Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/34362e3233362e3231352e302f32342d3234203d3e203634323637.roa
File: 34362e3233362e3231352e302f32342d3234203d3e203634323637.roa (raw, json)
Hash identifier: WeoSCF20RtMHQ/eqxYlcaIu8RhqT9PMJvlforPGcjqI=
Subject key identifier: 0E:07:A7:16:C3:04:B5:7B:50:03:03:AA:B1:5B:BF:A9:CA:FC:8A:9E
Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Certificate serial: 0C2C9EF2EBC76EE772247B2EEDB20024C7B29F27
Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/34362e3233362e3231352e302f32342d3234203d3e203634323637.roa
Signing time: Fri 05 Sep 2025 17:14:52 +0000
ROA not before: Fri 05 Sep 2025 17:09:52 +0000
ROA not after: Fri 04 Sep 2026 17:14:52 +0000
asID: 64267
IP address blocks: 46.236.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 12:34:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:2c:9e:f2:eb:c7:6e:e7:72:24:7b:2e:ed:b2:00:24:c7:b2:9f:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Validity
Not Before: Sep 5 17:09:52 2025 GMT
Not After : Sep 4 17:14:52 2026 GMT
Subject: CN=0E07A716C304B57B500303AAB15BBFA9CAFC8A9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:13:17:0a:0a:f7:ea:25:a4:73:41:39:f0:29:
30:33:6e:7f:15:ce:64:db:9a:cc:ee:85:06:8d:04:
fa:10:17:2a:08:0c:8a:eb:42:0a:30:2b:11:4b:25:
0a:5e:72:18:49:45:04:b9:61:15:dd:e0:ee:9e:5c:
28:26:eb:64:1a:e0:a1:ba:ab:ad:60:ee:b4:07:66:
94:05:8d:a9:7a:ee:8c:a1:80:86:c7:fd:4b:07:d3:
8d:0d:69:69:48:2a:1c:1a:1d:bb:05:65:a7:94:4b:
7c:cf:74:36:12:55:ab:e6:ff:89:d3:c7:20:08:b9:
3a:e5:54:01:52:17:b2:89:30:ed:ec:3f:c8:f1:40:
7d:b6:3a:6e:d8:51:b9:77:1c:ec:a3:e2:93:04:8c:
65:5d:0a:a9:5a:6a:9c:61:6d:b4:50:28:fd:5e:df:
12:c0:55:47:14:f4:77:b0:01:a0:f4:33:73:17:89:
42:77:48:11:30:ef:f5:88:c9:3d:ab:6f:2b:e1:3c:
03:75:fc:79:4d:2e:31:3f:42:8e:dc:33:27:50:b1:
d3:81:a6:65:3c:65:7a:d7:2b:32:c9:c3:a1:77:4d:
f5:54:c1:b6:57:7a:47:20:70:2e:77:bf:9f:35:b1:
f1:1d:fa:f7:c4:c3:c4:6e:da:12:3b:4f:a1:dc:6a:
bf:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:07:A7:16:C3:04:B5:7B:50:03:03:AA:B1:5B:BF:A9:CA:FC:8A:9E
X509v3 Authority Key Identifier:
keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/34362e3233362e3231352e302f32342d3234203d3e203634323637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.215.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:fd:ee:45:52:0e:46:dc:a7:9b:2b:ff:5a:a6:d9:fd:fe:f5:
2a:73:24:fe:ca:32:a3:45:8d:45:bf:76:bd:18:8b:f3:38:ec:
c4:0d:12:fe:f1:ea:42:58:a3:01:4f:b8:2b:e0:49:3b:97:e6:
1a:da:d8:33:c8:28:8a:23:09:85:47:10:84:fa:d5:11:c1:31:
04:63:f1:c5:b4:60:e3:c6:81:ee:f2:a2:fe:fc:c2:6a:43:ae:
46:a2:b5:be:8b:89:01:e2:07:b3:67:c1:ce:1b:b7:5e:ef:d9:
c7:78:ad:9b:55:16:09:53:2e:13:2b:e0:2d:2e:7d:56:b3:3d:
eb:11:bf:ff:55:b6:2a:f7:74:ee:42:69:2c:c2:0e:93:23:d5:
29:2d:f3:4c:73:23:8c:a5:f0:4d:d1:0e:bf:55:e9:5e:87:4c:
d9:83:07:62:ab:29:9e:b9:c8:96:dc:2f:46:6e:d6:a0:7d:fa:
a2:5d:a8:93:a3:4e:6a:f4:b9:f5:1f:69:ce:67:11:b9:76:2b:
fc:a3:3a:97:a0:ff:60:90:ee:6c:31:d7:69:0c:38:15:2a:65:
8d:cb:02:94:f7:1b:d9:dc:51:f6:f7:63:5c:c4:ed:00:98:32:
24:40:e6:1d:8f:b4:b6:d6:da:89:5a:12:7f:3e:e3:8f:80:f8:
26:64:f1:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 04:02:26 2025 by rpki-client