Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/38302e38332e3138342e302f32322d3232203d3e203539373136.roa
File: 38302e38332e3138342e302f32322d3232203d3e203539373136.roa (raw, json)
Hash identifier: olHSbZHs/2t98PZjXMrMMRiZVSEe6IbSK97ATG0UHJ0=
Subject key identifier: E2:14:FA:48:D0:08:DD:CC:4D:E3:82:88:F3:68:91:F3:CA:C7:7A:FA
Certificate issuer: /CN=78d65d4a22df705beed7b3432fbe48a356597724
Certificate serial: 37303B7F466A1F8E7E047206ED486E9ED6501987
Authority key identifier: 78:D6:5D:4A:22:DF:70:5B:EE:D7:B3:43:2F:BE:48:A3:56:59:77:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/38302e38332e3138342e302f32322d3232203d3e203539373136.roa
Signing time: Fri 29 Aug 2025 08:14:02 +0000
ROA not before: Fri 29 Aug 2025 08:09:02 +0000
ROA not after: Fri 28 Aug 2026 08:14:02 +0000
asID: 59716
IP address blocks: 80.83.184.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.crl
rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.mft
rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 01:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:30:3b:7f:46:6a:1f:8e:7e:04:72:06:ed:48:6e:9e:d6:50:19:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78d65d4a22df705beed7b3432fbe48a356597724
Validity
Not Before: Aug 29 08:09:02 2025 GMT
Not After : Aug 28 08:14:02 2026 GMT
Subject: CN=E214FA48D008DDCC4DE38288F36891F3CAC77AFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ed:39:83:9b:50:44:d3:f7:33:6c:75:18:90:
0a:8b:5e:8e:52:8e:c7:ac:cb:a8:f9:cc:8d:3e:b9:
71:de:b0:34:12:28:e9:61:20:c4:ee:be:bf:48:46:
0f:48:9d:8c:da:2c:84:f5:3b:58:97:a8:75:9f:ad:
f1:ec:3d:f6:13:5d:3d:02:a3:42:a3:76:24:29:16:
f1:81:15:f9:2a:fd:87:ef:0b:85:bf:a8:e3:83:7b:
92:7d:85:39:87:a4:52:52:94:05:a8:8e:eb:ca:d0:
9e:1a:dd:e0:e8:1a:3e:d9:12:5d:67:a8:b6:b3:9f:
63:d5:d4:e9:2e:41:69:8a:6e:32:94:26:b2:dc:33:
e2:48:9f:1d:44:c2:71:36:f2:89:d4:1a:18:5b:3a:
e6:95:9d:fb:c4:2f:39:50:61:41:a8:90:4e:17:ed:
38:dd:d7:b7:74:aa:8e:03:46:78:93:92:b0:0f:22:
81:e2:3a:d0:42:5f:53:9e:9d:3f:ef:b8:a4:ba:35:
27:94:1d:8c:a4:c5:e2:b2:77:0a:4c:ce:13:e0:d1:
9b:15:db:b0:dc:75:f3:00:d9:cb:14:8f:9e:a9:44:
ce:51:5c:bf:3d:2d:84:2a:37:ae:38:9a:e0:f7:5c:
86:fe:0b:ac:84:8e:e9:ee:a1:aa:0f:f6:98:0a:a9:
95:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:14:FA:48:D0:08:DD:CC:4D:E3:82:88:F3:68:91:F3:CA:C7:7A:FA
X509v3 Authority Key Identifier:
keyid:78:D6:5D:4A:22:DF:70:5B:EE:D7:B3:43:2F:BE:48:A3:56:59:77:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/38302e38332e3138342e302f32322d3232203d3e203539373136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.83.184.0/22
Signature Algorithm: sha256WithRSAEncryption
90:c2:40:d1:6b:91:9e:9d:a0:a1:05:72:e8:76:4e:d7:46:26:
45:dd:2b:95:85:aa:ed:c0:eb:8b:d2:c4:af:31:dc:d4:8c:6b:
41:d9:53:30:2a:b1:85:80:00:55:b2:86:63:48:67:7c:af:8d:
8a:c8:51:ff:44:76:78:3e:72:b7:c6:8d:69:99:cd:31:79:44:
44:92:cf:9b:21:c9:4a:f0:1d:fd:6e:bd:a5:ca:08:4a:6c:e6:
0d:a5:f1:6e:bb:ce:ec:f5:dc:0b:24:3f:bb:ba:4c:3e:7a:de:
e7:0b:15:85:ff:5a:f6:0f:90:c8:88:96:47:b1:a6:86:b1:b9:
8e:e0:44:f9:94:d6:0a:1f:9a:50:3f:29:4c:aa:87:7d:37:a9:
f5:df:99:43:da:a3:18:d8:cb:2a:9b:04:c2:6c:5b:7b:45:25:
ea:c1:a9:99:ff:bc:9d:88:2c:d4:be:ba:0b:c6:3a:c7:5f:8d:
1f:9e:43:d7:54:df:ea:fc:27:c7:ca:12:1d:d9:03:2e:e0:e7:
34:1b:69:63:2a:43:73:3d:e4:a7:25:ae:00:09:fb:9a:ec:9b:
cf:80:98:34:8d:44:c3:d2:01:cc:5c:c5:03:07:25:c9:72:89:
33:c2:94:e5:0b:af:57:0d:c0:f8:f7:49:84:6e:a0:a0:ec:7d:
38:b0:27:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 06:09:56 2025 by rpki-client