Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3139332e33352e3232362e302f32342d3234203d3e203536393632.roa
File: 3139332e33352e3232362e302f32342d3234203d3e203536393632.roa (raw, json)
Hash identifier: 4UgfT6p/2Q50B5wnsVKN4mv/hFd7RZLIZ15wgnKLY7k=
Subject key identifier: E9:B1:A8:1F:A5:B2:69:08:2A:91:02:27:2F:F4:89:69:0D:BB:81:C3
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 6B216C573C96E0B16641EA15C89E93494CC8107D
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3139332e33352e3232362e302f32342d3234203d3e203536393632.roa
Signing time: Sat 17 May 2025 10:54:08 +0000
ROA not before: Sat 17 May 2025 10:49:08 +0000
ROA not after: Sat 16 May 2026 10:54:08 +0000
asID: 56962
IP address blocks: 193.35.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 08:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:21:6c:57:3c:96:e0:b1:66:41:ea:15:c8:9e:93:49:4c:c8:10:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: May 17 10:49:08 2025 GMT
Not After : May 16 10:54:08 2026 GMT
Subject: CN=E9B1A81FA5B269082A9102272FF489690DBB81C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7f:d8:62:1e:de:2d:43:e3:b5:53:0b:c4:a9:
eb:0e:5d:a1:ff:6f:55:0b:8a:4c:58:be:30:a2:a4:
d7:25:1f:e2:62:bc:c7:c0:8b:94:da:c5:84:1a:a4:
a9:ed:b6:39:0e:77:ee:70:f2:50:f8:be:88:b7:25:
35:18:52:28:7a:08:a5:c7:79:07:ad:c5:f7:9d:20:
5d:28:84:b4:b5:e5:90:9e:71:b3:eb:4c:61:3c:ed:
45:66:1b:ba:2f:37:dd:46:8b:d1:d1:d5:31:84:c1:
0e:a9:76:16:01:88:35:d1:d0:54:29:ae:82:fb:04:
a1:a7:62:46:78:fb:19:77:a8:d9:83:92:63:ec:8d:
3e:68:29:cf:45:eb:f8:f1:e6:a7:2c:e9:b6:b2:00:
c7:9e:96:a6:52:5d:55:f2:3b:b3:35:b0:bb:5b:6b:
41:6d:60:a6:26:68:32:69:4a:20:b5:3e:02:cf:ce:
96:5a:66:ac:de:79:b3:8c:71:fe:49:8d:2c:ad:b5:
84:11:b1:2e:c0:5f:f0:ae:75:da:89:58:34:77:d5:
81:92:c8:c1:2c:a4:3e:5b:fc:bd:67:e2:f6:ee:1d:
56:9d:57:24:b8:e6:0a:fb:b6:74:93:24:03:ef:95:
95:9b:95:55:bf:0d:e2:41:4e:43:8a:5f:71:60:1a:
ef:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B1:A8:1F:A5:B2:69:08:2A:91:02:27:2F:F4:89:69:0D:BB:81:C3
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3139332e33352e3232362e302f32342d3234203d3e203536393632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.226.0/24
Signature Algorithm: sha256WithRSAEncryption
61:7f:a8:bd:18:72:a5:81:33:b6:0c:e7:7e:55:66:62:c0:35:
5a:b5:21:9b:20:fa:a9:ea:6e:6d:43:ec:54:c3:0c:2f:d9:e8:
cd:ed:29:64:93:cf:c0:48:f5:b0:47:86:1b:3e:e6:c5:3c:ca:
4f:4e:a5:cd:d9:e1:c5:fc:49:60:40:99:1b:a7:4f:ea:c4:73:
31:70:00:1e:c3:4c:2d:5f:9c:9c:05:1a:fd:e4:34:15:7a:42:
21:20:f8:a8:ac:ec:03:af:55:ab:59:59:bd:ff:06:e5:f0:d4:
7d:13:9f:9d:1b:eb:41:0f:fc:3d:e2:f4:77:8d:ca:56:d9:df:
8d:fc:81:64:b2:b2:26:c3:97:24:42:0b:8b:a4:1a:77:b4:3d:
62:da:77:ba:13:16:35:f5:03:bd:2a:47:8d:76:f1:f1:93:58:
34:2c:ee:26:f1:44:a5:31:93:2a:1d:a0:00:c9:a7:8a:f6:71:
2c:d1:73:26:06:05:bd:1a:ba:70:3e:a1:45:54:2d:39:90:05:
fc:72:33:82:5c:ca:b0:4c:d6:f9:90:f8:54:f5:cb:1c:a7:53:
94:fa:34:2a:58:40:13:5f:18:08:76:65:3a:2b:da:13:da:32:
03:83:01:e7:a0:b6:be:fd:03:44:1a:be:77:01:66:6d:50:bc:
66:78:d2:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 22:48:49 2025 by rpki-client