Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137382e302f32342d3234203d3e2032393134.roa
File: 3138352e3136322e3137382e302f32342d3234203d3e2032393134.roa (raw, json)
Hash identifier: s1bbd6LyvYQrZ11FtU3Xa/oNq7QSAV2j6DcxJrrwcV0=
Subject key identifier: 7C:82:CC:D6:2D:97:07:D7:0A:F9:9F:0A:AA:CE:EA:3E:8D:30:0F:7C
Certificate issuer: /CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Certificate serial: 1ECBD28A2D982D0C58C7DE9C4C00DC75BE6BD9CC
Authority key identifier: E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137382e302f32342d3234203d3e2032393134.roa
Signing time: Fri 23 May 2025 12:37:23 +0000
ROA not before: Fri 23 May 2025 12:32:23 +0000
ROA not after: Fri 22 May 2026 12:37:23 +0000
asID: 2914
IP address blocks: 185.162.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:cb:d2:8a:2d:98:2d:0c:58:c7:de:9c:4c:00:dc:75:be:6b:d9:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Validity
Not Before: May 23 12:32:23 2025 GMT
Not After : May 22 12:37:23 2026 GMT
Subject: CN=7C82CCD62D9707D70AF99F0AAACEEA3E8D300F7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f0:99:3a:ce:0b:da:9a:8e:1c:42:f9:d5:fb:
12:bc:d3:73:60:ce:a9:50:06:99:0f:77:4c:7c:ae:
2f:29:c9:ef:ee:65:46:ef:d6:43:f1:f9:7e:50:73:
05:4a:e1:8e:11:85:bd:c6:a3:55:47:ff:ae:fc:27:
34:88:a9:00:6e:d5:5d:fa:31:a3:8f:fd:c5:c1:83:
42:e2:33:90:ad:df:34:13:fe:f8:a2:ef:46:59:b2:
8c:1f:f9:73:45:a5:47:94:94:f6:e1:0c:a0:e0:2d:
8f:5b:a4:a9:9c:17:d6:2c:97:ae:39:65:a1:2c:8a:
61:5a:f3:5d:b5:d7:51:e5:00:fc:28:29:96:14:45:
4e:3a:c9:e5:3c:ce:4b:04:24:ed:5f:c9:68:6a:90:
40:b8:aa:78:11:d9:4b:a9:97:88:87:b1:55:48:55:
38:0b:66:5a:5e:61:bd:f1:07:11:c4:b2:1f:46:bc:
d6:17:ec:8f:ed:a1:90:ee:36:d7:f7:83:50:70:68:
c1:8c:0e:0f:bf:fa:c4:e6:bc:93:c3:8e:c0:c8:02:
cb:62:43:7c:51:2d:44:7c:9c:79:59:bd:6c:b9:25:
63:c9:a9:28:c9:26:75:ca:e9:b5:56:a8:69:c6:de:
c7:12:05:1f:bd:e8:ea:9a:4f:47:08:b2:6f:19:c1:
a8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:82:CC:D6:2D:97:07:D7:0A:F9:9F:0A:AA:CE:EA:3E:8D:30:0F:7C
X509v3 Authority Key Identifier:
keyid:E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137382e302f32342d3234203d3e2032393134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.178.0/24
Signature Algorithm: sha256WithRSAEncryption
24:1d:12:68:e7:b3:21:38:1c:2d:81:c8:ae:73:46:75:71:a3:
13:81:73:01:d0:5c:1a:80:e6:1b:00:46:06:25:de:17:1b:3a:
fb:85:7a:55:6d:d9:4e:b8:c3:6b:f5:cd:30:8f:9a:ff:c2:d7:
25:21:fd:4f:be:a9:ab:20:0d:de:68:91:03:04:40:7a:fd:c6:
7b:5e:05:d1:42:4f:22:2d:63:2c:1d:df:3a:75:70:39:c5:a2:
73:38:dc:46:74:09:82:ea:af:c0:fc:c6:14:8b:11:39:7c:1e:
cb:e5:21:74:d3:4a:ce:3e:0e:7e:9d:eb:ef:9f:e4:eb:c0:30:
33:63:22:fc:d8:ed:d1:38:b4:23:d2:ce:13:5b:71:a5:ab:39:
7a:d7:1a:dd:77:ce:02:4f:20:22:10:20:aa:2d:52:c3:4c:6e:
ea:31:c5:a9:a0:29:bf:4c:38:a7:e7:cc:b8:0d:b0:24:1e:5d:
2f:28:fd:44:29:61:e3:fe:fa:e3:c5:67:cd:d9:fe:e5:bc:59:
01:69:4e:b2:bd:d5:fa:48:dc:c2:51:65:22:86:73:d7:42:68:
62:a9:8b:55:65:b2:ba:97:a6:64:9f:26:32:82:41:ea:f1:91:
b8:e4:8b:fa:4e:f7:66:0a:d4:bf:bc:00:d1:9f:e3:e2:d5:ec:
43:36:c2:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:47:17 2025 by rpki-client