Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37382e302f32342d3234203d3e203530343334.roa
File: 3137382e3234382e37382e302f32342d3234203d3e203530343334.roa (raw, json)
Hash identifier: YkOazOq21Qlmm7bdCMGG0Hrr8r5LE8n78fAPs3qYxzs=
Subject key identifier: F8:B0:94:D5:48:4E:4C:31:CF:D8:E7:B2:C2:6C:26:52:B1:A5:95:C8
Certificate issuer: /CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Certificate serial: 25A25198F81C78218820F1E8E7C9E7165E90D9B1
Authority key identifier: BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37382e302f32342d3234203d3e203530343334.roa
Signing time: Tue 18 Feb 2025 17:34:34 +0000
ROA not before: Tue 18 Feb 2025 17:29:34 +0000
ROA not after: Tue 17 Feb 2026 17:34:34 +0000
asID: 50434
IP address blocks: 178.248.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.mft
rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 22:48:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:a2:51:98:f8:1c:78:21:88:20:f1:e8:e7:c9:e7:16:5e:90:d9:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Validity
Not Before: Feb 18 17:29:34 2025 GMT
Not After : Feb 17 17:34:34 2026 GMT
Subject: CN=F8B094D5484E4C31CFD8E7B2C26C2652B1A595C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:e9:fb:e3:47:ac:c4:8c:e6:1b:13:b1:f5:47:
10:1c:f9:e8:84:47:54:dd:9b:c8:ce:4d:09:51:7a:
e3:c3:02:37:f9:4c:47:4c:c3:7f:ee:41:d1:49:22:
b9:b8:72:97:b1:90:ce:1e:28:b4:61:6b:f6:59:e7:
af:c5:a4:40:b9:67:73:1d:50:ed:95:0e:09:b8:30:
58:27:03:34:53:97:32:0c:19:e5:d1:f3:d4:c9:6e:
ad:61:10:bf:47:6e:7f:8b:10:65:e8:2a:85:74:69:
96:2d:14:e8:bf:f1:43:8f:7e:76:43:3d:b4:93:db:
b4:9c:65:10:64:35:53:36:39:db:8f:11:b1:24:ce:
d5:f1:62:62:5b:c9:00:3f:a3:a0:5e:23:d3:d6:2b:
3c:14:64:09:86:83:55:12:c0:f8:37:4b:86:1f:19:
a3:41:ee:d6:b1:e1:aa:28:79:69:6f:82:0c:7f:f5:
2b:0f:82:57:01:d8:52:25:25:02:78:24:99:ce:db:
4f:9f:ec:2c:ea:3d:29:32:d3:f3:46:b0:1d:29:7f:
b7:c0:02:6e:4c:00:c9:82:b4:f7:94:ce:4a:2f:ba:
d5:b3:9d:03:86:d5:6a:66:c0:ce:91:13:ca:88:4d:
44:79:82:12:52:8e:54:f8:ee:d5:62:dd:c8:d8:cb:
72:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B0:94:D5:48:4E:4C:31:CF:D8:E7:B2:C2:6C:26:52:B1:A5:95:C8
X509v3 Authority Key Identifier:
keyid:BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37382e302f32342d3234203d3e203530343334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.78.0/24
Signature Algorithm: sha256WithRSAEncryption
71:cb:db:30:9d:12:62:59:36:fe:ee:38:90:16:14:73:e3:d2:
45:00:6a:68:3b:cb:cc:6e:d6:db:05:e7:55:99:ac:31:1d:54:
3b:35:9a:33:33:21:39:a2:a5:d5:b6:fc:68:c7:c8:a4:83:7b:
08:6f:57:55:14:73:3e:ec:0d:90:76:36:0d:52:6a:cd:27:ec:
de:f9:7f:a6:0a:7b:b1:3d:24:66:a4:0b:86:a4:73:5f:88:82:
4c:52:65:fd:d3:45:8a:78:43:2c:75:15:06:d2:dd:a3:92:22:
d7:e3:b8:97:a1:a3:5d:19:7e:c2:4b:f0:bd:de:b9:7d:39:6b:
b5:03:53:16:ba:3e:b1:ad:0a:32:17:35:95:20:c4:35:7d:11:
b3:35:da:3b:bd:cc:ca:93:0f:3f:f2:e8:e2:6f:47:bf:eb:b3:
37:34:8d:89:24:25:c8:db:a5:b1:fa:2f:3e:9f:f3:24:e3:0a:
b6:37:ab:40:60:ea:43:cc:e9:08:ca:d4:4a:30:39:b5:b2:06:
5a:7b:20:09:8f:fd:41:a3:e0:2f:5b:24:3a:80:72:c8:bf:05:
1d:6f:17:20:eb:ac:7d:05:71:9a:d4:ea:2f:17:0d:6e:ed:09:
9f:9c:1c:67:cb:d1:00:6a:ea:fe:e9:3e:20:42:82:57:10:83:
82:76:09:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 14:49:50 2025 by rpki-client