Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37392e302f32342d3234203d3e203630343538.roa
File: 3138352e3132352e37392e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: chFrGzVrsGDgHbR9U302S1vgNYtyu8hjjwKJPtAYWHA=
Subject key identifier: 98:1A:BC:E6:0E:D1:65:1A:E7:1B:6D:1A:02:A8:49:04:35:13:9F:8B
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 41862BD32F6309AE3C0C91CC05EC224D98A06C2D
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37392e302f32342d3234203d3e203630343538.roa
Signing time: Mon 05 May 2025 06:54:06 +0000
ROA not before: Mon 05 May 2025 06:49:06 +0000
ROA not after: Mon 04 May 2026 06:54:06 +0000
asID: 60458
IP address blocks: 185.125.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:86:2b:d3:2f:63:09:ae:3c:0c:91:cc:05:ec:22:4d:98:a0:6c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: May 5 06:49:06 2025 GMT
Not After : May 4 06:54:06 2026 GMT
Subject: CN=981ABCE60ED1651AE71B6D1A02A8490435139F8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fd:79:4a:ba:b6:39:5a:a6:2e:22:2f:2e:3f:
78:00:ab:0a:59:fc:a6:b9:d9:f0:0e:b3:b3:c5:46:
f7:73:93:89:0a:5e:af:5f:09:5f:99:ec:ca:86:80:
3e:65:6b:2e:4a:3f:ff:ec:04:2f:88:19:51:98:5f:
5f:93:ea:03:3f:89:81:17:63:6c:dd:32:92:6d:39:
52:e1:b3:98:b1:0d:16:bc:5b:01:11:20:7f:34:5c:
e2:2d:bd:c3:e8:a9:23:24:0b:2a:30:6f:f3:24:0d:
d5:af:76:f0:fb:4c:1b:9a:22:a3:d7:96:c4:62:42:
9a:2d:cc:0a:e4:77:db:82:ef:39:03:17:8e:70:a1:
1f:24:f6:64:c6:33:fb:f6:bb:da:06:0f:c0:e8:85:
4f:ce:dd:22:98:63:01:e8:6a:31:dd:64:dc:45:11:
f2:c7:70:03:7f:c4:35:00:65:27:19:a3:d6:d5:49:
66:90:ee:af:63:77:bf:f8:d3:7e:c6:ea:df:27:67:
66:db:93:13:d2:56:83:a8:02:36:a1:bb:ec:6e:d9:
36:45:a6:b4:d8:00:78:c1:b2:08:27:17:c3:72:ac:
1c:7d:cd:f1:b7:af:2c:b3:0d:14:85:10:47:11:47:
38:10:d1:05:5b:cb:fa:09:63:34:5e:97:fb:67:4e:
d9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1A:BC:E6:0E:D1:65:1A:E7:1B:6D:1A:02:A8:49:04:35:13:9F:8B
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37392e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.79.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:f5:13:ea:eb:53:32:7f:e7:80:de:07:d0:51:30:ee:8b:7d:
f7:3f:d1:c1:80:33:e0:28:41:ee:94:3c:24:3f:a5:ee:77:a1:
06:8d:e2:bb:41:2a:5f:26:54:10:ac:b0:07:87:91:3c:35:2c:
a2:cd:0d:21:1a:11:02:3b:21:18:f5:22:45:22:5d:3b:53:9e:
7b:98:45:3d:fe:b7:55:99:29:88:8d:c6:38:fb:59:1b:11:3c:
56:34:81:7e:a8:57:6f:55:42:a7:30:7e:ba:f9:35:6a:96:9d:
a1:81:3f:6e:ed:5c:49:3c:9d:1a:2c:56:45:8b:d2:ed:e5:4d:
61:fb:a1:f8:1e:cf:31:d1:8f:8f:ed:f1:4f:4f:d6:81:5a:f7:
c0:cd:25:f9:f6:1e:db:41:4c:ea:62:5c:2c:23:9a:58:57:38:
b9:8f:8c:61:d7:5c:2f:dd:d9:e5:e0:43:f6:31:43:42:7f:ba:
fe:5f:a6:ed:87:fd:d3:41:11:a7:48:8b:55:b9:be:af:e8:1b:
4a:cf:07:37:d1:5b:73:94:00:c0:9a:84:37:85:22:00:fe:03:
cb:f0:c7:e6:da:07:27:66:08:f9:87:68:c2:96:75:55:9f:e8:
ae:8f:7c:bc:52:9d:8d:44:d1:ad:1d:d5:5c:68:c6:51:f7:3e:
19:69:0b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 19:33:03 2025 by rpki-client