Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37392e302f32342d3234203d3e20313335333932.roa
File: 3137382e3234382e37392e302f32342d3234203d3e20313335333932.roa (raw, json)
Hash identifier: nkla74pmgzof6BdGTx/D9Sn3aXq/+fT/xyCtH2Ux1lE=
Subject key identifier: 4B:D9:AB:39:18:B7:BE:2D:3A:63:6D:32:DF:D9:4B:8F:EA:5C:F4:84
Certificate issuer: /CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Certificate serial: 65B7E874B713A0D47EA8945D08C3787AF7ECBFD8
Authority key identifier: BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37392e302f32342d3234203d3e20313335333932.roa
Signing time: Tue 18 Feb 2025 17:34:34 +0000
ROA not before: Tue 18 Feb 2025 17:29:34 +0000
ROA not after: Tue 17 Feb 2026 17:34:34 +0000
asID: 135392
IP address blocks: 178.248.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.mft
rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 03:31:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:b7:e8:74:b7:13:a0:d4:7e:a8:94:5d:08:c3:78:7a:f7:ec:bf:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Validity
Not Before: Feb 18 17:29:34 2025 GMT
Not After : Feb 17 17:34:34 2026 GMT
Subject: CN=4BD9AB3918B7BE2D3A636D32DFD94B8FEA5CF484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6f:c7:c6:3d:fe:21:11:b4:04:b6:bc:e7:51:
31:a8:b0:2f:29:6e:a5:5a:a2:21:53:be:c0:97:15:
22:d2:c6:14:d3:f3:65:90:90:9a:ec:9a:79:9e:00:
59:f5:7f:05:cd:73:0a:9d:1e:17:85:3b:d4:0b:e6:
38:34:cf:ba:5e:5e:00:14:ce:18:e0:6b:e7:4e:69:
fd:74:46:07:29:9a:dd:51:44:88:c4:f0:ba:c9:c6:
68:90:6d:71:11:12:6a:f8:e6:fd:20:d2:69:3c:c7:
93:8f:64:92:2d:24:9e:57:f2:0a:ac:d4:7a:3c:44:
04:32:e0:db:06:e4:a5:d8:29:d6:15:24:f9:82:b4:
01:b4:66:d8:5d:17:1f:80:77:bc:41:bb:f7:02:28:
d2:a6:1e:f8:f3:da:68:e4:19:1a:15:ed:cf:de:da:
1f:ec:fd:05:46:cb:e7:6a:f8:5f:35:56:c2:4f:2c:
03:40:81:75:00:2c:13:3b:7a:5a:82:7e:31:f6:35:
fe:21:00:81:ce:ed:43:85:b8:27:72:a6:9f:d6:04:
29:96:41:ea:42:10:43:4b:35:b1:78:08:46:ff:82:
e9:84:7d:a2:26:01:98:4e:fb:d8:d5:f5:c7:41:c8:
f5:b7:55:a4:58:bb:01:bf:dc:89:2a:56:a2:b7:a0:
ed:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:D9:AB:39:18:B7:BE:2D:3A:63:6D:32:DF:D9:4B:8F:EA:5C:F4:84
X509v3 Authority Key Identifier:
keyid:BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37392e302f32342d3234203d3e20313335333932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.79.0/24
Signature Algorithm: sha256WithRSAEncryption
80:d4:01:32:7d:9a:2d:61:96:6a:a4:aa:b8:64:c7:3a:d0:b8:
44:48:43:9f:2a:f9:78:4e:3b:44:66:c4:5f:2e:a5:a3:44:79:
5e:66:94:55:47:76:eb:d2:51:41:8c:76:de:10:1d:f8:79:66:
46:c4:ab:0d:d2:02:bf:a5:ef:2b:62:3c:85:6b:64:34:92:a5:
15:a6:7d:e9:88:21:cb:1e:55:99:24:18:19:f5:f6:89:8d:4a:
45:e2:b4:5e:a7:03:84:cc:65:e4:dc:b0:26:e8:8a:8e:04:4c:
15:f5:a5:87:b3:82:7a:ed:5b:a4:08:99:b8:26:2d:57:fb:50:
83:63:7b:6b:4b:0e:32:b8:64:f5:fe:4d:a9:f8:00:9e:35:36:
8d:d6:82:a2:27:cb:47:b3:b5:72:13:39:ca:b7:cc:29:09:b3:
4e:0f:c0:0f:18:6f:1d:bd:fe:5a:f3:5b:f0:0d:b2:21:84:47:
e0:45:26:91:10:55:a9:59:94:df:c0:93:67:f7:76:7a:59:22:
db:c6:58:33:d5:fb:37:e7:3c:f6:30:8b:0d:c2:1f:51:d5:f3:
ce:28:0b:c1:fa:b0:f2:c0:12:3a:cd:76:f6:94:92:d5:63:7a:
82:0d:c7:71:78:fc:3b:4c:a3:91:22:1e:4a:aa:91:bc:9c:a4:
ad:cc:77:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:18:02 2025 by rpki-client