Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20313939343135.roa
File: 3139332e3234362e352e302f32342d3234203d3e20313939343135.roa (raw, json)
Hash identifier: lvghBplCcmXtQEEJ3nC5HmHIcxgk88drnBMjhNzmX2g=
Subject key identifier: 73:89:9E:B5:4F:3C:D5:25:15:89:03:32:6B:1A:CF:A3:45:63:54:35
Certificate issuer: /CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Certificate serial: 77ED531FFD35F1124B26849E4385F871DF1D1DFD
Authority key identifier: C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20313939343135.roa
Signing time: Wed 27 Aug 2025 08:55:56 +0000
ROA not before: Wed 27 Aug 2025 08:50:56 +0000
ROA not after: Wed 26 Aug 2026 08:55:56 +0000
asID: 199415
IP address blocks: 193.246.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.mft
rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 01:05:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:ed:53:1f:fd:35:f1:12:4b:26:84:9e:43:85:f8:71:df:1d:1d:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Validity
Not Before: Aug 27 08:50:56 2025 GMT
Not After : Aug 26 08:55:56 2026 GMT
Subject: CN=73899EB54F3CD525158903326B1ACFA345635435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:62:6a:5c:7a:e2:01:52:41:8d:ed:00:85:8b:
33:b3:f9:66:f4:9f:a5:e8:53:ca:d4:1d:3d:fc:48:
f9:9b:a0:b7:f0:2f:8c:20:fd:d9:2d:66:2f:84:54:
b3:f2:37:0f:4b:6a:0b:ec:36:51:7c:b6:2a:a1:d5:
53:ea:4d:99:2f:1d:f4:bc:47:c0:ce:a4:b4:7f:b2:
09:05:cc:04:80:52:bf:5b:a3:b7:fa:c8:53:27:27:
41:51:65:6b:a3:67:59:a0:6d:2d:6b:f1:72:52:cb:
fe:5e:51:56:e1:30:90:6a:b9:40:cc:ef:6a:ba:37:
50:63:72:d4:a2:11:6a:39:d2:0d:ef:fa:a3:8e:f3:
71:cf:45:c9:fd:27:88:da:8f:a8:35:f8:a8:2b:eb:
46:d3:b5:9d:05:7c:83:f3:5e:cf:c1:e0:aa:cc:73:
a1:a0:34:f0:0e:da:50:a1:0e:d7:11:5f:94:6d:7d:
73:55:00:df:f8:2c:3e:50:74:a0:52:7a:0f:f7:f3:
30:ee:36:ac:31:7d:6a:2d:82:0e:46:85:25:e4:cc:
cd:d0:01:79:44:0f:14:f1:8b:c5:47:4a:cf:c0:d6:
e0:05:6f:f7:01:02:3a:13:ef:0a:a2:9e:c7:35:b3:
c0:71:d7:22:6e:6c:05:82:18:d7:3d:1a:fc:c1:1d:
31:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:89:9E:B5:4F:3C:D5:25:15:89:03:32:6B:1A:CF:A3:45:63:54:35
X509v3 Authority Key Identifier:
keyid:C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20313939343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.5.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:24:da:21:25:9b:ee:17:8a:ef:f8:9d:09:60:85:2f:10:37:
8a:53:2a:5c:41:b6:af:8c:96:e4:4e:3d:45:19:4f:73:43:a9:
30:b7:c2:81:de:d0:4f:4f:99:f2:bd:26:06:26:3c:12:e7:ef:
0d:a3:ac:cf:1d:a7:88:fe:c8:61:47:ed:05:70:ae:12:ba:fd:
bf:41:b6:c0:e7:53:13:8c:d4:c5:65:04:82:a8:12:08:c2:7b:
fd:0c:81:0c:c3:37:0b:9c:a5:58:43:11:25:61:ee:2f:c1:5a:
bc:f2:a4:2d:8d:fc:d8:1d:d5:d2:c2:37:73:10:8b:3f:13:53:
ce:97:3f:3e:4b:c3:e9:50:52:d4:2e:3c:f9:4a:11:ba:f2:b9:
ea:a1:6d:e7:60:4d:42:1e:99:47:cb:38:ea:21:76:cd:70:b6:
e6:1e:2c:1b:25:0e:82:05:2c:23:ee:83:2a:9c:80:97:78:b5:
37:c9:12:33:71:59:5f:b9:da:97:9e:c2:76:6c:de:a0:6a:65:
3b:c5:6a:62:a2:53:9f:ce:4b:1a:b0:e8:8c:c9:bb:d8:e0:20:
7b:2f:57:fa:1d:ed:dd:3a:5d:b6:59:fb:82:1b:1d:a9:ae:6e:
69:3a:e2:64:b9:ee:95:8e:08:32:30:5e:07:6c:78:19:c3:f1:
df:f6:c2:69
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUd+1TH/018RJLJoSeQ4X4cd8dHf0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzc5ZDAyYzYxODg2MWFkNDViYWY3OGNlMzkwMjNjYmNi
NDk0YTdiZjAeFw0yNTA4MjcwODUwNTZaFw0yNjA4MjYwODU1NTZaMDMxMTAvBgNV
BAMTKDczODk5RUI1NEYzQ0Q1MjUxNTg5MDMzMjZCMUFDRkEzNDU2MzU0MzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNYmpceuIBUkGN7QCFizOz+Wb0
n6XoU8rUHT38SPmboLfwL4wg/dktZi+EVLPyNw9LagvsNlF8tiqh1VPqTZkvHfS8
R8DOpLR/sgkFzASAUr9bo7f6yFMnJ0FRZWujZ1mgbS1r8XJSy/5eUVbhMJBquUDM
72q6N1BjctSiEWo50g3v+qOO83HPRcn9J4jaj6g1+Kgr60bTtZ0FfIPzXs/B4KrM
c6GgNPAO2lChDtcRX5RtfXNVAN/4LD5QdKBSeg/38zDuNqwxfWotgg5GhSXkzM3Q
AXlEDxTxi8VHSs/A1uAFb/cBAjoT7wqinsc1s8Bx1yJubAWCGNc9GvzBHTFZAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUc4metU881SUViQMyaxrPo0VjVDUwHwYDVR0j
BBgwFoAUx50CxhiGGtRbr3jOOQI8vLSUp78wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZDkwYTkzNWEtYTc0ZC00Yjk4LTk0MzAtYmM3YWU1YzI0
ZjI4LzAvQzc5RDAyQzYxODg2MUFENDVCQUY3OENFMzkwMjNDQkNCNDk0QTdCRi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3g1MEN4aGlHR3RSYnIzak9PUUk4dkxT
VXA3OC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZDkwYTkzNWEt
YTc0ZC00Yjk4LTk0MzAtYmM3YWU1YzI0ZjI4LzAvMzEzOTMzMmUzMjM0MzYyZTM1
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzOTM5MzQzMTM1LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
wfYFMA0GCSqGSIb3DQEBCwUAA4IBAQBtJNohJZvuF4rv+J0JYIUvEDeKUypcQbav
jJbkTj1FGU9zQ6kwt8KB3tBPT5nyvSYGJjwS5+8No6zPHaeI/shhR+0FcK4Suv2/
QbbA51MTjNTFZQSCqBIIwnv9DIEMwzcLnKVYQxElYe4vwVq88qQtjfzYHdXSwjdz
EIs/E1POlz8+S8PpUFLULjz5ShG68rnqoW3nYE1CHplHyzjqIXbNcLbmHiwbJQ6C
BSwj7oMqnICXeLU3yRIzcVlfudqXnsJ2bN6gamU7xWpiolOfzksasOiMybvY4CB7
L1f6He3dOl22WfuCGx2prm5pOuJkue6VjggyMF4HbHgZw/Hf9sJp
-----END CERTIFICATE-----
Generated at Sat Sep 6 08:06:11 2025 by rpki-client