Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235342e302f32342d3234203d3e20313532363732.roa
File: 37372e38332e3235342e302f32342d3234203d3e20313532363732.roa (raw, json)
Hash identifier: OF3wSP3yuy0C/T5Z9SXU/JklI6k6e/1ZBs+Z/EFeASc=
Subject key identifier: E1:29:3C:70:6C:60:8D:2A:2D:0B:57:45:A1:2B:02:59:3B:5A:84:C6
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 65D0AB804B958635A738D4E5071902D3553197B9
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235342e302f32342d3234203d3e20313532363732.roa
Signing time: Mon 30 Jun 2025 12:45:53 +0000
ROA not before: Mon 30 Jun 2025 12:40:53 +0000
ROA not after: Mon 29 Jun 2026 12:45:53 +0000
asID: 152672
IP address blocks: 77.83.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:d0:ab:80:4b:95:86:35:a7:38:d4:e5:07:19:02:d3:55:31:97:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Jun 30 12:40:53 2025 GMT
Not After : Jun 29 12:45:53 2026 GMT
Subject: CN=E1293C706C608D2A2D0B5745A12B02593B5A84C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2d:65:5c:8d:d7:32:65:a3:51:f3:09:84:45:
a7:dd:d3:2d:96:f3:56:14:32:5e:47:a5:5a:ab:e2:
ed:74:c5:12:49:3d:42:ab:08:26:64:6c:04:bb:fe:
e3:53:52:9e:aa:69:e0:3c:89:f0:23:eb:09:5b:f0:
66:85:cf:64:9d:3d:67:8a:60:63:47:30:f3:eb:16:
1e:26:b2:d7:ce:88:f4:62:c1:30:2b:18:2f:ba:10:
d7:bd:e1:0b:03:52:89:f6:85:89:0f:cd:ef:ca:14:
11:d8:fc:45:27:da:dc:86:c2:82:f2:ee:41:fb:8b:
1c:43:12:8e:ff:fa:73:ac:41:8c:c6:ab:2f:6a:e2:
42:96:62:97:4b:e2:1a:6f:d7:c8:5d:b4:9e:84:e7:
22:60:ed:0b:4e:84:34:65:f1:cd:90:91:fa:7d:03:
f0:3b:69:2f:94:44:e1:17:51:8c:7b:d2:1a:c3:72:
7d:0e:72:cb:9d:d8:de:c9:71:c5:43:a4:8e:15:23:
0a:f7:34:db:04:03:12:0c:f2:aa:d0:ce:c8:c9:2b:
01:74:44:9f:4e:d9:1d:e0:9e:7c:77:16:d9:5b:8e:
d8:37:1f:c7:90:6a:d7:7e:c4:f3:aa:97:10:91:7f:
6a:22:52:51:dc:57:79:f0:d6:f5:82:74:24:19:2e:
6b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:29:3C:70:6C:60:8D:2A:2D:0B:57:45:A1:2B:02:59:3B:5A:84:C6
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235342e302f32342d3234203d3e20313532363732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.254.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:f2:d7:a4:54:68:9b:ee:30:51:bf:e1:76:00:e5:78:bf:5a:
5e:74:52:ac:d3:ad:f2:4a:ec:88:bd:4a:28:1a:52:61:76:44:
d5:44:15:c2:9d:e2:d7:c2:2b:31:a9:0c:97:a1:d0:82:da:4c:
dc:72:b6:9a:dc:43:7d:4a:96:aa:17:33:46:c3:73:07:ff:e8:
30:55:d7:b0:ef:82:83:c8:6a:f1:3c:e7:dd:18:0c:cf:5b:46:
5e:6f:61:11:c6:c2:94:2b:dd:51:f0:34:e9:30:af:ed:63:7d:
ac:f3:da:c8:17:4f:73:0f:c5:66:30:ea:3c:08:ca:36:79:74:
f1:07:63:5e:c5:c7:54:5c:9b:ff:e3:a0:17:02:93:39:09:17:
1a:3f:8d:25:95:cb:11:ed:c1:70:d2:aa:6f:d5:bc:65:3a:1e:
d3:9a:0a:27:8c:da:09:b9:5e:75:2f:65:01:b1:40:f3:f6:8b:
c0:12:8e:4a:60:dc:e6:1d:c8:f8:06:de:02:fc:08:ef:6f:c1:
dc:a6:b3:a7:bb:24:54:27:60:31:ae:5c:d2:f8:93:d8:0c:63:
c6:29:bd:36:54:94:9e:04:20:1a:c0:dc:ed:3e:c1:aa:b6:8c:
5d:0c:34:2a:77:0a:e2:d4:b7:1a:99:7a:b8:9f:07:8b:5f:e0:
70:13:6e:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 12:51:35 2025 by rpki-client