Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134332e302f32342d3234203d3e203633303235.roa
File: 34352e3134382e3134332e302f32342d3234203d3e203633303235.roa (raw, json)
Hash identifier: thntT1VXjBuiFDqfQZvfwarKn2geKOp4X1FsbBWh2cg=
Subject key identifier: 71:81:DB:AF:16:D2:50:8A:9D:D5:4A:CC:EE:72:1F:C0:73:38:EA:2A
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 56CCD25BA17E6429962DAEFC9AF2BBC2773FEC95
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134332e302f32342d3234203d3e203633303235.roa
Signing time: Sun 16 Mar 2025 22:38:34 +0000
ROA not before: Sun 16 Mar 2025 22:33:34 +0000
ROA not after: Sun 15 Mar 2026 22:38:34 +0000
asID: 63025
IP address blocks: 45.148.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:cc:d2:5b:a1:7e:64:29:96:2d:ae:fc:9a:f2:bb:c2:77:3f:ec:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Mar 16 22:33:34 2025 GMT
Not After : Mar 15 22:38:34 2026 GMT
Subject: CN=7181DBAF16D2508A9DD54ACCEE721FC07338EA2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ec:7c:70:99:6e:bc:73:fa:d6:bd:4a:9e:77:
21:7a:c5:86:e2:f2:a4:bb:50:67:87:d5:9c:cc:24:
5a:32:92:ee:63:cd:bd:d2:fc:72:71:e6:a5:f1:14:
a3:7a:a5:fe:87:2f:24:5f:0a:75:e5:9e:47:8f:a0:
42:d9:b3:b8:1c:2d:f7:86:91:53:f0:b5:3e:66:a5:
aa:fd:72:7a:e5:ca:2c:42:6d:eb:7c:40:0a:1a:30:
d6:49:d0:7f:b3:ac:b3:b5:a2:b2:0a:33:50:20:0e:
37:17:d6:b9:05:6e:35:62:49:91:1e:32:3d:6f:63:
87:19:89:0a:24:4d:46:29:ad:91:bb:c4:40:08:81:
2b:0e:f5:1f:48:a4:5c:b8:b4:80:91:d3:0d:c9:b1:
a5:3e:a6:9f:07:13:e1:43:53:cd:55:1b:b9:6c:19:
0f:41:89:bf:b2:1f:4f:26:28:56:3a:c3:6c:a9:ad:
8f:53:7c:3c:75:3c:75:04:e9:b6:05:7a:4b:b2:9c:
86:f6:3c:a9:96:36:99:c7:08:08:e2:09:c4:d6:32:
e1:36:a1:81:ac:7e:e6:31:83:a3:0e:7c:0b:37:4b:
56:36:20:b1:da:b3:ab:f2:a0:b6:76:39:c5:ba:98:
af:30:86:82:ad:dc:c9:e9:70:68:6d:04:a5:3d:38:
c3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:81:DB:AF:16:D2:50:8A:9D:D5:4A:CC:EE:72:1F:C0:73:38:EA:2A
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134332e302f32342d3234203d3e203633303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.143.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:a5:bf:f3:54:4e:4c:ce:ed:0d:45:eb:ad:76:77:4e:45:39:
5c:8c:cf:e9:16:a7:cf:14:23:1e:87:79:35:cd:d5:9e:02:ec:
e1:e7:b9:e6:ae:81:33:59:33:7e:29:19:55:25:db:fc:00:16:
53:60:63:83:4f:b3:38:a0:d6:50:8f:af:7a:12:7b:15:09:18:
22:45:e7:9c:51:74:c5:86:83:90:c6:48:22:16:58:25:88:97:
44:23:ae:34:11:c2:c9:f1:01:18:19:84:8e:b5:c7:a1:89:06:
d0:f6:b0:bd:2b:bc:b5:9a:ee:41:b8:69:33:bc:51:f1:28:94:
a1:8b:be:e4:16:ae:04:95:47:e9:8b:d7:6d:e2:6a:12:a4:fb:
9d:cd:50:fb:21:d5:30:25:a8:ca:67:57:14:00:24:83:bc:92:
7b:c0:80:f7:49:03:6c:70:c6:fa:be:c7:f9:15:e1:fd:35:f6:
49:d5:86:b2:47:23:54:59:9e:d6:9d:f3:e3:4e:d3:5f:d4:4a:
07:e9:a0:ce:19:2f:cd:5c:36:58:cf:f8:f7:06:28:b1:89:2d:
60:86:17:4f:4c:36:74:41:22:fe:89:4e:ce:dd:31:dd:80:20:
8f:62:ab:4b:23:d9:4d:56:50:35:6e:14:2f:6f:64:fc:f4:dc:
11:51:3e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:13:09 2025 by rpki-client