Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20313939343135.roa
File: 3139332e3234362e352e302f32342d3234203d3e20313939343135.roa (raw, json)
Hash identifier: 3pORVfocHqarnsqwM793nrdIxMZCxCypYkq+seLhAgU=
Subject key identifier: 93:31:3C:44:DA:63:21:04:61:FE:1D:31:1F:90:86:E2:9F:61:08:72
Certificate issuer: /CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Certificate serial: 7EE833EA43AF7367A0C3FDB3619E7A4EE1467022
Authority key identifier: C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20313939343135.roa
Signing time: Tue 27 May 2025 13:31:42 +0000
ROA not before: Tue 27 May 2025 13:26:42 +0000
ROA not after: Tue 26 May 2026 13:31:42 +0000
asID: 199415
IP address blocks: 193.246.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.mft
rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:e8:33:ea:43:af:73:67:a0:c3:fd:b3:61:9e:7a:4e:e1:46:70:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Validity
Not Before: May 27 13:26:42 2025 GMT
Not After : May 26 13:31:42 2026 GMT
Subject: CN=93313C44DA63210461FE1D311F9086E29F610872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:22:44:4b:46:e9:57:80:da:d4:e3:b9:4b:fc:
4f:c7:64:ae:40:d3:90:06:be:fe:af:98:7c:02:6b:
ee:d8:0e:5a:0b:71:8d:1a:3e:3c:6e:51:70:ab:07:
7d:b0:8b:cc:05:da:ad:b0:d5:fe:39:cc:1b:35:b3:
40:4e:2c:91:17:9c:84:5d:47:32:a8:8a:2f:23:53:
af:a9:87:fa:ee:83:b1:1c:73:dd:ea:1b:8f:bc:7f:
3e:91:a6:1a:0e:33:ad:93:4b:0f:6f:4b:d7:b1:5b:
ce:67:02:7e:f3:a4:f3:20:68:1b:ba:5f:89:cf:6c:
e1:88:d3:81:f6:ac:d5:26:90:2f:20:f0:ff:ea:b9:
af:e9:b5:ea:cf:fa:26:7f:75:25:ca:94:5d:bb:df:
82:47:f1:bd:0d:d9:de:bf:f4:99:02:dd:4e:5c:2f:
0e:29:52:43:b1:f1:bd:19:95:79:d1:73:84:fc:81:
8a:c5:dc:ce:09:e4:cb:86:b9:f8:a9:12:b0:84:0a:
72:ad:eb:44:ef:3a:7c:0d:31:fd:d5:8d:d7:45:1a:
7c:4c:47:77:2c:a4:ff:31:00:a9:3f:2d:3f:f0:7b:
d9:c2:b4:ae:64:fb:81:dd:88:fa:7d:70:a9:06:58:
17:3c:00:c1:a7:0c:80:af:cd:fa:7a:78:e3:89:b4:
9b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:31:3C:44:DA:63:21:04:61:FE:1D:31:1F:90:86:E2:9F:61:08:72
X509v3 Authority Key Identifier:
keyid:C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20313939343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.5.0/24
Signature Algorithm: sha256WithRSAEncryption
af:a2:b7:ac:6c:95:1a:a4:cc:51:05:77:6d:e5:67:af:4a:3f:
36:7f:21:3f:53:20:a3:e7:04:68:6f:a0:b9:ab:93:ad:8d:0b:
46:0c:a1:a9:53:ee:6d:42:3d:a5:6f:96:c2:6f:53:cb:69:95:
fc:97:db:77:cc:29:c7:07:8c:30:0e:6a:2a:04:67:5f:14:db:
ee:dc:0b:22:e6:5b:1c:cb:4e:31:1b:f8:76:d7:46:5e:5e:a9:
80:ea:e2:be:41:73:66:83:75:83:6e:e8:e6:a1:12:4a:1b:8f:
2e:79:08:15:9d:65:5b:af:12:9e:00:f9:11:65:01:f2:4f:52:
a6:2c:b1:c7:8e:3f:a2:9a:0d:e4:48:73:76:80:4b:fd:49:8e:
29:6a:95:0b:2f:d9:24:fd:2f:3f:93:28:be:16:14:59:72:bf:
54:e3:e7:97:48:44:e5:6e:c5:a7:c2:ab:c7:a3:50:f6:f4:6f:
86:1e:f8:62:4a:09:3d:7c:49:f8:39:5b:f0:13:b3:ea:8a:51:
86:d1:1c:e9:64:76:cb:93:0c:d9:2e:ab:d6:2c:19:01:06:65:
ec:57:69:30:1a:a8:f0:f4:8f:2f:90:1a:a7:d2:98:6e:c4:0e:
ca:df:a6:ff:d1:ad:c5:6b:29:97:ed:1d:28:23:d4:a3:5a:72:
78:7a:36:3a
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUfugz6kOvc2egw/2zYZ56TuFGcCIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzc5ZDAyYzYxODg2MWFkNDViYWY3OGNlMzkwMjNjYmNi
NDk0YTdiZjAeFw0yNTA1MjcxMzI2NDJaFw0yNjA1MjYxMzMxNDJaMDMxMTAvBgNV
BAMTKDkzMzEzQzQ0REE2MzIxMDQ2MUZFMUQzMTFGOTA4NkUyOUY2MTA4NzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmIkRLRulXgNrU47lL/E/HZK5A
05AGvv6vmHwCa+7YDloLcY0aPjxuUXCrB32wi8wF2q2w1f45zBs1s0BOLJEXnIRd
RzKoii8jU6+ph/rug7Ecc93qG4+8fz6RphoOM62TSw9vS9exW85nAn7zpPMgaBu6
X4nPbOGI04H2rNUmkC8g8P/qua/pterP+iZ/dSXKlF2734JH8b0N2d6/9JkC3U5c
Lw4pUkOx8b0ZlXnRc4T8gYrF3M4J5MuGufipErCECnKt60TvOnwNMf3VjddFGnxM
R3cspP8xAKk/LT/we9nCtK5k+4HdiPp9cKkGWBc8AMGnDICvzfp6eOOJtJsHAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUkzE8RNpjIQRh/h0xH5CG4p9hCHIwHwYDVR0j
BBgwFoAUx50CxhiGGtRbr3jOOQI8vLSUp78wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZDkwYTkzNWEtYTc0ZC00Yjk4LTk0MzAtYmM3YWU1YzI0
ZjI4LzAvQzc5RDAyQzYxODg2MUFENDVCQUY3OENFMzkwMjNDQkNCNDk0QTdCRi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3g1MEN4aGlHR3RSYnIzak9PUUk4dkxT
VXA3OC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZDkwYTkzNWEt
YTc0ZC00Yjk4LTk0MzAtYmM3YWU1YzI0ZjI4LzAvMzEzOTMzMmUzMjM0MzYyZTM1
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzOTM5MzQzMTM1LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
wfYFMA0GCSqGSIb3DQEBCwUAA4IBAQCvoresbJUapMxRBXdt5WevSj82fyE/UyCj
5wRob6C5q5OtjQtGDKGpU+5tQj2lb5bCb1PLaZX8l9t3zCnHB4wwDmoqBGdfFNvu
3Asi5lscy04xG/h210ZeXqmA6uK+QXNmg3WDbujmoRJKG48ueQgVnWVbrxKeAPkR
ZQHyT1KmLLHHjj+img3kSHN2gEv9SY4papULL9kk/S8/kyi+FhRZcr9U4+eXSETl
bsWnwqvHo1D29G+GHvhiSgk9fEn4OVvwE7PqilGG0RzpZHbLkwzZLqvWLBkBBmXs
V2kwGqjw9I8vkBqn0phuxA7K36b/0a3FaymX7R0oI9SjWnJ4ejY6
-----END CERTIFICATE-----
Generated at Fri Jun 6 11:55:58 2025 by rpki-client