Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138342e302f32322d3234203d3e203437353833.roa
File: 3139332e3230332e3138342e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: fVSEJQXrkLLNBOcoQaJLYqH5c/UpgOc5oJbihK/YGM0=
Subject key identifier: 20:EE:F1:43:E1:C1:C6:58:4B:EB:FC:83:59:F5:02:6C:DB:68:97:20
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 28802A44ABD1CEC63DE37A4FD9B664C860ACF4BB
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138342e302f32322d3234203d3e203437353833.roa
Signing time: Fri 18 Jul 2025 08:46:54 +0000
ROA not before: Fri 18 Jul 2025 08:41:54 +0000
ROA not after: Fri 17 Jul 2026 08:46:54 +0000
asID: 47583
IP address blocks: 193.203.184.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 08:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:80:2a:44:ab:d1:ce:c6:3d:e3:7a:4f:d9:b6:64:c8:60:ac:f4:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 18 08:41:54 2025 GMT
Not After : Jul 17 08:46:54 2026 GMT
Subject: CN=20EEF143E1C1C6584BEBFC8359F5026CDB689720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2a:f2:db:74:23:32:91:99:f6:1f:ac:ba:e5:
2f:df:a1:b2:45:68:13:04:6a:87:3e:9c:21:30:6b:
8a:9c:55:29:1a:1c:c6:ab:ad:72:ed:70:7f:22:06:
69:a5:5c:ff:42:ff:39:f8:08:99:a6:db:a3:2c:48:
ec:22:e3:a0:10:74:44:2a:1f:7c:34:89:e5:b2:b4:
69:37:cb:55:67:ba:44:b7:10:c2:50:6b:f5:a3:e9:
dc:a2:7c:c8:39:cc:c9:66:e6:2b:45:1e:e5:67:a1:
23:ce:34:65:81:1e:78:13:92:c1:ed:6b:b5:6e:a7:
d4:12:69:0b:b8:85:0e:f9:12:ff:66:3c:1a:3a:b4:
c1:5d:0d:a4:66:0b:fc:41:78:7e:8e:b7:fc:ab:ed:
19:0d:ff:21:15:80:67:ca:33:aa:0d:0b:77:91:2d:
06:ee:8c:a6:b1:1e:f5:b9:eb:4c:99:c4:a2:d1:81:
dd:d5:0b:b5:2e:cb:d8:54:fb:68:5c:f5:8f:10:73:
cc:bd:db:ec:71:a0:29:af:22:d7:59:63:48:80:c9:
c1:c4:a3:20:96:f2:fc:ac:8a:dc:b9:cd:91:80:e2:
d7:b0:ef:e8:66:de:62:49:c9:cb:c9:40:5a:b8:b2:
10:ad:13:07:f6:a7:4a:a1:79:51:ce:46:00:9f:03:
56:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:EE:F1:43:E1:C1:C6:58:4B:EB:FC:83:59:F5:02:6C:DB:68:97:20
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138342e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.184.0/22
Signature Algorithm: sha256WithRSAEncryption
07:01:e4:92:53:7f:a4:90:6f:8c:55:07:4a:2a:62:48:2c:30:
ca:f8:da:27:f6:74:15:9a:b4:27:ab:8f:32:49:6a:59:60:87:
ce:a0:cf:48:c7:32:cc:ce:60:6f:d4:6e:8b:8a:90:05:e5:f8:
6e:dd:38:c2:95:45:91:76:70:ef:86:d4:11:b8:70:df:2a:4d:
e0:50:2f:0f:e0:2a:9d:a0:6e:c5:2e:a8:80:6c:bf:c7:c0:f5:
fb:61:c9:db:d0:75:ce:1f:78:1e:ed:e3:47:7f:20:76:16:02:
a3:05:32:84:9b:19:e7:5a:06:84:5d:53:2c:0d:d0:fd:6f:87:
7f:3b:99:78:ef:82:a6:4b:ab:ab:1f:92:7f:7d:25:c9:a3:a3:
54:80:ee:a6:79:79:4b:7c:17:e5:b2:c8:4a:6a:1a:24:8a:28:
8a:2c:83:9b:e3:0e:14:9d:ae:1d:9f:11:9c:f0:99:0c:95:2c:
92:20:5d:b4:6b:fb:90:e6:f7:89:f4:2f:62:32:82:e0:a4:38:
89:77:51:d2:bd:83:50:ad:37:3b:67:3f:b7:f1:c5:db:1f:4e:
02:25:4a:d0:9b:37:a0:8d:81:01:54:b5:1f:3f:dc:72:aa:b0:
6d:d8:49:0c:fe:6c:94:25:7c:94:18:6b:6b:e1:d6:88:27:c7:
63:59:05:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 17:19:34 2025 by rpki-client