Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37362e302f32342d3234203d3e203230343733.roa
File: 3137382e3234382e37362e302f32342d3234203d3e203230343733.roa (raw, json)
Hash identifier: vu2iy0iZ67Pvg675grFRJrEvojZ1gcd0BfsDMPqVCIA=
Subject key identifier: 5B:3D:06:FE:47:F8:D1:2F:9E:7D:26:F3:7D:96:B7:7C:1B:79:6D:36
Certificate issuer: /CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Certificate serial: 010EF91C756110D5A46E43B89503CA9FB87947D2
Authority key identifier: BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37362e302f32342d3234203d3e203230343733.roa
Signing time: Tue 18 Feb 2025 17:34:34 +0000
ROA not before: Tue 18 Feb 2025 17:29:34 +0000
ROA not after: Tue 17 Feb 2026 17:34:34 +0000
asID: 20473
IP address blocks: 178.248.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.mft
rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 03:31:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0e:f9:1c:75:61:10:d5:a4:6e:43:b8:95:03:ca:9f:b8:79:47:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Validity
Not Before: Feb 18 17:29:34 2025 GMT
Not After : Feb 17 17:34:34 2026 GMT
Subject: CN=5B3D06FE47F8D12F9E7D26F37D96B77C1B796D36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4d:7b:10:2b:a9:08:e5:bd:66:85:ee:34:e0:
58:1b:4d:07:cc:d7:ee:5f:0e:a6:ec:25:5f:7b:48:
7e:9a:f2:ba:c0:73:de:e6:13:ce:f7:03:f2:6e:b6:
77:c8:83:71:83:52:d5:61:7e:4e:fc:ea:b1:60:72:
52:7f:34:eb:8a:d2:40:d2:7d:b1:8b:12:69:e8:ec:
85:ef:22:8b:0c:9f:74:a7:ab:fc:0b:6d:ea:5c:34:
c2:d2:0a:12:1c:60:81:7f:38:14:96:ce:c7:f7:70:
22:bc:2d:d8:ba:f2:84:b2:48:fb:38:d8:1b:2e:be:
18:0f:4f:06:46:b6:7b:8d:55:46:5c:26:d3:00:79:
ec:fd:75:ae:55:64:47:e9:6e:4d:c3:58:a8:d7:4d:
7f:40:35:33:5b:9c:7c:f1:64:ec:c1:f0:97:f5:b6:
a8:cd:45:c3:24:f3:aa:b7:8a:de:16:00:fd:fe:ea:
cf:c8:fc:4f:81:4b:1f:c2:44:25:90:08:1e:94:65:
b4:1a:de:48:94:d7:9f:d3:19:1f:9f:53:b8:00:63:
0b:89:e9:e4:4b:c3:92:8e:82:73:c0:4f:5d:73:d6:
1e:d5:23:59:e2:c9:34:e2:45:37:ba:b6:50:28:c1:
02:f4:30:bd:6f:7b:0f:f4:a6:1a:91:c9:f6:66:80:
50:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:3D:06:FE:47:F8:D1:2F:9E:7D:26:F3:7D:96:B7:7C:1B:79:6D:36
X509v3 Authority Key Identifier:
keyid:BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37362e302f32342d3234203d3e203230343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.76.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:6d:10:cb:12:21:ce:ee:54:a2:db:b9:fb:dd:ee:30:31:48:
fd:8a:6e:32:ae:a7:88:99:1b:e8:65:e7:f6:07:cb:09:42:27:
6d:70:68:45:56:73:24:6c:be:dd:80:db:30:17:d5:75:cf:88:
d3:ab:e5:74:d0:f1:77:99:14:17:78:da:cc:64:48:8b:dd:10:
1d:27:2f:42:b4:77:b9:19:a3:96:93:81:94:3f:81:02:2e:d5:
f7:ae:93:d4:a7:bb:f6:4c:6c:22:a4:02:55:b0:ee:ee:56:fe:
8b:90:4e:9e:41:50:a5:3f:3f:bc:18:4a:a5:40:ae:6f:2b:8f:
46:9e:57:f1:26:94:ab:b2:ea:24:3a:ee:ac:a9:f2:b2:2b:52:
a8:70:58:48:38:65:3c:39:38:49:0e:d2:3e:27:82:4f:08:39:
af:67:c2:d7:53:ed:22:f1:c3:26:52:c4:7f:78:63:ba:3a:b5:
e8:f6:96:bc:84:0f:e4:17:b2:10:20:66:d7:4a:ad:c9:50:0e:
d6:3f:a1:fd:af:58:b7:8c:a5:ce:34:3a:87:4c:bf:d1:44:67:
32:cd:a2:84:ba:b7:9e:cd:78:17:e4:b8:a9:ba:ee:4d:bf:ce:
4c:87:0e:f1:2e:90:44:03:85:65:46:f7:1e:67:cf:02:59:ca:
86:00:10:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:02:10 2025 by rpki-client