Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363333a313030303a3a2f33362d3336203d3e203630373335.roa
File: 326130663a336363333a313030303a3a2f33362d3336203d3e203630373335.roa (raw, json)
Hash identifier: ad3eCylfdMfYW/Id31ooquQQLvZwumdWGj+lszfaEsA=
Subject key identifier: 9A:BE:02:CF:DE:0A:90:BB:3C:0E:17:AF:D5:97:1F:25:E9:52:86:EE
Certificate issuer: /CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Certificate serial: 797B69B2478089600E464956B939B156BD2BBEDF
Authority key identifier: CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363333a313030303a3a2f33362d3336203d3e203630373335.roa
Signing time: Sun 30 Mar 2025 05:13:29 +0000
ROA not before: Sun 30 Mar 2025 05:08:29 +0000
ROA not after: Sun 29 Mar 2026 05:13:29 +0000
asID: 60735
IP address blocks: 2a0f:3cc3:1000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.crl
rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.mft
rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:7b:69:b2:47:80:89:60:0e:46:49:56:b9:39:b1:56:bd:2b:be:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Validity
Not Before: Mar 30 05:08:29 2025 GMT
Not After : Mar 29 05:13:29 2026 GMT
Subject: CN=9ABE02CFDE0A90BB3C0E17AFD5971F25E95286EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c6:c9:d6:94:8f:74:51:c2:41:16:34:bd:50:
41:7b:88:a8:09:07:60:2b:e5:e7:ce:28:f2:ec:a3:
89:91:6c:1c:7d:ae:d1:cf:9a:dd:65:1e:27:d2:06:
f9:56:4a:95:51:ef:51:76:e2:54:92:48:b2:0e:4e:
e3:04:fd:37:4f:ea:88:0c:06:79:c9:d6:78:20:89:
e3:eb:cd:b4:e3:23:1f:0d:fb:d3:3e:e8:a5:4d:59:
1a:d8:bb:b3:b7:01:ed:15:f6:31:59:80:de:70:08:
c1:c8:1c:3a:a9:18:90:c8:1b:b2:9a:64:24:52:84:
6d:cf:4d:b8:bf:dc:1f:e0:88:d1:1f:63:98:f4:a4:
e7:1d:1f:6e:23:20:e3:f5:53:ad:fb:7e:28:3e:b8:
5a:f1:01:f0:1e:15:97:dc:87:2f:f7:3e:97:ca:12:
ad:c0:1f:a3:ba:ae:81:02:6a:f2:d9:57:6c:5d:2f:
88:8a:f7:48:41:de:62:e2:69:34:80:b2:21:41:2b:
8e:b2:e5:67:67:16:c2:1d:96:51:13:fa:8d:7e:2c:
f4:dc:73:04:b7:78:14:7d:70:12:25:7d:27:90:3d:
c4:16:de:f0:51:a9:18:c1:c6:40:e2:78:47:fb:8f:
bf:da:0c:51:82:24:c5:85:95:1c:43:54:2e:e1:f3:
60:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:BE:02:CF:DE:0A:90:BB:3C:0E:17:AF:D5:97:1F:25:E9:52:86:EE
X509v3 Authority Key Identifier:
keyid:CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363333a313030303a3a2f33362d3336203d3e203630373335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3cc3:1000::/36
Signature Algorithm: sha256WithRSAEncryption
36:b9:e6:1c:fd:c1:da:37:83:f7:49:ff:fc:08:89:49:9c:e6:
81:fe:2f:9e:c1:23:da:9c:7c:ea:24:8b:5f:27:ff:80:ae:18:
5b:c2:fe:9b:07:7d:ce:49:15:8d:75:7d:21:75:b7:64:81:35:
3f:78:c0:3c:49:9a:f6:7d:63:55:5a:83:7f:27:e0:05:ae:c1:
0d:ce:37:f5:6d:2a:61:d0:9d:81:b8:b5:ec:c1:2b:7a:64:d5:
93:8d:30:08:ca:44:e1:b4:d5:b6:d7:3c:53:06:9f:87:57:ea:
b1:1e:e7:c5:fc:ef:9b:43:6a:55:30:ac:0c:99:16:be:74:b3:
81:06:1b:73:ca:44:d1:18:c4:7c:99:a0:b0:8d:76:fd:66:b3:
7f:81:64:78:e5:dd:62:76:0f:79:19:ed:41:b5:f2:10:38:5e:
db:68:8d:1b:5a:ec:8a:79:2f:19:25:a5:3d:f1:65:d1:f4:51:
82:47:3b:06:b1:2e:4e:66:69:59:5e:32:0c:c2:c3:1b:76:4c:
cd:f9:8b:bf:ae:93:b8:06:86:ab:72:f9:e0:cb:1e:1e:db:c2:
8a:c9:65:f5:ed:58:dc:d5:a2:63:36:ec:b8:d8:d4:9a:b5:be:
88:38:ea:09:4d:34:56:3a:a9:82:4d:31:2c:94:95:56:51:47:
e5:1c:a1:79
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUeXtpskeAiWAORklWuTmxVr0rvt8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoY2IyOWE3NzY2OWRmNWE3YTVjYjUwNmQ4MzllZThhYTQz
MzdjY2FhYzAeFw0yNTAzMzAwNTA4MjlaFw0yNjAzMjkwNTEzMjlaMDMxMTAvBgNV
BAMTKDlBQkUwMkNGREUwQTkwQkIzQzBFMTdBRkQ1OTcxRjI1RTk1Mjg2RUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtxsnWlI90UcJBFjS9UEF7iKgJ
B2Ar5efOKPLso4mRbBx9rtHPmt1lHifSBvlWSpVR71F24lSSSLIOTuME/TdP6ogM
BnnJ1nggiePrzbTjIx8N+9M+6KVNWRrYu7O3Ae0V9jFZgN5wCMHIHDqpGJDIG7Ka
ZCRShG3PTbi/3B/giNEfY5j0pOcdH24jIOP1U637fig+uFrxAfAeFZfchy/3PpfK
Eq3AH6O6roECavLZV2xdL4iK90hB3mLiaTSAsiFBK46y5WdnFsIdllET+o1+LPTc
cwS3eBR9cBIlfSeQPcQW3vBRqRjBxkDieEf7j7/aDFGCJMWFlRxDVC7h82BLAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUmr4Cz94KkLs8Dhev1ZcfJelShu4wHwYDVR0j
BBgwFoAUyymndmnfWnpctQbYOe6KpDN8yqwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYmIyNWQwNjgtN2Y5Yy00YjBlLWE2OTUtMTc3OWI3ZDhm
MDZlLzAvQ0IyOUE3NzY2OURGNUE3QTVDQjUwNkQ4MzlFRThBQTQzMzdDQ0FBQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3l5bW5kbW5mV25wY3RRYllPZTZLcERO
OHlxdy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYmIyNWQwNjgt
N2Y5Yy00YjBlLWE2OTUtMTc3OWI3ZDhmMDZlLzAvMzI2MTMwNjYzYTMzNjM2MzMz
M2EzMTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDM2MzAzNzMzMzUucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E
AgACMAgDBgQqDzzDEDANBgkqhkiG9w0BAQsFAAOCAQEANrnmHP3B2jeD90n//AiJ
SZzmgf4vnsEj2px86iSLXyf/gK4YW8L+mwd9zkkVjXV9IXW3ZIE1P3jAPEma9n1j
VVqDfyfgBa7BDc439W0qYdCdgbi17MEremTVk40wCMpE4bTVttc8Uwafh1fqsR7n
xfzvm0NqVTCsDJkWvnSzgQYbc8pE0RjEfJmgsI12/Wazf4FkeOXdYnYPeRntQbXy
EDhe22iNG1rsinkvGSWlPfFl0fRRgkc7BrEuTmZpWV4yDMLDG3ZMzfmLv66TuAaG
q3L54MseHtvCisll9e1Y3NWiYzbsuNjUmrW+iDjqCU00Vjqpgk0xLJSVVlFH5Ryh
eQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 00:48:05 2025 by rpki-client