Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37342e302f32342d3234203d3e203239383032.roa
File: 3231332e3133392e37342e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: aplL4eWGO1854T22hYUsUkBTP8Rpw5inKqfwVoAi4uA=
Subject key identifier: 87:C4:C8:9F:1E:B0:D6:28:EA:62:C5:66:56:93:4A:AE:E4:2B:CB:9F
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 0147DDF2BCEBA2145D56EC14E7D9FBDD5C0E3A6E
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37342e302f32342d3234203d3e203239383032.roa
Signing time: Wed 26 Feb 2025 00:53:55 +0000
ROA not before: Wed 26 Feb 2025 00:48:55 +0000
ROA not after: Wed 25 Feb 2026 00:53:55 +0000
asID: 29802
IP address blocks: 213.139.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:47:dd:f2:bc:eb:a2:14:5d:56:ec:14:e7:d9:fb:dd:5c:0e:3a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Feb 26 00:48:55 2025 GMT
Not After : Feb 25 00:53:55 2026 GMT
Subject: CN=87C4C89F1EB0D628EA62C56656934AAEE42BCB9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ed:82:86:f0:b1:1b:5d:bc:50:26:4e:c5:a3:
a8:37:a7:48:8a:9b:38:e9:6b:d2:9a:67:7f:d5:51:
55:15:1d:e2:8e:21:a0:31:bd:67:8f:1d:4a:8c:c3:
38:95:f7:63:c8:e6:07:d7:40:30:3d:2a:c5:a7:7b:
b0:62:4e:fd:cd:08:ea:59:60:ab:f5:c0:8b:dc:b4:
7c:56:fe:c8:fb:49:a7:1e:11:ec:79:e4:b6:af:9a:
96:2d:e7:2e:c8:2a:8e:8a:94:95:47:33:ac:27:8e:
12:38:d1:b2:59:90:15:64:66:fb:86:48:94:63:33:
18:b3:20:39:c7:c5:73:a0:73:63:9f:15:fc:17:b2:
77:50:59:fc:c2:23:98:1f:97:4e:cb:2c:c1:ba:92:
66:27:0b:01:78:76:c5:0b:2d:31:30:24:84:4b:c1:
49:9c:c5:9e:82:99:66:82:3e:f7:d6:24:3d:c4:7b:
0f:38:2a:5e:6e:aa:7e:55:19:b0:fe:af:6a:69:09:
56:36:b9:fe:9a:7a:30:6e:d7:14:39:2f:4c:35:33:
bc:8c:3e:d7:00:0d:d3:22:60:b9:fe:19:41:0c:2d:
82:04:6a:c6:cb:dd:16:e8:38:b5:bd:e3:f4:5a:91:
44:b4:0d:ea:5a:9b:f7:16:9e:07:d5:33:eb:7d:71:
65:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C4:C8:9F:1E:B0:D6:28:EA:62:C5:66:56:93:4A:AE:E4:2B:CB:9F
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37342e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.74.0/24
Signature Algorithm: sha256WithRSAEncryption
47:53:c9:c7:60:29:87:36:63:c0:7f:ab:28:ee:20:ba:38:b6:
a7:b1:89:15:08:f3:f4:b9:f2:af:8f:17:fd:37:5d:3d:3e:d0:
fc:53:57:e0:99:d4:02:28:ab:1f:d8:06:39:9e:29:f1:37:83:
9c:aa:33:33:bb:dd:ae:82:24:37:23:e0:75:ba:b5:de:b4:7f:
15:16:3d:b6:57:b3:33:e7:d9:f2:9c:82:d5:4a:07:8c:f9:d1:
81:ec:32:7a:9d:96:a6:b7:41:dc:e3:1e:f6:32:ca:b5:4e:7b:
9b:fd:ed:bc:84:a5:05:d3:3a:2e:ee:51:b0:37:36:43:7f:f5:
ef:28:2e:a3:49:41:80:d4:76:1c:79:2f:18:57:aa:be:40:07:
91:a8:93:1c:48:78:97:ae:29:c6:06:00:02:ec:a3:d6:46:ed:
9b:fc:da:84:df:bd:69:40:a6:6b:f7:fb:79:ab:b8:4d:21:f0:
7d:65:12:2f:42:d0:b4:06:ad:4a:13:ad:f9:a7:42:d1:16:92:
41:25:93:eb:14:06:19:ff:c0:ad:bf:40:43:1a:cd:ad:2a:12:
2f:bb:4a:a3:30:26:52:3d:4a:01:06:30:51:95:82:a4:a6:6f:
9c:b7:37:b7:02:73:bf:22:79:b9:80:07:b9:ca:3a:7b:aa:53:
64:25:52:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:31:23 2025 by rpki-client