Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/34352e3134392e3135322e302f32342d3234203d3e203235313630.roa
File: 34352e3134392e3135322e302f32342d3234203d3e203235313630.roa (raw, json)
Hash identifier: F5qAcWfgptgKaaDsmY0iSSOR+nBZv9RYAI/0kq8SYl8=
Subject key identifier: 16:D5:05:75:83:D5:8A:E9:96:19:9A:FC:10:6A:48:AA:39:74:C6:7A
Certificate issuer: /CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Certificate serial: 5606FABF73CEB0FE33577890FA34B5F3B0D15DA1
Authority key identifier: E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/34352e3134392e3135322e302f32342d3234203d3e203235313630.roa
Signing time: Fri 23 May 2025 12:37:23 +0000
ROA not before: Fri 23 May 2025 12:32:23 +0000
ROA not after: Fri 22 May 2026 12:37:23 +0000
asID: 25160
IP address blocks: 45.149.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:06:fa:bf:73:ce:b0:fe:33:57:78:90:fa:34:b5:f3:b0:d1:5d:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Validity
Not Before: May 23 12:32:23 2025 GMT
Not After : May 22 12:37:23 2026 GMT
Subject: CN=16D5057583D58AE996199AFC106A48AA3974C67A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4e:6a:54:dc:4e:fc:2a:92:67:79:00:00:05:
f4:b1:19:e8:ee:b8:11:8f:45:16:3a:15:02:69:97:
d4:6d:d9:da:47:9a:5d:7e:2a:d5:93:16:19:43:be:
bd:d8:cc:b8:c7:9a:3c:92:3d:ea:85:2f:c2:31:01:
99:b9:05:5e:fe:88:96:7f:12:2f:5f:e0:2e:a8:a4:
39:a6:b2:dd:e3:25:e5:8e:d5:80:e7:c3:4c:46:d2:
56:bd:e3:a5:17:82:41:ce:93:25:6e:0d:bc:d7:31:
e1:5f:5c:02:f9:a4:28:17:5f:a6:7b:8b:47:eb:53:
dd:a9:52:ec:f8:70:41:0d:b0:fb:2d:98:1d:5c:c4:
a3:fc:63:b7:15:0d:f7:64:2a:09:b3:e2:f6:4b:3c:
1d:73:ee:96:39:b1:38:1d:4c:8e:9a:93:07:4d:e9:
31:ed:77:b6:8a:88:a0:83:cf:23:78:07:25:5c:c9:
75:93:46:25:e1:4b:fd:7e:08:4d:6b:aa:82:09:d4:
5a:df:d6:d1:38:de:2d:91:37:10:c4:9a:2b:60:88:
7b:47:6a:65:dd:82:f0:99:b0:ba:85:c6:76:e2:ec:
c2:5c:5c:2f:5b:65:cb:75:78:e9:8a:78:05:62:64:
f3:d8:13:e3:fc:a2:b2:cc:d0:e5:8d:a0:32:54:ae:
42:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D5:05:75:83:D5:8A:E9:96:19:9A:FC:10:6A:48:AA:39:74:C6:7A
X509v3 Authority Key Identifier:
keyid:E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/34352e3134392e3135322e302f32342d3234203d3e203235313630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.152.0/24
Signature Algorithm: sha256WithRSAEncryption
34:10:f0:3c:65:f8:f4:54:33:bc:23:9b:4b:bf:c1:a2:d9:73:
f4:91:84:58:2a:37:38:07:03:3e:83:af:92:aa:f3:b2:9c:cf:
5f:26:76:ef:bd:7c:b5:7c:75:d9:3c:44:7e:84:3f:69:99:a3:
55:44:4d:e4:42:ee:fc:d9:0e:95:80:a6:a1:16:00:03:0e:68:
1d:96:d9:34:48:f7:1e:9e:dd:22:59:39:6b:cc:68:40:3c:2c:
f5:c1:5b:9d:2a:dc:3c:7c:61:5e:f4:a1:44:d6:28:f2:26:68:
07:b5:24:22:a2:13:48:f7:75:19:aa:94:89:df:16:c5:bc:3f:
6e:50:7b:65:b1:10:c2:5a:52:1d:96:50:f9:17:ef:b2:ae:4f:
b7:02:94:ab:72:c6:49:56:69:e8:f5:4a:de:fb:56:97:92:06:
73:88:22:7e:cd:75:f8:d8:c9:ce:0e:7b:a3:32:7b:ec:c4:f4:
b7:20:55:ba:ce:32:a1:49:52:f2:77:38:38:37:5f:94:4c:0f:
11:19:d4:c1:7f:0c:48:61:bc:f0:9d:67:fb:43:37:d8:f1:60:
83:07:2f:5f:54:43:9d:66:51:04:88:b1:36:6e:5c:6c:47:28:
ff:f1:cc:e3:91:b9:d6:49:7c:d2:86:3f:08:4a:e7:1f:85:5c:
6b:12:e9:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:00:00 2025 by rpki-client