Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/38302e38332e3138392e302f32342d3234203d3e20333937363330.roa
File: 38302e38332e3138392e302f32342d3234203d3e20333937363330.roa (raw, json)
Hash identifier: buBr0nPzFwtnExYzKZ33K40LR3ws0xsbE+PF1JfUozA=
Subject key identifier: 92:F6:85:84:EE:AF:21:09:C4:71:06:25:1D:A6:9C:42:98:89:B8:FA
Certificate issuer: /CN=78d65d4a22df705beed7b3432fbe48a356597724
Certificate serial: 524A51F0DA5F64FDD8A93196532A6C0C87D255BC
Authority key identifier: 78:D6:5D:4A:22:DF:70:5B:EE:D7:B3:43:2F:BE:48:A3:56:59:77:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/38302e38332e3138392e302f32342d3234203d3e20333937363330.roa
Signing time: Fri 29 Aug 2025 08:14:01 +0000
ROA not before: Fri 29 Aug 2025 08:09:01 +0000
ROA not after: Fri 28 Aug 2026 08:14:01 +0000
asID: 397630
IP address blocks: 80.83.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.crl
rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.mft
rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:4a:51:f0:da:5f:64:fd:d8:a9:31:96:53:2a:6c:0c:87:d2:55:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78d65d4a22df705beed7b3432fbe48a356597724
Validity
Not Before: Aug 29 08:09:01 2025 GMT
Not After : Aug 28 08:14:01 2026 GMT
Subject: CN=92F68584EEAF2109C47106251DA69C429889B8FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:14:5e:c1:20:77:db:e7:36:ab:f8:80:66:82:
f5:33:85:be:6f:b1:5b:a4:c3:86:90:f4:02:1a:e5:
81:0c:f3:bd:52:61:c7:b7:78:da:18:ce:8c:a1:50:
35:b3:4b:9a:c7:b1:05:b0:69:ea:61:01:f3:54:a5:
35:ff:17:b0:b8:bf:63:dd:0d:ad:06:79:35:18:cc:
4e:1b:4a:e6:2c:43:6c:ca:09:c2:b6:bc:12:e0:58:
98:a8:5c:a9:a9:59:97:53:1f:27:e8:fc:62:a6:8f:
37:1a:ae:e9:cd:f9:8c:82:d5:93:b7:f0:af:6b:24:
9d:5c:44:26:d8:74:be:e6:4e:61:6e:3e:57:b6:eb:
10:a8:87:ae:76:2a:46:6d:97:19:b5:e2:49:f8:7e:
99:c3:16:1f:f9:fa:8b:12:a3:76:6b:fe:12:d9:35:
09:84:de:15:7c:0b:ec:6f:50:a3:d6:98:a7:26:0c:
4a:9a:a3:29:af:b7:d0:bd:2a:ad:8e:f6:7a:8a:60:
1e:e9:05:69:5e:af:2e:f6:b5:7a:b0:df:82:6b:5a:
01:be:7c:ba:5d:bc:18:25:b0:ef:70:5c:d5:d1:1a:
92:49:02:b5:1f:a2:c2:f7:3a:06:06:05:1b:a9:9c:
35:6d:96:0a:60:37:85:7b:2b:9b:f1:3a:b7:e6:10:
cf:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F6:85:84:EE:AF:21:09:C4:71:06:25:1D:A6:9C:42:98:89:B8:FA
X509v3 Authority Key Identifier:
keyid:78:D6:5D:4A:22:DF:70:5B:EE:D7:B3:43:2F:BE:48:A3:56:59:77:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/38302e38332e3138392e302f32342d3234203d3e20333937363330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.83.189.0/24
Signature Algorithm: sha256WithRSAEncryption
87:da:7c:42:77:f0:51:78:1b:4a:f3:38:4a:b4:ad:71:66:01:
84:17:f7:d2:34:f9:06:1b:c2:70:4e:66:0e:5b:fc:f0:df:5b:
24:12:44:56:83:39:15:8b:54:f4:7a:9b:97:46:25:6b:c3:a7:
9f:91:09:ec:b4:94:f6:68:e9:26:cf:f3:03:ed:15:09:98:b2:
bb:87:3d:be:b0:4f:67:9a:d0:7d:c5:54:f8:29:88:70:5d:80:
b9:ae:ab:e1:f2:4e:81:c3:8d:b0:a7:73:6b:c8:01:cb:00:6e:
18:0c:0f:20:82:4b:31:3e:94:91:05:13:ad:bd:63:3a:60:04:
6a:af:7e:e4:5e:1f:5b:60:e4:7f:6d:35:3f:b9:f3:58:23:a3:
b3:58:5b:cf:21:ee:4f:68:aa:53:07:b3:a9:70:6b:a1:65:95:
4d:88:1d:04:2d:32:c1:d1:eb:d7:38:55:c1:6f:22:da:dd:1b:
f8:59:0e:6d:d6:3d:90:cf:9e:6b:b8:73:da:f8:fa:73:1c:75:
5c:8f:05:ea:62:6a:f6:ba:96:c8:96:65:06:45:37:7a:2a:31:
04:70:73:f4:9a:4e:90:2e:0d:fc:6e:f0:d5:ff:80:72:fb:65:
1d:42:c1:30:89:4e:0a:12:fc:c1:e5:27:fb:b6:30:a2:9a:66:
74:89:08:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:36:38 2025 by rpki-client