Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/38302e38332e3138312e302f32342d3234203d3e20333937363330.roa
File: 38302e38332e3138312e302f32342d3234203d3e20333937363330.roa (raw, json)
Hash identifier: OtdHCIwh6oEA3WOl2evdhaL7/39oYfqHwe3utcHW5qg=
Subject key identifier: DF:A7:52:4A:47:19:8B:A0:6D:5B:9D:81:AA:7D:D3:3F:59:6D:5D:E0
Certificate issuer: /CN=78d65d4a22df705beed7b3432fbe48a356597724
Certificate serial: 7C6A6D09CC13F41AB330A6A451F4336094B8106D
Authority key identifier: 78:D6:5D:4A:22:DF:70:5B:EE:D7:B3:43:2F:BE:48:A3:56:59:77:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/38302e38332e3138312e302f32342d3234203d3e20333937363330.roa
Signing time: Fri 29 Aug 2025 08:14:02 +0000
ROA not before: Fri 29 Aug 2025 08:09:02 +0000
ROA not after: Fri 28 Aug 2026 08:14:02 +0000
asID: 397630
IP address blocks: 80.83.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.crl
rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.mft
rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:6a:6d:09:cc:13:f4:1a:b3:30:a6:a4:51:f4:33:60:94:b8:10:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78d65d4a22df705beed7b3432fbe48a356597724
Validity
Not Before: Aug 29 08:09:02 2025 GMT
Not After : Aug 28 08:14:02 2026 GMT
Subject: CN=DFA7524A47198BA06D5B9D81AA7DD33F596D5DE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cf:ea:64:ef:10:6f:eb:72:cb:78:39:cb:62:
fb:e3:b6:0e:22:f4:e2:f4:fc:1f:a9:00:f5:1c:4e:
b1:94:d2:e6:eb:84:a8:97:72:20:ec:2d:7b:a9:0f:
a9:ae:c4:69:e8:a4:c1:1b:1f:9e:46:f3:48:83:17:
ff:9c:e0:74:66:0d:56:d9:37:8d:f6:e4:96:21:33:
3f:4e:3f:7f:3a:c2:8f:88:8e:17:e8:26:c2:75:3d:
f1:57:72:91:0b:21:6f:4b:d6:72:5c:95:2f:5c:70:
49:59:90:65:c9:04:6b:68:28:e4:3a:92:77:d2:fa:
b0:d8:0f:c1:6b:e4:99:d9:ad:b9:b9:ea:35:b1:35:
f0:2c:7b:2c:75:03:2f:cd:6e:e7:3e:47:6d:64:ae:
42:8e:ea:1a:b0:85:92:54:66:bb:75:68:8c:4a:46:
08:70:aa:21:9f:3f:80:f1:9e:5d:30:7a:b5:cb:51:
5a:45:82:a6:5d:bb:c8:5b:15:3c:8e:1b:2a:3f:39:
45:6f:29:1a:57:15:b3:63:b7:00:37:ed:ac:f0:6f:
62:09:cf:a5:07:6f:2d:f8:ba:98:7b:21:a1:0f:53:
68:3e:f3:c4:c1:97:59:43:e3:82:f4:fb:f0:ae:47:
ad:2e:8b:51:df:94:e2:28:7f:86:23:4d:da:2f:53:
a0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A7:52:4A:47:19:8B:A0:6D:5B:9D:81:AA:7D:D3:3F:59:6D:5D:E0
X509v3 Authority Key Identifier:
keyid:78:D6:5D:4A:22:DF:70:5B:EE:D7:B3:43:2F:BE:48:A3:56:59:77:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/38302e38332e3138312e302f32342d3234203d3e20333937363330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.83.181.0/24
Signature Algorithm: sha256WithRSAEncryption
12:fb:ef:6b:ae:cb:ea:9f:f4:22:b9:dc:17:7e:36:8d:53:57:
8b:66:e6:03:cb:9d:06:f3:e1:d3:89:76:38:20:30:e2:98:7e:
aa:5e:35:ee:69:18:7e:54:02:6a:d6:2d:ee:82:62:e3:2a:fb:
09:b4:ae:82:a3:db:47:9b:c2:0f:11:8f:5c:95:97:02:58:b5:
8b:44:a5:f4:e6:23:08:d0:f4:4c:07:81:5f:3b:4c:90:95:7e:
ad:11:f6:05:8e:68:ad:e1:d5:00:72:2a:31:5a:7d:47:a1:ac:
f2:a9:c0:1a:03:72:58:62:81:90:13:9e:e8:ed:75:9c:95:d3:
8b:93:66:90:f8:0f:58:7e:8a:36:4e:3c:42:e1:c0:61:44:84:
eb:9c:e5:e8:f1:0f:1a:65:4f:02:30:77:50:84:d2:f0:0c:72:
e7:f5:d4:c2:41:2e:1e:70:0c:af:79:c2:61:fd:fc:08:f7:57:
1a:e4:cd:0e:8c:c4:77:33:a6:33:3f:65:b0:a8:ba:c5:82:a4:
64:07:75:b3:09:4f:8e:40:e7:19:7c:12:6a:18:9e:b7:36:ea:
f6:f0:7d:77:c3:4c:b6:12:ef:64:b3:f9:21:69:bb:f5:61:f4:
83:be:7c:db:7f:62:22:a9:82:e4:ff:d5:90:8a:41:bb:38:74:
9c:80:8c:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:42:31 2025 by rpki-client