Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/3138352e35352e38332e302f32342d3234203d3e20323135333034.roa
File: 3138352e35352e38332e302f32342d3234203d3e20323135333034.roa (raw, json)
Hash identifier: PnN+57bozSHdWFkbA1ybh7RNeGA5AtI46mBnx5Wb0e0=
Subject key identifier: B7:24:20:64:64:66:FA:74:F0:86:03:47:A1:C1:65:A9:F7:DD:24:46
Certificate issuer: /CN=edb9f3e6d8e4b57c49301aa621ef1f90389e057a
Certificate serial: 657D070CED84CC4738FA6FE9C4508D236FE8015C
Authority key identifier: ED:B9:F3:E6:D8:E4:B5:7C:49:30:1A:A6:21:EF:1F:90:38:9E:05:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bnz5tjktXxJMBqmIe8fkDieBXo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/3138352e35352e38332e302f32342d3234203d3e20323135333034.roa
Signing time: Fri 21 Feb 2025 16:41:14 +0000
ROA not before: Fri 21 Feb 2025 16:36:14 +0000
ROA not after: Fri 20 Feb 2026 16:41:14 +0000
asID: 215304
IP address blocks: 185.55.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/EDB9F3E6D8E4B57C49301AA621EF1F90389E057A.crl
rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/EDB9F3E6D8E4B57C49301AA621EF1F90389E057A.mft
rsync://rpki.ripe.net/repository/DEFAULT/7bnz5tjktXxJMBqmIe8fkDieBXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:7d:07:0c:ed:84:cc:47:38:fa:6f:e9:c4:50:8d:23:6f:e8:01:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb9f3e6d8e4b57c49301aa621ef1f90389e057a
Validity
Not Before: Feb 21 16:36:14 2025 GMT
Not After : Feb 20 16:41:14 2026 GMT
Subject: CN=B72420646466FA74F0860347A1C165A9F7DD2446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7d:0c:80:44:a3:ea:f4:7d:d2:67:7d:df:16:
a9:71:5f:3f:1f:49:34:bf:e5:3d:03:a8:11:8c:83:
f8:e3:f4:93:29:90:2a:5a:87:c6:4f:d6:ec:54:eb:
3b:47:5a:f4:e4:b4:68:ce:04:4c:e0:63:76:b3:0a:
34:e5:fa:b7:04:12:06:99:4e:2b:99:a7:d2:fa:e9:
41:0f:ef:8a:86:f5:7b:56:76:31:78:61:66:6b:1a:
43:72:80:70:ba:ec:0d:8b:80:e6:c9:98:ab:6e:d1:
fd:6b:5a:3f:17:51:01:96:8d:71:97:bf:f0:e7:2f:
77:f3:43:5a:40:06:00:ee:b7:20:e5:96:70:a4:58:
15:93:ff:60:83:71:f4:94:b6:60:ac:63:57:a0:37:
30:87:1e:26:f4:73:52:a9:73:93:4d:b9:4b:dd:ea:
ec:ea:0a:b0:77:85:ff:9b:ae:db:91:0f:d4:dc:28:
ed:6f:4a:06:03:f4:98:b1:ba:71:4c:3d:ce:0e:da:
2d:29:dc:72:56:37:44:97:c1:89:19:3f:90:5f:56:
3f:85:9f:ef:73:d5:36:5d:0d:e6:23:31:c8:a3:ba:
ea:d0:ad:ff:99:8d:8d:ad:f5:f5:df:c0:15:94:29:
13:93:c6:c6:31:79:82:8c:14:8a:41:1f:00:f5:bb:
95:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:24:20:64:64:66:FA:74:F0:86:03:47:A1:C1:65:A9:F7:DD:24:46
X509v3 Authority Key Identifier:
keyid:ED:B9:F3:E6:D8:E4:B5:7C:49:30:1A:A6:21:EF:1F:90:38:9E:05:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/EDB9F3E6D8E4B57C49301AA621EF1F90389E057A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bnz5tjktXxJMBqmIe8fkDieBXo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/3138352e35352e38332e302f32342d3234203d3e20323135333034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.55.83.0/24
Signature Algorithm: sha256WithRSAEncryption
34:ac:f8:76:79:b9:05:4b:54:6b:7d:49:3a:82:97:23:3b:b6:
da:10:24:6a:0a:af:34:c8:ab:9b:ce:a9:a0:b6:43:3f:0c:1b:
be:49:1c:9f:4e:c1:d9:7c:5a:5e:e5:08:fa:85:8b:d4:4c:28:
09:a9:f0:e9:3f:05:25:eb:54:e6:76:ff:a4:a3:6a:80:f1:24:
16:32:33:67:0a:0a:f1:5d:c6:a6:a6:0f:74:03:50:9c:8e:34:
b5:4f:38:a0:99:14:db:53:85:11:1a:b1:22:f0:e8:83:19:58:
35:0c:70:52:88:72:ed:b6:b7:0d:8d:44:ce:bc:6e:ca:24:ba:
5f:fa:5a:ac:5f:08:c0:03:01:71:e5:9d:d3:29:76:60:17:3d:
48:c4:4d:53:73:b2:43:d5:b9:40:89:99:5e:1d:03:a2:39:3b:
0d:8a:92:37:59:5e:48:fd:24:60:c9:67:db:44:9b:29:88:9a:
81:9b:ba:79:19:77:36:c9:89:d1:19:2a:fc:5e:d2:39:65:82:
18:34:bf:48:f7:5d:cb:6f:ae:28:3f:68:c8:e0:41:d8:2a:5e:
92:83:63:ad:9f:66:26:a5:51:d4:70:5f:0e:11:d7:e4:ce:5f:
da:3d:6d:f5:a4:4d:b9:42:47:98:69:5e:c7:8e:c8:7f:f2:ae:
d0:0a:9e:93
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUZX0HDO2EzEc4+m/pxFCNI2/oAVwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZWRiOWYzZTZkOGU0YjU3YzQ5MzAxYWE2MjFlZjFmOTAz
ODllMDU3YTAeFw0yNTAyMjExNjM2MTRaFw0yNjAyMjAxNjQxMTRaMDMxMTAvBgNV
BAMTKEI3MjQyMDY0NjQ2NkZBNzRGMDg2MDM0N0ExQzE2NUE5RjdERDI0NDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDafQyARKPq9H3SZ33fFqlxXz8f
STS/5T0DqBGMg/jj9JMpkCpah8ZP1uxU6ztHWvTktGjOBEzgY3azCjTl+rcEEgaZ
TiuZp9L66UEP74qG9XtWdjF4YWZrGkNygHC67A2LgObJmKtu0f1rWj8XUQGWjXGX
v/DnL3fzQ1pABgDutyDllnCkWBWT/2CDcfSUtmCsY1egNzCHHib0c1Kpc5NNuUvd
6uzqCrB3hf+brtuRD9TcKO1vSgYD9JixunFMPc4O2i0p3HJWN0SXwYkZP5BfVj+F
n+9z1TZdDeYjMcijuurQrf+ZjY2t9fXfwBWUKROTxsYxeYKMFIpBHwD1u5WvAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUtyQgZGRm+nTwhgNHocFlqffdJEYwHwYDVR0j
BBgwFoAU7bnz5tjktXxJMBqmIe8fkDieBXowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmNmYTRhMmMtZTE0NS00MTRkLWE2MmYtMDlhM2Y5YjU3
NWZkLzAvRURCOUYzRTZEOEU0QjU3QzQ5MzAxQUE2MjFFRjFGOTAzODlFMDU3QS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdibno1dGprdFh4Sk1CcW1JZThma0Rp
ZUJYby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmNmYTRhMmMt
ZTE0NS00MTRkLWE2MmYtMDlhM2Y5YjU3NWZkLzAvMzEzODM1MmUzNTM1MmUzODMz
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM1MzMzMDM0LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
uTdTMA0GCSqGSIb3DQEBCwUAA4IBAQA0rPh2ebkFS1RrfUk6gpcjO7baECRqCq80
yKubzqmgtkM/DBu+SRyfTsHZfFpe5Qj6hYvUTCgJqfDpPwUl61Tmdv+ko2qA8SQW
MjNnCgrxXcampg90A1CcjjS1TzigmRTbU4URGrEi8OiDGVg1DHBSiHLttrcNjUTO
vG7KJLpf+lqsXwjAAwFx5Z3TKXZgFz1IxE1Tc7JD1blAiZleHQOiOTsNipI3WV5I
/SRgyWfbRJspiJqBm7p5GXc2yYnRGSr8XtI5ZYIYNL9I913Lb64oP2jI4EHYKl6S
g2Otn2YmpVHUcF8OEdfkzl/aPW31pE25QkeYaV7Hjsh/8q7QCp6T
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:35:33 2025 by rpki-client