Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e20313432313436.roa
File: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (raw, json)
Hash identifier: U6sIE1tc5XNg8Vw7jnbxLLCNANnB9wH3voxb1FhuZwc=
Subject key identifier: 72:5D:AB:07:2E:E2:8F:E6:A4:13:C8:AE:96:18:B7:B5:BD:20:E1:CB
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 793B9CD76FB58A8E4790F125F3B6656127D013D2
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e20313432313436.roa
Signing time: Wed 28 May 2025 07:54:08 +0000
ROA not before: Wed 28 May 2025 07:49:08 +0000
ROA not after: Wed 27 May 2026 07:54:08 +0000
asID: 142146
IP address blocks: 46.183.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:3b:9c:d7:6f:b5:8a:8e:47:90:f1:25:f3:b6:65:61:27:d0:13:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: May 28 07:49:08 2025 GMT
Not After : May 27 07:54:08 2026 GMT
Subject: CN=725DAB072EE28FE6A413C8AE9618B7B5BD20E1CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:94:82:b0:25:47:5c:f7:dd:29:96:ef:00:45:
d8:e8:1d:23:20:e3:bf:43:6f:81:d7:a4:5a:ce:db:
42:37:13:56:25:e1:9c:37:17:fb:e4:35:c1:78:2c:
f2:ee:6d:04:2e:f4:f9:07:52:93:7c:58:c3:cd:27:
9b:d6:c2:93:75:44:af:a2:61:ec:97:c5:b5:94:5e:
01:bd:c2:0d:e1:eb:38:e7:b8:d1:ad:cf:7f:6f:36:
68:97:ce:c4:72:a4:67:94:b4:36:58:71:09:60:36:
77:67:5f:6d:0a:ab:42:19:7c:07:18:d4:f6:98:25:
bd:05:27:b4:00:bf:2a:d5:ca:14:62:bf:6c:0c:c6:
53:23:e3:87:bf:66:4f:6c:11:d3:27:04:20:9b:c9:
e8:62:59:6f:a5:d2:2c:d0:3f:3d:4e:a7:f6:e8:02:
88:ad:30:2c:8d:90:7d:96:2d:9d:5b:9c:52:69:ce:
91:d4:ca:10:40:db:f2:3a:82:40:63:be:79:f0:1c:
bb:13:5c:0c:68:0a:e2:5d:ba:b7:8c:73:d9:26:af:
e7:47:ac:35:06:86:62:f7:18:a0:7f:59:67:b1:00:
ce:41:1e:4e:ad:33:ad:f3:00:2c:69:a7:83:3f:a6:
8e:4d:c4:60:a4:c1:9e:5e:1f:11:eb:0c:73:bd:77:
9a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:5D:AB:07:2E:E2:8F:E6:A4:13:C8:AE:96:18:B7:B5:BD:20:E1:CB
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e20313432313436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.24.0/24
Signature Algorithm: sha256WithRSAEncryption
af:da:19:5b:f9:bc:0c:f1:76:f6:bf:b2:a8:f4:b5:e1:65:8d:
74:d8:13:1d:b5:7a:a2:63:b7:4f:08:0c:b3:91:04:99:74:ac:
1f:23:68:35:2f:fb:2a:a1:71:c0:22:3e:89:b4:2b:2c:ac:97:
07:9e:51:e2:fb:4f:da:8e:8a:21:97:58:fe:4b:13:6c:1f:ef:
a9:6e:01:10:27:84:08:8f:84:4e:f9:6f:f9:a8:cd:f3:1c:3c:
f1:6c:e1:0f:3b:eb:9f:79:4b:66:31:82:82:5f:f6:6d:13:81:
c3:05:92:87:09:de:f4:40:20:e2:9a:4e:a2:f9:65:59:dc:ec:
98:d8:2e:3e:d3:44:d0:21:8b:2b:38:8b:a6:4a:1e:0f:06:cc:
4a:d7:a2:e4:83:4e:cc:1d:58:af:c5:27:5e:92:e7:8d:b6:09:
5f:96:81:6a:99:af:1d:a0:95:e7:1b:4f:04:e4:bb:9b:20:2e:
62:21:7c:f6:52:a3:7c:c6:bf:84:d3:08:9d:29:4c:b7:0a:54:
06:31:20:3f:c7:99:7b:bc:cd:4e:ea:f7:d8:b1:f6:ee:45:15:
be:78:35:04:35:33:b4:db:81:28:23:ba:a0:68:0d:cc:da:d8:
90:84:55:1f:62:cd:7a:4f:75:5e:07:38:e2:0a:24:44:17:c3:
ee:f6:08:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:55:09 2025 by rpki-client