Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235342e302f32342d3234203d3e20313432313131.roa
File: 37372e38332e3235342e302f32342d3234203d3e20313432313131.roa (raw, json)
Hash identifier: 5E5ubEnGmxuDRTB/crq4AEPdYVHLSryiOVVydmorIJQ=
Subject key identifier: E7:DE:CF:16:B5:D0:85:11:7F:5F:8E:92:BD:47:93:42:47:41:33:05
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 7FB9E1488695980F8625DD8D8C221268A5B17B0E
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235342e302f32342d3234203d3e20313432313131.roa
Signing time: Mon 30 Jun 2025 21:08:34 +0000
ROA not before: Mon 30 Jun 2025 21:03:34 +0000
ROA not after: Mon 29 Jun 2026 21:08:34 +0000
asID: 142111
IP address blocks: 77.83.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 09:21:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:b9:e1:48:86:95:98:0f:86:25:dd:8d:8c:22:12:68:a5:b1:7b:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Jun 30 21:03:34 2025 GMT
Not After : Jun 29 21:08:34 2026 GMT
Subject: CN=E7DECF16B5D085117F5F8E92BD47934247413305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4e:e9:16:ff:ee:77:9e:eb:56:64:5b:63:ff:
3a:94:90:0b:b3:47:1b:48:f9:6d:59:da:1b:21:25:
a3:e4:ae:be:90:6a:0d:67:50:61:95:28:82:16:33:
cf:42:ab:71:78:b4:bd:81:5a:67:0a:fb:99:1b:78:
4d:16:86:e0:b9:05:45:3b:e0:7d:7d:ff:c8:79:d2:
be:35:f4:55:89:2b:07:e0:bd:6c:33:ce:f7:95:54:
97:01:2e:7e:47:09:bf:ff:d6:48:8d:d7:38:cb:c2:
33:08:d9:42:0d:51:ea:6c:b2:b1:b6:44:76:6b:6a:
4f:0f:6a:0f:bb:2f:01:49:31:d6:e8:f9:e2:f4:6d:
05:47:7b:e6:09:46:fa:53:ee:46:56:0d:25:71:d3:
8c:f8:cf:58:20:cf:fa:8a:81:1f:2a:68:4d:db:ff:
38:6b:f2:f4:a1:fd:d4:3f:17:ed:5e:47:a1:76:18:
6e:03:01:0b:49:a6:34:d5:2f:0f:13:e2:c8:ef:0a:
0f:2a:d6:66:a7:ab:71:41:e2:17:09:aa:96:d6:af:
13:5d:95:f7:7a:e8:a9:fd:79:3b:aa:71:2f:b0:9e:
55:f0:5b:cb:49:7b:ff:26:e1:3c:10:4a:28:0c:ef:
2d:4c:1d:9f:b3:5e:09:72:4d:d0:17:c4:21:c1:e3:
c2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:DE:CF:16:B5:D0:85:11:7F:5F:8E:92:BD:47:93:42:47:41:33:05
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235342e302f32342d3234203d3e20313432313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.254.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:d1:26:40:64:fd:7f:ef:b0:58:9e:2d:5f:6b:da:40:36:b0:
ec:ac:a4:b5:62:ba:31:59:79:5c:96:8c:9f:71:75:95:3c:85:
79:e6:45:3c:7f:62:35:54:9f:51:76:22:7e:9c:e2:d7:46:b9:
ae:c1:c7:0f:f2:21:b4:af:ff:7e:08:8a:e1:69:ba:1e:36:33:
c9:85:8e:ca:23:dd:97:5c:95:b5:9e:0c:63:61:6f:a1:96:89:
10:f2:00:1b:62:5c:a8:b1:42:85:f4:ad:ca:4f:e4:14:b2:3e:
06:50:71:99:1e:10:b2:d3:02:af:41:fe:bb:a1:2a:f7:75:4a:
5a:c3:31:fd:cc:7c:fd:e1:21:d0:93:81:84:2e:ae:27:5a:8a:
1b:a4:3d:66:56:18:1d:de:f8:df:40:db:ab:a7:2e:f4:fc:c6:
c0:98:bb:19:6a:0b:7d:dc:23:41:fd:62:6c:17:1b:45:05:62:
c4:01:e8:45:c8:a7:89:8c:af:39:68:21:b9:5a:9a:d5:30:35:
e0:0d:44:19:01:99:b1:a9:30:4c:f3:9a:4c:b6:df:b7:71:c3:
a9:e2:a2:2a:52:fc:d7:f3:03:6a:b8:dd:0c:a0:0d:d8:f6:67:
6f:ac:b9:51:01:d1:eb:c0:10:32:1a:83:6f:c1:4c:bd:13:55:
1f:5c:c2:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 19:46:43 2025 by rpki-client