f9:39:77:71:6c:24:66:23:5a:59:aa:3f:26:89:cc:16:41:
8a:e0:c2:66:af:6d:a2:5f:18:af:04:d6:2c:09:32:da:06:29:
eb:e4:9e:c2:6c:00:d8:92:fc:86:ca:44:c9:a1:29:68:0b:4f:
7c:ac:b6:22:b6:95:dc:cc:85:a2:f8:3b:c5:0c:7c:f9:c4:2d:
c5:48:30:e8:e1:76:f0:7c:4a:4c:2c:ee:50:4d:f8:3a:19:af:
de:8e:62:c5:75:df:8f:05:0d:11:d4:93:72:a0:67:a1:0f:07:
67:05:69:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 11 17:32:05 2025 by rpki-client