Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203538323132.roa
File: 3130392e3131302e3137352e302f32342d3234203d3e203538323132.roa (raw, json)
Hash identifier: f4ATCRR/x3TBPLnDHNFLTKkN4EKOao1NoBZG3Jk//RI=
Subject key identifier: DA:8C:19:26:9F:86:7B:B3:64:42:97:67:69:47:68:ED:0C:93:38:DD
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 5748E18B662EDA4820143D4A11E18F255313E52D
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203538323132.roa
Signing time: Wed 27 Aug 2025 22:54:58 +0000
ROA not before: Wed 27 Aug 2025 22:49:58 +0000
ROA not after: Wed 26 Aug 2026 22:54:58 +0000
asID: 58212
IP address blocks: 109.110.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:48:e1:8b:66:2e:da:48:20:14:3d:4a:11:e1:8f:25:53:13:e5:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Aug 27 22:49:58 2025 GMT
Not After : Aug 26 22:54:58 2026 GMT
Subject: CN=DA8C19269F867BB364429767694768ED0C9338DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:41:3d:99:2b:67:11:94:08:79:af:a0:31:37:
76:2f:93:bb:7f:31:78:b2:2a:cb:ca:67:77:1b:ef:
6e:d8:0d:ab:8a:a7:ac:0f:ca:db:7d:0e:16:8e:c4:
8c:03:eb:ac:83:c0:9f:c7:4e:5c:47:b9:36:0d:f4:
a4:49:80:99:3c:ab:15:06:88:65:88:87:e3:99:ae:
b6:03:3e:1b:be:78:b0:40:d5:b3:6b:a7:fd:03:9c:
ab:d9:b1:fc:61:73:3d:cf:08:5b:18:86:2e:21:82:
7f:84:79:ea:53:5c:cf:df:96:dd:d9:11:27:a6:1d:
8e:96:12:9b:39:d3:06:75:b7:09:7e:98:b1:b5:cc:
0c:1b:6c:4d:d8:c7:1b:63:2e:6d:69:ed:a7:9c:e7:
c9:5c:15:7b:0a:6d:62:58:25:46:e8:96:23:47:ae:
61:0f:81:0c:0a:00:6c:b2:19:1d:13:64:0f:ff:90:
5b:28:bc:c1:4a:e5:bb:62:87:c5:c9:9c:08:61:09:
4b:8d:ac:43:2b:b8:3c:3c:6d:7d:7d:41:45:73:dc:
7e:44:01:ed:26:9d:a7:08:c4:a4:c9:d3:89:79:a5:
67:d1:e6:af:72:0c:35:69:8b:84:6b:66:7d:74:94:
0b:06:07:53:1b:c5:38:6f:79:2e:98:7c:71:fd:18:
d7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:8C:19:26:9F:86:7B:B3:64:42:97:67:69:47:68:ED:0C:93:38:DD
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203538323132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.175.0/24
Signature Algorithm: sha256WithRSAEncryption
06:d0:c5:f6:24:c3:ba:db:e7:60:d5:2e:c2:55:c7:b5:c3:38:
3d:a8:f8:ef:ca:4a:c3:0e:23:b1:a3:c1:af:15:a9:a9:8b:26:
4e:70:c1:f5:74:74:87:96:59:fb:a6:2c:65:60:af:7a:d9:a8:
88:52:5e:1a:a0:33:0b:3b:46:d0:57:ea:5b:6b:0d:69:f6:49:
10:3d:5d:20:c3:49:1d:07:6f:b8:7e:7e:a5:53:a3:88:2e:a3:
e8:27:3e:fc:83:7b:e8:74:c1:96:11:17:30:fd:fa:64:c1:22:
71:e8:6e:6d:9a:2c:86:5f:37:d1:e3:07:5f:b3:37:3e:be:67:
d1:b7:6e:13:ff:79:5a:ff:69:d8:55:75:be:b4:45:89:19:21:
3c:08:65:75:5a:97:cf:ff:bf:fa:9b:81:e8:a9:e9:78:32:37:
07:a7:26:e6:42:42:fa:76:a2:85:3a:9f:b0:b4:33:e4:20:5b:
01:7e:c8:0d:42:e9:12:7c:3d:7c:5e:c5:11:77:05:5f:fc:60:
d2:22:ee:15:8a:77:ae:ce:ea:b6:05:6f:af:2e:05:59:43:2a:
f5:1f:39:42:d7:b8:f8:8a:99:f1:07:80:a8:77:cb:99:ec:14:
c3:23:42:ab:c5:14:25:33:3b:91:76:91:52:26:4c:bd:7e:ef:
82:bc:df:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:36:53 2025 by rpki-client