Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/3138352e3231332e3234382e302f32342d3234203d3e203239383032.roa
File: 3138352e3231332e3234382e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: TocpFgr3lw4Jm1vyRTcynQHMSP/aSZA84xcK/bfrENk=
Subject key identifier: F2:ED:59:9D:E2:45:50:20:37:2E:71:CE:39:5C:88:77:36:E6:61:1F
Certificate issuer: /CN=0d7ffae300def0876bf84890fb6ea17be841a4d3
Certificate serial: 7C2D6EF919E6B7C2D7E8251C0806AD90C7569CD5
Authority key identifier: 0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/3138352e3231332e3234382e302f32342d3234203d3e203239383032.roa
Signing time: Sun 27 Apr 2025 00:43:32 +0000
ROA not before: Sun 27 Apr 2025 00:38:32 +0000
ROA not after: Sun 26 Apr 2026 00:43:32 +0000
asID: 29802
IP address blocks: 185.213.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl
rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft
rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:2d:6e:f9:19:e6:b7:c2:d7:e8:25:1c:08:06:ad:90:c7:56:9c:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7ffae300def0876bf84890fb6ea17be841a4d3
Validity
Not Before: Apr 27 00:38:32 2025 GMT
Not After : Apr 26 00:43:32 2026 GMT
Subject: CN=F2ED599DE2455020372E71CE395C887736E6611F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:31:05:01:69:f1:c8:90:ec:55:a3:5c:23:1b:
27:f7:28:d9:88:1d:d7:05:67:fa:3c:51:1a:17:95:
d0:06:16:3e:f8:36:c7:1e:d8:41:a8:72:40:a3:f9:
77:ef:e6:f7:37:87:1e:d6:f6:54:db:ee:40:53:d0:
b3:a2:75:42:12:92:fb:87:43:4c:11:24:63:ab:fc:
e8:f0:83:70:93:83:5d:50:69:f7:49:62:91:d1:87:
9a:1a:f9:2a:0e:9c:e3:12:ad:d5:7f:45:84:ae:cb:
ee:f6:8b:d6:77:bc:d2:94:b8:14:2f:eb:03:5a:80:
35:de:e5:a2:b2:88:5f:df:da:7c:15:cc:cc:fb:b1:
b7:8d:ad:4a:5e:0b:b5:3c:9c:f2:9e:89:9a:fd:6b:
b4:af:83:f0:c0:c3:22:ec:03:bd:10:7c:5a:5a:fa:
b1:9b:75:10:dd:f1:3c:43:20:21:ac:9c:b1:eb:43:
38:4f:3f:da:7b:cc:c9:9c:38:26:68:77:1e:46:e8:
e6:b3:a8:ac:ae:9b:03:38:e5:d5:e4:d7:01:f1:83:
f7:80:e9:68:2c:6f:f9:75:ac:4e:0d:6c:17:c1:0d:
41:6a:ba:36:5f:88:cf:0d:3d:91:b8:ed:c2:dd:68:
de:1a:67:de:d5:ed:b7:b8:11:3c:80:d8:f6:db:6f:
f3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:ED:59:9D:E2:45:50:20:37:2E:71:CE:39:5C:88:77:36:E6:61:1F
X509v3 Authority Key Identifier:
keyid:0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/3138352e3231332e3234382e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.248.0/24
Signature Algorithm: sha256WithRSAEncryption
39:94:4e:91:2c:3a:fb:3d:91:2c:1e:0d:bc:d6:db:c1:05:b2:
54:9d:85:cc:a4:1a:26:9b:35:d7:5a:3a:52:ba:00:af:63:46:
29:e1:04:39:07:81:d0:08:bc:4a:eb:3e:df:99:b5:bd:95:87:
dc:35:04:f7:94:70:7a:9e:2e:d0:a4:58:3a:dd:3d:fd:94:b4:
b9:c0:fc:25:ae:03:56:d5:14:c2:b9:c9:dd:c7:54:6a:d6:74:
91:e5:dd:3d:c4:6c:59:33:7a:32:cd:6b:52:94:ab:12:b9:b0:
23:9b:5d:bd:b0:38:17:c0:5f:75:14:78:f2:24:52:a1:f2:78:
f9:92:4b:7f:d7:a8:df:f5:3e:4f:7d:64:6e:db:1b:06:44:a6:
46:7c:f9:57:de:dd:a2:ed:0a:7f:3b:de:8d:e9:b2:c3:cc:90:
be:b1:0e:54:3e:48:3c:69:69:d9:31:55:c4:f0:73:95:ed:9b:
a1:74:d1:d0:f8:8a:55:fa:d0:71:6b:30:66:02:2c:2b:40:3d:
7e:f4:ad:96:18:d4:b3:5d:84:c1:99:ec:d0:be:8d:f4:c2:38:
d1:6d:45:3c:d3:c9:25:5d:8a:c2:25:90:01:ca:23:01:f8:ac:
3c:75:e5:6a:50:d0:f5:8e:66:9e:01:07:23:e7:17:88:11:8a:
6f:62:e1:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:14:51 2025 by rpki-client