Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136342e302f32342d3234203d3e20313432313436.roa
File: 3130392e3131302e3136342e302f32342d3234203d3e20313432313436.roa (raw, json)
Hash identifier: cVzOitTVOIslcUMQNRpIE8yMcN+GXkHIThYwq/KYqNU=
Subject key identifier: 57:25:F8:33:C6:6E:A9:7C:07:A6:8D:BF:10:1E:51:D4:10:53:30:D6
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 451D64AB01D6FD17F6588A7BDCCEB9D3AD6EFA07
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136342e302f32342d3234203d3e20313432313436.roa
Signing time: Tue 13 May 2025 07:54:08 +0000
ROA not before: Tue 13 May 2025 07:49:08 +0000
ROA not after: Tue 12 May 2026 07:54:08 +0000
asID: 142146
IP address blocks: 109.110.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Jun 2025 06:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:1d:64:ab:01:d6:fd:17:f6:58:8a:7b:dc:ce:b9:d3:ad:6e:fa:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: May 13 07:49:08 2025 GMT
Not After : May 12 07:54:08 2026 GMT
Subject: CN=5725F833C66EA97C07A68DBF101E51D4105330D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:03:49:95:7b:41:b2:35:a1:3a:7a:d2:8e:16:
a2:6d:d1:03:73:31:31:5f:5a:0e:2a:d2:c7:45:cb:
cb:4d:00:9e:bd:c3:06:b2:03:bd:74:de:06:db:4d:
d3:60:e2:99:b5:c9:96:a1:91:53:57:30:40:2d:36:
9e:94:4f:f2:e1:ca:f2:bd:5d:2f:d8:2b:69:2d:b4:
9f:6d:c6:c3:31:e3:08:f0:8b:de:29:63:73:34:e6:
12:cf:59:bb:6c:ff:59:92:5d:c6:35:61:70:d9:bf:
f6:f4:69:4a:01:35:a4:7a:6f:35:c9:f9:1f:94:e8:
82:b9:10:12:ce:9a:54:82:8a:69:13:a5:5f:07:3c:
0c:18:c4:7b:f0:3f:03:bf:53:20:0e:d5:ce:62:a5:
ef:4c:cb:5c:b5:4b:52:14:21:91:3c:be:1f:04:40:
8c:4a:81:4f:c9:04:82:aa:6e:d6:42:16:7e:49:2b:
34:9b:ac:90:4c:77:1e:fb:82:c3:bb:21:c1:45:1f:
a4:42:2f:db:4e:76:76:eb:48:5d:3d:71:ca:04:7a:
44:c4:6e:ba:66:f4:ac:f1:05:52:f7:f9:2e:ae:a9:
61:fa:73:43:87:b9:b3:38:11:11:71:e7:29:57:b2:
da:7f:1f:6b:f6:83:2b:9d:71:f3:2b:bb:52:a2:90:
22:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:25:F8:33:C6:6E:A9:7C:07:A6:8D:BF:10:1E:51:D4:10:53:30:D6
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136342e302f32342d3234203d3e20313432313436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.164.0/24
Signature Algorithm: sha256WithRSAEncryption
14:de:a1:35:63:c3:5d:14:a7:b0:b3:86:ef:f9:78:15:ad:43:
72:8b:95:ed:2c:fc:60:d4:ba:a1:e6:ae:8c:0e:7f:d2:28:53:
e3:e3:73:61:f4:68:46:14:6b:77:8a:92:11:d7:7a:69:af:1b:
22:e3:9e:85:6f:03:ba:4b:f6:d4:33:ea:68:77:5a:43:18:f9:
ce:c3:ac:d6:27:2a:bb:58:10:e5:8a:8e:69:db:d6:d7:89:60:
81:82:89:5c:55:e4:3d:5e:f9:8f:55:4c:50:d7:75:4d:23:70:
e2:bd:35:cb:b9:9f:a4:85:38:a9:c0:33:a6:52:ba:51:34:75:
a4:ae:88:6d:64:5b:2b:3e:06:0b:85:64:27:5e:9e:65:61:b6:
62:61:ca:56:f6:e2:55:a2:ca:d4:27:7b:4d:20:85:25:bd:0f:
90:cd:3c:86:7d:76:e3:57:81:72:48:0b:ef:45:cc:33:ff:65:
fc:11:92:7d:35:2e:52:e4:50:8c:b3:7e:88:02:58:29:d0:a7:
af:cd:3d:a4:dc:ea:85:b5:47:b1:cf:35:87:35:78:ab:fa:39:
04:e9:ef:e2:2d:48:21:66:fe:43:98:08:dc:75:f3:fa:5d:d3:
b9:16:5e:5e:bc:de:33:3b:ba:af:0d:9a:59:d8:7f:9d:62:62:
26:63:17:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 12:58:24 2025 by rpki-client