Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/34352e3134392e3135332e302f32342d3234203d3e203133333335.roa
File: 34352e3134392e3135332e302f32342d3234203d3e203133333335.roa (raw, json)
Hash identifier: oW4WynaArlYMwXoVGq9L68dOfSrJj8wnnWqrszCEjBM=
Subject key identifier: 4B:01:F6:BF:C7:9A:B0:8A:CE:2E:84:A0:CB:B5:A3:5E:13:8A:7D:31
Certificate issuer: /CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Certificate serial: 1A1F25C7A534724560FA59292C0DC5B1591EB88D
Authority key identifier: E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/34352e3134392e3135332e302f32342d3234203d3e203133333335.roa
Signing time: Fri 23 May 2025 17:36:42 +0000
ROA not before: Fri 23 May 2025 17:31:42 +0000
ROA not after: Fri 22 May 2026 17:36:42 +0000
asID: 13335
IP address blocks: 45.149.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:1f:25:c7:a5:34:72:45:60:fa:59:29:2c:0d:c5:b1:59:1e:b8:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Validity
Not Before: May 23 17:31:42 2025 GMT
Not After : May 22 17:36:42 2026 GMT
Subject: CN=4B01F6BFC79AB08ACE2E84A0CBB5A35E138A7D31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2c:71:11:73:b7:13:e7:bf:10:c9:81:32:27:
cd:1d:de:61:12:58:0c:0c:81:8b:40:70:9b:eb:34:
aa:37:96:92:99:92:65:1b:6d:be:21:ee:5d:76:96:
ac:11:42:73:cd:88:08:31:26:4b:6c:77:86:9c:97:
e2:c4:3c:73:00:99:4a:81:c3:ff:b4:ab:38:bf:7c:
8d:e6:cc:bd:3c:04:fe:14:46:f5:8a:a3:4b:35:c0:
b4:e9:2d:b4:4b:5e:21:e2:18:32:dd:69:79:73:1b:
9e:a5:d8:60:cd:3c:7e:ea:a0:fe:73:11:ee:89:7b:
08:ce:a2:ce:ac:19:3e:5c:92:a9:ff:7b:ff:76:74:
22:59:4d:65:3a:08:e1:86:c3:c2:cb:15:6a:71:8a:
ec:f8:84:47:9a:29:10:21:18:e5:9b:34:ae:4c:90:
8a:8e:9d:65:35:54:d1:a1:05:89:86:73:2b:bb:93:
cb:80:c4:16:5e:52:6f:79:49:30:78:2f:d7:5a:5b:
fb:24:e8:37:39:cf:85:f1:65:c8:60:33:42:72:ed:
b0:1a:45:4c:5c:1b:b5:8f:2a:c1:40:95:9b:ad:64:
10:8b:95:81:4a:87:75:cc:43:3a:d7:37:c8:73:38:
93:2f:f7:e5:ea:01:91:f9:24:8f:2c:e6:2f:86:97:
3a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:01:F6:BF:C7:9A:B0:8A:CE:2E:84:A0:CB:B5:A3:5E:13:8A:7D:31
X509v3 Authority Key Identifier:
keyid:E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/34352e3134392e3135332e302f32342d3234203d3e203133333335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.153.0/24
Signature Algorithm: sha256WithRSAEncryption
28:1d:27:60:e3:79:81:4b:11:8d:17:0f:2e:f2:ff:b0:25:d4:
69:30:87:aa:3d:d4:9c:e0:40:0c:9b:d1:5d:be:d9:54:f2:81:
24:9a:86:c7:b4:3e:d8:70:05:87:49:ea:ed:96:4b:de:56:b6:
06:35:a8:8c:0e:2b:99:2f:d5:e4:27:0c:f0:fe:fa:62:a6:fa:
3f:bf:df:c7:9c:98:0f:7d:69:26:ca:75:9e:5d:17:41:fc:4e:
3d:04:ce:5d:ca:e4:45:fb:66:c1:d0:90:17:16:18:a3:70:e6:
8d:21:96:ef:d8:ca:87:50:34:2c:90:48:a5:5d:6f:95:cb:07:
d7:f0:14:bf:02:39:ae:65:55:be:73:2a:d5:f2:70:46:b5:93:
e2:e6:8e:87:3c:fc:4b:7c:92:6e:54:a4:7b:d8:96:75:ee:32:
48:23:c1:47:01:ec:58:54:e4:9a:ce:3e:b7:f8:6e:63:5f:d8:
f5:28:5c:df:a8:67:9b:64:f6:a9:34:f6:90:db:92:55:39:74:
4f:61:ef:e2:74:21:87:f8:23:50:0b:a9:9d:11:aa:6d:2a:0e:
6a:6f:a6:e7:5e:bf:a5:b3:c6:86:60:01:a3:cb:0f:8a:0e:20:
f3:c5:06:1d:52:48:c1:89:4b:17:6b:42:30:5a:d6:eb:4e:e5:
aa:94:04:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:58:55 2025 by rpki-client