Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138302e302f32342d3234203d3e20323632323837.roa
File: 39352e3136392e3138302e302f32342d3234203d3e20323632323837.roa (raw, json)
Hash identifier: 6UGT1aTRnL4zp/KvN9izOc/fv/mHQQmccA1UDKjH29E=
Subject key identifier: 7D:C3:CE:92:2C:E2:7F:FA:37:A3:BE:65:7A:45:82:56:80:DB:C0:C3
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 7DB5F096E99205CB171D508B5CB3744F05D59879
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138302e302f32342d3234203d3e20323632323837.roa
Signing time: Sat 19 Jul 2025 05:54:13 +0000
ROA not before: Sat 19 Jul 2025 05:49:13 +0000
ROA not after: Sat 18 Jul 2026 05:54:13 +0000
asID: 262287
IP address blocks: 95.169.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 09:39:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:b5:f0:96:e9:92:05:cb:17:1d:50:8b:5c:b3:74:4f:05:d5:98:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jul 19 05:49:13 2025 GMT
Not After : Jul 18 05:54:13 2026 GMT
Subject: CN=7DC3CE922CE27FFA37A3BE657A45825680DBC0C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d3:e1:ac:3a:82:37:43:66:e7:d8:76:e9:99:
e0:f7:4e:a3:90:d2:e4:4d:b6:94:ef:d0:33:ba:2a:
02:bd:d1:bb:a4:72:81:a2:d1:e9:8c:68:ac:78:b4:
1b:dd:da:37:1a:25:cc:a8:c3:c6:1e:0c:ab:f6:78:
1e:28:9b:58:8e:be:c4:2c:81:dd:ce:1c:58:44:35:
9b:2b:2f:c3:19:45:50:86:4f:64:fd:5d:67:1a:6b:
a1:62:6b:e3:b6:62:d1:79:ab:54:00:05:87:2f:56:
aa:ae:87:36:c2:d6:aa:81:98:6f:09:7e:ea:a5:8c:
4d:d5:77:07:5e:f5:e1:de:6f:45:cd:a9:57:71:93:
4e:84:83:89:89:5e:40:97:6b:60:05:d7:bf:12:c7:
b8:10:a5:c8:a4:28:68:ee:2d:be:3e:3f:ad:d5:7e:
36:3c:58:22:23:4d:c8:f8:1f:d3:cf:94:7e:fb:3c:
68:8b:6b:fb:1f:b0:f2:bc:c3:13:46:4c:d9:61:5a:
4d:dc:b8:a6:c1:4c:12:a4:61:6b:4d:6a:c9:ae:e4:
90:f0:d0:8c:fb:95:89:90:19:0f:a0:fe:88:df:d6:
3a:46:94:cb:15:69:bc:21:35:51:f1:1c:e6:90:33:
d2:3f:fe:71:3a:bc:d0:8e:21:93:a3:3c:db:55:2d:
6c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C3:CE:92:2C:E2:7F:FA:37:A3:BE:65:7A:45:82:56:80:DB:C0:C3
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138302e302f32342d3234203d3e20323632323837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.180.0/24
Signature Algorithm: sha256WithRSAEncryption
18:dd:42:c5:b1:4a:47:3e:aa:70:3b:b8:bc:60:c3:05:d8:44:
ce:f0:53:4d:30:30:d7:7e:f5:39:16:26:4f:a4:7c:a8:d5:e0:
ea:57:5b:ec:f8:b9:df:ef:8c:36:88:e2:f3:96:75:e1:ed:5d:
3a:53:62:94:13:58:ac:b5:67:b5:a1:32:0b:55:e1:e7:c3:1b:
3e:f3:37:1d:3c:ba:47:fe:8d:54:e1:c5:1c:47:62:50:fe:38:
7d:c4:a8:6e:ef:69:59:84:10:24:b7:37:ac:01:e4:8a:ea:91:
a2:ab:e9:9a:75:18:93:d1:61:81:9c:96:ff:eb:08:77:b6:bc:
96:12:18:39:47:5e:63:82:71:ea:4c:ee:4a:38:0d:8a:96:ac:
c0:d1:09:cc:10:8e:8e:d0:b0:41:0e:9c:51:f4:41:d4:4f:b5:
cf:cf:88:f5:6a:f2:9f:b3:9f:f9:ff:de:3d:90:f5:b2:71:f2:
8b:8e:7a:1c:15:c9:4a:d2:d3:21:85:0c:f2:80:d5:33:8f:e4:
a1:b4:30:19:38:a9:cc:a4:6e:59:a1:77:e3:3e:7f:e5:77:d2:
90:58:04:d7:6e:de:4e:2b:d0:51:2c:73:0b:31:9c:49:d0:b2:
ce:9c:e1:dc:f8:27:48:18:61:81:ea:5d:ec:df:c0:ca:e1:67:
f4:92:a8:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 00:11:49 2025 by rpki-client