Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37352e302f32342d3234203d3e20313939303538.roa
File: 3137382e3234382e37352e302f32342d3234203d3e20313939303538.roa (raw, json)
Hash identifier: 0IUSu+qptfP2e6dJnAny9tG4Cb2xcvVtmtBD0i4piak=
Subject key identifier: 6A:B7:69:75:DE:79:66:78:0A:1E:1D:6F:AA:0C:88:69:48:C4:F6:5E
Certificate issuer: /CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Certificate serial: 5DBC28CCA90550DB7F3EEDF4172495A84783AB3E
Authority key identifier: BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37352e302f32342d3234203d3e20313939303538.roa
Signing time: Tue 18 Feb 2025 17:34:34 +0000
ROA not before: Tue 18 Feb 2025 17:29:34 +0000
ROA not after: Tue 17 Feb 2026 17:34:34 +0000
asID: 199058
IP address blocks: 178.248.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.mft
rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 03:31:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:bc:28:cc:a9:05:50:db:7f:3e:ed:f4:17:24:95:a8:47:83:ab:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Validity
Not Before: Feb 18 17:29:34 2025 GMT
Not After : Feb 17 17:34:34 2026 GMT
Subject: CN=6AB76975DE7966780A1E1D6FAA0C886948C4F65E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5e:cb:a7:9f:0b:3c:88:86:32:5b:5e:ce:0f:
bc:8c:6f:25:1a:1e:da:e9:76:33:41:f8:2d:50:7a:
47:e9:42:5d:40:e5:5d:9c:ea:34:5a:8c:8e:d5:d2:
86:eb:bb:c6:de:32:8b:b8:51:c1:7b:1f:0f:55:e8:
a7:21:c2:2e:33:44:0e:c5:76:b5:ba:2e:03:33:d5:
e2:ae:92:c5:fa:df:46:04:18:fd:ff:5c:56:fc:ba:
a3:d9:a3:b0:b2:40:01:53:84:61:75:07:b3:4e:3e:
9c:ae:7a:9d:fe:df:4f:94:39:71:06:54:ef:6e:b2:
24:de:58:be:40:e3:83:d1:1f:05:95:8f:92:96:4d:
95:21:d6:0a:d3:3a:68:81:96:b5:d0:4c:62:5b:ed:
51:4e:03:3b:e4:09:b4:a7:cf:7f:80:5d:5d:86:f9:
69:ff:af:d6:0b:98:ec:98:43:f7:16:df:54:4a:69:
49:2d:81:4f:b5:69:99:00:3a:96:28:d6:3c:f9:07:
aa:2d:88:d0:0f:cd:82:26:f0:87:26:9f:b0:d2:24:
4c:2a:21:08:82:48:94:e2:46:6c:d2:08:b7:7d:59:
e5:54:ca:6d:a6:ba:2a:65:4b:91:3c:bd:5e:66:43:
de:02:ed:7f:b3:2e:1c:c1:a1:5e:79:a0:bf:62:55:
74:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B7:69:75:DE:79:66:78:0A:1E:1D:6F:AA:0C:88:69:48:C4:F6:5E
X509v3 Authority Key Identifier:
keyid:BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37352e302f32342d3234203d3e20313939303538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.75.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:5d:b2:c9:c0:a7:2c:3e:5a:ae:25:d6:d9:9d:de:06:bf:c9:
13:1b:b4:d1:4c:67:6f:27:c7:91:41:4f:91:52:a4:d9:7b:e1:
92:54:04:46:4c:dd:85:ad:29:0c:c0:ac:4a:3d:1e:06:56:bc:
65:95:83:bb:73:e5:cf:c2:6d:ea:95:41:d4:7c:28:b1:d3:aa:
33:dd:87:23:a3:41:4b:aa:9e:3e:c5:62:7d:df:a2:17:26:ea:
16:e1:68:78:10:0b:ea:39:81:e2:4a:4f:b1:7f:ab:e0:f0:47:
1c:f0:b2:c4:a6:f7:97:64:e7:2e:6a:a5:0d:54:50:82:64:9d:
2e:3f:52:03:89:ac:ad:36:a5:38:d1:70:ac:1e:f2:98:97:63:
ae:16:93:7f:80:99:ac:64:88:d4:bc:9d:13:b5:02:0a:90:1c:
6f:7e:e5:de:7a:11:2b:bb:b0:1b:1a:d3:fe:62:f9:92:61:14:
04:ce:b6:bb:3a:04:52:cb:05:df:1c:5c:2c:be:01:66:99:62:
e1:4c:e1:9f:87:d9:15:97:7f:ac:46:cd:a9:79:b0:78:32:87:
4d:be:5c:8f:1a:66:ba:56:e5:14:aa:cc:50:00:57:e2:93:24:
ee:27:03:1d:34:df:43:85:54:4f:e8:2a:1d:97:36:89:c1:c4:
c3:e5:00:1c
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUXbwozKkFUNt/Pu30FySVqEeDqz4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmUwYmI3ODg2OWNkYjJhZDBjOTcxYTZhODU4YTMwMjEz
ZWFlYzQ3ZDAeFw0yNTAyMTgxNzI5MzRaFw0yNjAyMTcxNzM0MzRaMDMxMTAvBgNV
BAMTKDZBQjc2OTc1REU3OTY2NzgwQTFFMUQ2RkFBMEM4ODY5NDhDNEY2NUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Xsunnws8iIYyW17OD7yMbyUa
HtrpdjNB+C1QekfpQl1A5V2c6jRajI7V0obru8beMou4UcF7Hw9V6Kchwi4zRA7F
drW6LgMz1eKuksX630YEGP3/XFb8uqPZo7CyQAFThGF1B7NOPpyuep3+30+UOXEG
VO9usiTeWL5A44PRHwWVj5KWTZUh1grTOmiBlrXQTGJb7VFOAzvkCbSnz3+AXV2G
+Wn/r9YLmOyYQ/cW31RKaUktgU+1aZkAOpYo1jz5B6otiNAPzYIm8Icmn7DSJEwq
IQiCSJTiRmzSCLd9WeVUym2muiplS5E8vV5mQ94C7X+zLhzBoV55oL9iVXQLAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUardpdd55ZngKHh1vqgyIaUjE9l4wHwYDVR0j
BBgwFoAUvgu3iGnNsq0MlxpqhYowIT6uxH0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWMxNDMzODctZjAxMy00OTIyLTgzOGUtZTE4ODY0YmUx
ZTRhLzAvQkUwQkI3ODg2OUNEQjJBRDBDOTcxQTZBODU4QTMwMjEzRUFFQzQ3RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ZndTNpR25Oc3EwTWx4cHFoWW93SVQ2
dXhIMC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWMxNDMzODct
ZjAxMy00OTIyLTgzOGUtZTE4ODY0YmUxZTRhLzAvMzEzNzM4MmUzMjM0MzgyZTM3
MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM5MzkzMDM1Mzgucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACy+EswDQYJKoZIhvcNAQELBQADggEBACpdssnApyw+Wq4l1tmd3ga/yRMbtNFM
Z28nx5FBT5FSpNl74ZJUBEZM3YWtKQzArEo9HgZWvGWVg7tz5c/CbeqVQdR8KLHT
qjPdhyOjQUuqnj7FYn3fohcm6hbhaHgQC+o5geJKT7F/q+DwRxzwssSm95dk5y5q
pQ1UUIJknS4/UgOJrK02pTjRcKwe8piXY64Wk3+AmaxkiNS8nRO1AgqQHG9+5d56
ESu7sBsa0/5i+ZJhFATOtrs6BFLLBd8cXCy+AWaZYuFM4Z+H2RWXf6xGzal5sHgy
h02+XI8aZrpW5RSqzFAAV+KTJO4nAx0030OFVE/oKh2XNonBxMPlABw=
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:13:16 2025 by rpki-client