Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37362e302f32342d3234203d3e203134363138.roa
File: 3137382e3234382e37362e302f32342d3234203d3e203134363138.roa (raw, json)
Hash identifier: gLI3Umjl7KNVwUD5xzL37MyINDkuT/mVnAgaZRKcvdM=
Subject key identifier: 24:40:68:91:4A:D2:40:C2:CD:8E:D3:F5:49:B5:03:E6:11:3F:5B:7F
Certificate issuer: /CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Certificate serial: 3017A2C8F4A0C0C2F2F62D3D2C88EAA2C0FDBC22
Authority key identifier: BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37362e302f32342d3234203d3e203134363138.roa
Signing time: Wed 19 Feb 2025 08:33:13 +0000
ROA not before: Wed 19 Feb 2025 08:28:13 +0000
ROA not after: Wed 18 Feb 2026 08:33:13 +0000
asID: 14618
IP address blocks: 178.248.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.mft
rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 10:31:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:17:a2:c8:f4:a0:c0:c2:f2:f6:2d:3d:2c:88:ea:a2:c0:fd:bc:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Validity
Not Before: Feb 19 08:28:13 2025 GMT
Not After : Feb 18 08:33:13 2026 GMT
Subject: CN=244068914AD240C2CD8ED3F549B503E6113F5B7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bf:2f:c1:84:b4:24:43:2d:80:b0:73:14:5a:
32:c7:d9:71:18:dd:34:fc:d0:04:10:90:1d:fc:be:
82:ce:70:d2:af:88:0e:5e:d9:6f:ad:ac:ac:e0:76:
ac:16:57:9d:7a:42:2e:94:df:ed:54:50:fc:9e:2a:
6e:75:78:7b:2b:0e:bf:6e:9f:b5:20:2c:9f:72:41:
49:8d:3a:00:de:bf:a9:31:d9:d2:da:50:4f:0f:bf:
22:0e:ca:e0:62:e6:38:a4:b6:be:d4:f1:30:45:dd:
15:30:54:61:55:05:86:a6:89:c4:63:11:3e:6d:9b:
e8:f1:1d:21:a1:f2:c1:45:54:00:52:e1:e8:84:ea:
53:87:66:16:a6:30:ff:7f:96:79:26:61:eb:3b:56:
3f:ff:61:2f:2f:ef:4d:08:7a:44:fe:11:13:2a:d5:
77:ea:e5:25:1c:ae:72:44:ab:0e:15:7f:ab:74:e2:
5a:5a:01:ec:2e:e6:06:fc:cf:75:c2:e6:e7:6c:73:
06:c7:46:d4:a7:9a:da:35:24:a7:89:01:3e:5c:8b:
0f:1d:3f:15:c1:f9:91:86:47:c8:ea:c9:10:ac:dc:
c9:67:63:02:9e:74:f7:39:d3:52:e0:30:61:23:e8:
63:ba:f8:12:5e:d3:91:0e:87:59:da:82:ab:fc:db:
7a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:40:68:91:4A:D2:40:C2:CD:8E:D3:F5:49:B5:03:E6:11:3F:5B:7F
X509v3 Authority Key Identifier:
keyid:BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37362e302f32342d3234203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.76.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:7f:80:ee:07:b4:da:33:5a:63:67:5e:1b:94:b3:9e:18:3e:
59:9e:62:29:46:0a:af:97:24:d9:ef:19:94:a3:9d:cd:5b:58:
4e:e3:f8:c2:69:85:97:14:d7:a7:0b:20:72:3b:77:a5:e0:cf:
ae:af:06:fd:cb:e9:90:7b:97:01:10:0f:66:cb:91:4e:95:70:
05:da:dc:29:36:91:e9:6d:fa:f5:7e:67:ca:ce:1b:be:00:77:
3e:45:85:7c:4f:70:06:44:19:5f:e8:0b:c7:43:21:d9:c6:37:
49:3b:c7:f9:e6:34:34:2a:6e:16:3e:b9:f7:d7:b7:c8:f2:f9:
df:ac:06:5a:81:5c:76:6e:fe:d6:e9:62:42:ba:8d:d6:e0:b9:
dd:1e:f7:6b:bf:72:52:6c:10:1b:c6:f8:dd:bf:5b:57:39:ed:
08:b8:48:71:6e:ce:07:e6:eb:63:2b:2e:29:61:9a:74:6e:51:
62:81:a1:5c:9b:9c:a4:85:00:3f:cb:23:8c:b4:84:50:f4:77:
8d:93:ea:67:72:81:85:fe:90:f2:6c:5e:ad:be:66:c5:31:49:
10:20:bb:f3:9c:dc:bb:1c:5b:d1:9a:f4:eb:ef:e3:4a:98:35:
a8:6b:05:af:be:84:84:66:41:0b:e0:fd:89:17:f9:1c:06:35:
80:39:8f:37
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUMBeiyPSgwMLy9i09LIjqosD9vCIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmUwYmI3ODg2OWNkYjJhZDBjOTcxYTZhODU4YTMwMjEz
ZWFlYzQ3ZDAeFw0yNTAyMTkwODI4MTNaFw0yNjAyMTgwODMzMTNaMDMxMTAvBgNV
BAMTKDI0NDA2ODkxNEFEMjQwQzJDRDhFRDNGNTQ5QjUwM0U2MTEzRjVCN0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXvy/BhLQkQy2AsHMUWjLH2XEY
3TT80AQQkB38voLOcNKviA5e2W+trKzgdqwWV516Qi6U3+1UUPyeKm51eHsrDr9u
n7UgLJ9yQUmNOgDev6kx2dLaUE8PvyIOyuBi5jiktr7U8TBF3RUwVGFVBYamicRj
ET5tm+jxHSGh8sFFVABS4eiE6lOHZhamMP9/lnkmYes7Vj//YS8v700IekT+ERMq
1Xfq5SUcrnJEqw4Vf6t04lpaAewu5gb8z3XC5udscwbHRtSnmto1JKeJAT5ciw8d
PxXB+ZGGR8jqyRCs3MlnYwKedPc501LgMGEj6GO6+BJe05EOh1nagqv823o1AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUJEBokUrSQMLNjtP1SbUD5hE/W38wHwYDVR0j
BBgwFoAUvgu3iGnNsq0MlxpqhYowIT6uxH0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWMxNDMzODctZjAxMy00OTIyLTgzOGUtZTE4ODY0YmUx
ZTRhLzAvQkUwQkI3ODg2OUNEQjJBRDBDOTcxQTZBODU4QTMwMjEzRUFFQzQ3RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ZndTNpR25Oc3EwTWx4cHFoWW93SVQ2
dXhIMC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWMxNDMzODct
ZjAxMy00OTIyLTgzOGUtZTE4ODY0YmUxZTRhLzAvMzEzNzM4MmUzMjM0MzgyZTM3
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzYzMTM4LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
svhMMA0GCSqGSIb3DQEBCwUAA4IBAQB/f4DuB7TaM1pjZ14blLOeGD5ZnmIpRgqv
lyTZ7xmUo53NW1hO4/jCaYWXFNenCyByO3el4M+urwb9y+mQe5cBEA9my5FOlXAF
2twpNpHpbfr1fmfKzhu+AHc+RYV8T3AGRBlf6AvHQyHZxjdJO8f55jQ0Km4WPrn3
17fI8vnfrAZagVx2bv7W6WJCuo3W4LndHvdrv3JSbBAbxvjdv1tXOe0IuEhxbs4H
5utjKy4pYZp0blFigaFcm5ykhQA/yyOMtIRQ9HeNk+pncoGF/pDybF6tvmbFMUkQ
ILvznNy7HFvRmvTr7+NKmDWoawWvvoSEZkEL4P2JF/kcBjWAOY83
-----END CERTIFICATE-----
Generated at Fri Apr 4 23:47:51 2025 by rpki-client