Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137392e302f32342d3234203d3e203132383734.roa
File: 3138352e3136322e3137392e302f32342d3234203d3e203132383734.roa (raw, json)
Hash identifier: Oev3T5PHjGnxWqjgwbUH88tHYEWPx4hW7vlkYnxUh4c=
Subject key identifier: A4:E0:D2:AD:A1:C3:61:01:B0:20:DC:B0:93:02:2A:45:56:D9:73:8C
Certificate issuer: /CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Certificate serial: 06EEF007672FD075E91714BF00AD70590350E9D5
Authority key identifier: E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137392e302f32342d3234203d3e203132383734.roa
Signing time: Fri 23 May 2025 12:37:23 +0000
ROA not before: Fri 23 May 2025 12:32:23 +0000
ROA not after: Fri 22 May 2026 12:37:23 +0000
asID: 12874
IP address blocks: 185.162.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:ee:f0:07:67:2f:d0:75:e9:17:14:bf:00:ad:70:59:03:50:e9:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Validity
Not Before: May 23 12:32:23 2025 GMT
Not After : May 22 12:37:23 2026 GMT
Subject: CN=A4E0D2ADA1C36101B020DCB093022A4556D9738C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:7d:b8:06:02:01:50:a6:b4:9a:b4:f7:43:45:
97:f4:57:23:48:55:03:4f:c5:3c:a9:ec:32:9c:09:
cb:07:f2:73:dd:f9:67:ba:86:ee:e8:c6:3c:8f:c5:
8d:91:a1:34:99:12:57:e7:20:94:e1:12:ad:99:67:
3b:60:d3:8f:65:80:6c:c6:8a:90:f4:50:23:55:1a:
0e:ca:a2:91:1e:52:1f:65:09:a4:b0:75:5b:03:98:
7e:42:fe:7a:29:75:51:20:3b:94:60:64:74:a0:29:
8a:45:f3:0d:ce:cc:d8:d8:0c:09:8f:e3:75:b9:e1:
42:bf:e5:a2:a6:be:35:7d:81:38:e1:4a:cc:05:9a:
76:52:b7:c1:d0:20:1c:ce:4f:f1:58:d9:cf:1e:e9:
68:73:18:99:df:0f:cb:96:d7:d6:ab:eb:81:00:0b:
68:91:ed:45:76:fb:7a:a3:c7:8f:1f:ae:3a:34:bc:
2f:eb:1a:31:0b:76:76:79:b6:c4:92:80:6c:a6:25:
90:3c:56:62:b7:5d:c7:44:11:09:5b:43:84:ed:9f:
ea:c2:94:e0:0c:2c:3b:94:71:92:11:0c:ab:98:da:
81:47:d7:cc:ee:6a:c6:8d:d1:a7:b3:42:13:84:3e:
dc:47:7a:88:fd:db:81:31:04:63:f8:f8:98:bb:2a:
cc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E0:D2:AD:A1:C3:61:01:B0:20:DC:B0:93:02:2A:45:56:D9:73:8C
X509v3 Authority Key Identifier:
keyid:E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137392e302f32342d3234203d3e203132383734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.179.0/24
Signature Algorithm: sha256WithRSAEncryption
30:cf:f2:f9:9d:14:67:23:f0:b9:9f:8f:be:5a:bc:12:ec:25:
d9:10:3f:52:36:1f:eb:5f:de:66:0b:e2:dc:28:2c:bb:3f:60:
87:12:76:77:57:c2:3f:75:55:06:c1:73:22:3f:28:0f:5a:e4:
f6:72:6a:21:4f:f8:52:e8:d0:ce:f1:75:ff:ef:8b:7d:2b:92:
55:08:f9:15:5c:7a:f7:b0:f4:f8:04:dd:50:9c:83:9c:5a:4f:
63:93:1b:a9:4d:28:e3:43:62:98:ff:81:9d:3f:d9:c4:ed:cb:
0a:0c:f5:f2:cc:f1:8f:39:ba:8d:c8:a8:d7:a8:e3:9e:a3:a9:
46:6a:2e:29:9e:95:4d:cf:e7:a7:d6:3a:f7:e4:78:ad:19:c3:
8a:07:82:6a:28:18:65:19:2c:63:3c:24:5c:87:52:cf:b1:0d:
bb:78:89:a0:f1:0a:b6:58:a9:52:28:a2:b0:6f:01:a7:96:6d:
10:66:9c:bf:b6:88:16:c2:74:b1:88:71:e6:e6:b2:3a:4c:80:
ca:89:b7:54:bb:1a:93:8a:8b:52:10:1a:55:3f:f7:59:b3:8e:
76:ba:54:1d:c9:34:e5:79:2e:b3:5d:5e:20:ed:28:4e:2f:36:
50:08:5f:22:3c:fc:5d:0a:d4:ac:d2:3e:0c:78:6e:dc:45:5f:
33:2c:d3:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:17:48 2025 by rpki-client