Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34312e302f32342d3234203d3e203439363038.roa
File: 3138352e3235302e34312e302f32342d3234203d3e203439363038.roa (raw, json)
Hash identifier: LBV8F/iD30s0hCk74chhKHNekeGmi8j1ngokGHn2u2A=
Subject key identifier: 68:07:31:6B:B9:34:32:48:FA:6C:5A:47:9E:C9:4E:7A:28:1C:6A:3A
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 6F53EED68B8425834AD7E21FBD74FADAC2B3E7C7
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34312e302f32342d3234203d3e203439363038.roa
Signing time: Sun 16 Feb 2025 15:53:55 +0000
ROA not before: Sun 16 Feb 2025 15:48:55 +0000
ROA not after: Sun 15 Feb 2026 15:53:55 +0000
asID: 49608
IP address blocks: 185.250.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:53:ee:d6:8b:84:25:83:4a:d7:e2:1f:bd:74:fa:da:c2:b3:e7:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Feb 16 15:48:55 2025 GMT
Not After : Feb 15 15:53:55 2026 GMT
Subject: CN=6807316BB9343248FA6C5A479EC94E7A281C6A3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:37:f1:59:5f:2d:ec:53:1b:f3:ad:63:93:c0:
71:11:0f:94:ef:67:7f:bf:47:a9:c5:cb:41:59:1d:
44:01:70:db:eb:35:4e:ae:b7:a1:1f:cd:92:0c:0d:
04:1c:6a:e3:f4:19:24:72:ca:ed:a1:9d:dc:7e:a0:
68:e0:4b:c0:42:89:16:38:fb:ba:98:fd:fc:53:d3:
a6:5f:8c:4d:70:54:5c:76:19:e8:4f:5c:e8:c0:03:
c5:dd:6b:37:5a:b5:f1:e3:96:07:c3:11:a8:0b:07:
ff:43:d5:8b:6a:6f:e7:c8:a6:7d:51:ca:dc:21:20:
c4:94:d5:e8:a2:a9:2c:da:ae:d2:ab:3a:ed:8e:ca:
a8:6c:82:97:6e:bd:fd:87:5b:30:d2:e4:fd:c4:01:
e4:2e:51:f8:5b:9a:9d:0a:65:95:d6:24:15:52:7f:
fd:66:fd:5a:6a:04:cc:3a:87:d5:2b:76:9c:28:9c:
8f:30:85:23:a4:f1:7a:a7:b9:b7:c8:73:52:b1:0c:
61:7f:94:4d:f4:e4:6a:8b:04:b8:86:10:e8:34:da:
cd:1e:e2:73:5d:d9:fe:0f:1d:8c:82:83:bd:f1:c8:
34:bb:3b:c3:06:39:bd:be:30:c5:c3:23:cd:e3:19:
53:b8:c9:19:67:42:3f:32:e6:b3:48:ad:c3:50:37:
83:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:07:31:6B:B9:34:32:48:FA:6C:5A:47:9E:C9:4E:7A:28:1C:6A:3A
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34312e302f32342d3234203d3e203439363038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.41.0/24
Signature Algorithm: sha256WithRSAEncryption
57:81:68:0c:ff:ec:b1:6c:73:d3:f9:ef:01:7f:04:95:f1:1a:
81:de:6f:7f:73:43:e0:a5:bd:d2:f5:99:e8:84:12:81:e8:44:
45:b0:82:ce:44:8f:b3:94:3d:7b:0b:0d:d5:ee:f6:72:82:32:
97:ad:44:31:c8:9a:81:48:42:28:4b:21:f7:21:cb:df:50:ac:
ab:db:47:d4:a7:d7:eb:33:79:d3:80:c2:73:12:c2:23:2e:60:
0e:29:43:e8:69:60:f3:92:fe:24:c3:1e:41:11:e7:7f:97:9c:
9f:ae:60:58:94:59:48:72:7e:26:85:eb:fe:be:bc:0d:7e:64:
cd:ef:22:9e:bf:9e:42:7b:16:50:4c:a2:c0:a2:4c:af:2e:fb:
e2:a2:23:06:8f:ba:03:0b:3f:7f:4e:80:ec:bb:16:29:d1:7e:
b4:e2:6c:1d:61:f1:9c:86:e9:34:2f:39:3b:f4:c8:e5:64:af:
5b:5c:9c:18:8a:c5:99:11:af:ef:a1:5c:b7:c1:1e:ef:9f:ad:
b5:3a:a7:5e:bb:88:aa:1d:b0:6b:4b:e4:f9:a8:7b:4a:d1:29:
d2:0d:cd:f6:96:d1:45:d3:d4:df:0f:5b:09:4d:53:74:c4:7a:
82:8c:a9:b8:f9:81:53:4d:f9:86:f0:10:04:d1:b7:e3:80:fc:
3b:94:fd:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:20:31 2025 by rpki-client