Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/34362e3233362e3231352e302f32342d3234203d3e203534323532.roa
File: 34362e3233362e3231352e302f32342d3234203d3e203534323532.roa (raw, json)
Hash identifier: JAjkd2HWlqIkZEAaABitO5zjsZxL8tWlOZDSlYKhQUc=
Subject key identifier: 49:52:70:D9:0F:07:8D:64:F6:AB:37:B1:6A:3D:39:64:94:C4:F0:4B
Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Certificate serial: 7E5A99671019F6DFADD8AE7D3FDCE1968DB4D8D8
Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/34362e3233362e3231352e302f32342d3234203d3e203534323532.roa
Signing time: Fri 05 Sep 2025 17:14:52 +0000
ROA not before: Fri 05 Sep 2025 17:09:52 +0000
ROA not after: Fri 04 Sep 2026 17:14:52 +0000
asID: 54252
IP address blocks: 46.236.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 12:34:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:5a:99:67:10:19:f6:df:ad:d8:ae:7d:3f:dc:e1:96:8d:b4:d8:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Validity
Not Before: Sep 5 17:09:52 2025 GMT
Not After : Sep 4 17:14:52 2026 GMT
Subject: CN=495270D90F078D64F6AB37B16A3D396494C4F04B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7e:55:b9:ed:ae:19:ef:94:cc:01:9a:ba:bf:
3a:d9:96:e8:cc:a0:2e:31:83:31:87:fe:48:16:ad:
77:06:59:8a:37:dd:b7:ef:82:0b:5e:0f:08:59:41:
96:3d:b7:43:d4:92:0e:f2:06:c7:e2:cc:0c:a9:08:
6b:09:16:b5:77:9a:7e:89:38:4b:26:45:24:b6:29:
8d:bd:ac:fb:91:90:69:79:78:52:ad:00:75:a8:d0:
49:3c:72:24:f4:14:31:bd:c3:f9:9b:b2:a9:ee:3d:
d8:4e:14:70:51:4b:17:77:4b:35:12:11:0c:14:22:
fa:31:4c:9e:7f:f2:af:5d:cd:05:39:95:56:f2:02:
3c:0f:e9:68:03:99:0e:a7:b2:df:58:7b:2b:2d:21:
75:98:33:c8:3e:29:01:54:bf:15:7b:62:83:89:5a:
4c:6d:b6:66:3a:93:46:2f:ad:d1:a4:8c:74:27:68:
f2:d4:f8:fb:94:4f:8c:36:fe:bd:c0:0f:c2:a9:d7:
52:cd:77:e8:39:a2:26:32:8b:8a:69:a1:f4:f9:1b:
91:77:e0:d6:85:63:2d:55:4c:ac:2b:95:7a:31:f3:
d5:e7:47:4e:68:a7:d6:34:fe:dc:10:40:84:29:ba:
a3:b4:89:b0:69:e1:08:eb:83:62:d0:4a:bc:dd:a2:
ae:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:52:70:D9:0F:07:8D:64:F6:AB:37:B1:6A:3D:39:64:94:C4:F0:4B
X509v3 Authority Key Identifier:
keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/34362e3233362e3231352e302f32342d3234203d3e203534323532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.215.0/24
Signature Algorithm: sha256WithRSAEncryption
00:5d:6f:9a:ac:6b:28:5a:7a:d3:93:f2:eb:8d:ab:3d:15:c5:
eb:c2:eb:90:20:6b:44:9a:fe:39:a4:4e:77:05:f7:d9:f7:4b:
47:0d:19:3f:52:6b:e1:a0:7c:63:3a:ee:15:1d:01:57:bd:68:
7a:1e:cd:b2:28:ec:fc:6d:df:39:80:24:36:cd:74:cf:6d:07:
97:e0:16:cd:48:e3:bb:e5:ef:18:66:98:22:8e:94:5f:70:cd:
61:80:86:de:ba:d2:c5:6a:9d:8f:32:32:5d:27:e2:aa:af:1d:
83:b2:31:19:87:5e:ab:1e:75:91:bd:25:9d:65:80:12:90:44:
8d:bd:7d:76:35:56:11:f9:b5:76:21:6d:3e:5f:13:91:0b:87:
6b:85:50:15:bd:f3:d9:ff:93:f1:ea:26:91:7f:3b:60:ec:36:
86:5b:4c:37:bf:0f:92:f1:d2:30:2a:4e:a9:62:84:45:ad:cf:
71:78:1b:f1:47:12:d5:92:91:b9:ca:2b:de:9b:d7:d7:fd:d5:
13:3b:46:5f:71:ca:60:d1:f8:53:ba:16:74:6c:e5:4c:d5:d0:
cb:f3:b8:59:5f:56:fc:9c:e2:fb:c2:e7:cc:25:9b:65:f1:17:
5b:3a:12:03:f0:79:7a:31:23:be:e1:ce:be:47:f8:14:d1:fb:
6f:d1:7e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 04:02:25 2025 by rpki-client