Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234322e302f32342d3234203d3e203631333137.roa
File: 34352e3134352e3234322e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: pTg06oxajXpI71ZXI8g/lx5GH1NCIopoua34IGLJlFw=
Subject key identifier: E5:31:D9:B0:3F:A5:CB:03:1C:26:4B:FE:C1:FE:73:E8:4A:EC:61:DD
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 25D352A023B46DCF90AE04437184E3460E0A24BB
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234322e302f32342d3234203d3e203631333137.roa
Signing time: Wed 30 Jul 2025 13:54:13 +0000
ROA not before: Wed 30 Jul 2025 13:49:13 +0000
ROA not after: Wed 29 Jul 2026 13:54:13 +0000
asID: 61317
IP address blocks: 45.145.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 31 Jul 2025 15:09:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:d3:52:a0:23:b4:6d:cf:90:ae:04:43:71:84:e3:46:0e:0a:24:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Jul 30 13:49:13 2025 GMT
Not After : Jul 29 13:54:13 2026 GMT
Subject: CN=E531D9B03FA5CB031C264BFEC1FE73E84AEC61DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b5:59:92:5b:f9:ac:55:04:eb:b1:1f:b7:96:
a1:ed:70:df:cc:df:87:f9:dc:68:1b:1d:f5:21:b7:
26:bb:f9:73:7a:6b:9e:a3:41:f3:9b:3d:21:b8:f2:
ff:7d:60:70:8e:0b:89:e0:46:01:dd:ed:1a:43:82:
87:b2:8e:c8:37:be:8b:46:a5:6f:fc:11:b6:02:27:
ae:ac:6e:1b:4b:6c:e2:90:7b:db:28:9e:0f:38:0e:
9b:d8:66:8b:17:7f:23:47:11:31:49:5f:54:03:fd:
0a:70:3d:a3:34:70:8f:84:bf:e0:ee:1a:c1:d8:d3:
bd:bd:56:86:87:3a:4e:ea:36:96:f7:f6:5a:c8:d9:
0d:63:67:e3:21:fb:94:77:cc:f8:c6:af:25:62:bd:
6c:85:fc:28:5c:94:1d:c9:20:33:d1:e9:01:00:ce:
3e:49:de:6c:d4:b4:89:55:b2:14:cd:9a:36:cd:3c:
ff:a2:2f:45:c5:50:8e:af:87:40:f2:32:f1:12:c6:
49:a5:12:31:13:be:9c:94:69:10:01:40:93:26:5b:
cd:cb:f2:a7:f7:69:fa:fa:af:a5:cb:a9:64:d2:44:
9b:c4:06:22:d9:7c:be:ed:36:2a:9f:49:76:38:f8:
ee:6f:27:8b:09:75:3c:e3:5f:4b:58:1e:af:0c:07:
92:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:31:D9:B0:3F:A5:CB:03:1C:26:4B:FE:C1:FE:73:E8:4A:EC:61:DD
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234322e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.242.0/24
Signature Algorithm: sha256WithRSAEncryption
41:c3:3f:a2:2f:b8:46:79:f4:e0:e2:d6:4f:de:0b:ad:99:61:
77:dd:df:9c:c9:8c:0c:bf:70:8d:cc:66:b1:11:cf:10:95:2a:
d7:96:bb:a5:29:10:ae:77:ab:98:81:13:06:c4:42:cc:64:fd:
c9:ce:d0:51:d2:c1:4f:d5:79:1e:dd:79:b9:65:09:c8:cf:ec:
c6:b7:39:ea:4d:93:97:a7:18:3f:d3:de:b9:b4:07:43:df:0d:
6b:55:1c:87:15:c4:63:8e:53:fd:30:ea:b5:d9:04:c6:92:6f:
7f:d7:0e:d5:58:fb:7c:13:4e:62:04:ea:92:fb:24:ad:cf:b1:
ec:f5:99:8e:ed:0a:97:fd:6d:fe:9e:00:80:05:e4:01:ea:fe:
d6:60:f3:94:0c:fd:79:91:1d:d0:d8:a5:8e:56:ce:b0:f7:e6:
6e:1e:09:d6:bc:ca:a5:38:c9:14:60:dd:9f:72:b4:78:98:0d:
34:ab:a5:21:80:30:aa:6d:50:c9:21:da:f6:90:7a:8e:31:85:
46:2b:d4:c7:2a:08:84:21:7a:ba:9b:39:e4:ee:97:52:9a:11:
b5:6c:47:17:85:7b:0c:60:05:97:d1:bc:52:ac:f0:23:82:84:
05:13:e5:6e:6c:18:cd:30:f9:c0:03:78:af:fb:bc:58:36:96:
15:0b:aa:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 00:19:38 2025 by rpki-client