Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203136323736.roa
File: 37372e38312e3133382e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: QSH/lbFqFfB0kjPH8NXF1ssxXFJMA3tQTCmwcMlSfAQ=
Subject key identifier: 90:C2:CB:30:3C:29:AE:7F:63:51:59:A5:44:DF:0C:11:BF:9C:8C:ED
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 2FA15A96A2A8871F05477821555D9D6FC18EA136
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203136323736.roa
Signing time: Sat 06 Sep 2025 23:55:00 +0000
ROA not before: Sat 06 Sep 2025 23:50:00 +0000
ROA not after: Sat 05 Sep 2026 23:55:00 +0000
asID: 16276
IP address blocks: 77.81.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:a1:5a:96:a2:a8:87:1f:05:47:78:21:55:5d:9d:6f:c1:8e:a1:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Sep 6 23:50:00 2025 GMT
Not After : Sep 5 23:55:00 2026 GMT
Subject: CN=90C2CB303C29AE7F635159A544DF0C11BF9C8CED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2f:ec:be:ef:54:b2:d5:60:99:ff:2b:b7:61:
23:6d:a3:6c:75:83:ed:91:68:6c:43:8f:79:11:82:
8b:15:08:03:2a:e2:9a:59:bf:dc:7e:3f:f5:06:f5:
d3:db:c1:e7:d5:5e:d0:05:65:9d:be:f0:21:70:89:
53:1f:22:3e:a4:da:27:2f:f0:78:bf:51:2f:1d:a4:
61:41:f4:8e:87:fd:96:49:5d:5e:de:40:c5:02:41:
ef:0c:36:7e:3d:03:53:45:7b:07:cd:aa:ae:75:ca:
87:b7:70:60:7b:77:a8:3a:f7:bc:22:80:7c:81:ee:
fb:f9:29:2e:fd:ef:d8:2a:30:eb:99:ae:fe:14:ac:
a8:53:39:42:41:6d:7f:82:d7:33:51:a4:c7:e1:c2:
02:ab:dc:7a:4d:4c:92:f1:43:bf:1f:70:7d:05:f5:
98:46:69:2a:9a:e4:e3:9e:64:5d:c8:82:62:2e:3b:
ad:cb:cd:39:6e:78:fb:20:43:86:6a:ba:e6:2c:fb:
7b:58:57:ab:17:2a:e9:65:11:a3:3f:ad:08:f3:34:
48:b5:81:55:d7:6d:0a:26:3a:d5:06:dd:33:7c:ce:
09:c1:9b:f2:7f:95:08:8c:af:d2:45:12:73:d3:89:
3b:49:50:06:36:80:5a:ac:f1:21:1b:3c:17:fa:f4:
0b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C2:CB:30:3C:29:AE:7F:63:51:59:A5:44:DF:0C:11:BF:9C:8C:ED
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.138.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:c3:8f:b5:e0:54:5e:31:c7:54:f2:cf:61:f3:3f:bd:26:af:
ba:75:1d:41:bd:ec:7d:75:42:da:ac:57:bc:3b:de:f7:09:ce:
af:ed:48:ea:d6:b3:1e:16:53:d5:04:58:1e:fa:a4:81:ad:c2:
5c:f8:46:f8:10:2b:37:e7:49:49:91:ae:1d:b8:80:0a:83:76:
a4:18:83:9e:6d:eb:62:9f:98:32:87:f0:d9:50:98:8e:6d:68:
8e:f5:2b:f5:e3:d3:ff:9b:78:7c:22:cc:07:83:d6:ac:8d:e7:
d7:d5:16:66:2c:ce:9f:57:45:94:6d:96:a1:0a:37:8b:84:fb:
f4:e3:58:5a:c4:fc:85:19:82:00:21:11:26:a1:f8:0b:03:c6:
64:a2:0a:a3:e7:05:8f:d2:d5:dd:91:2d:46:36:60:d6:2a:b4:
31:27:46:18:7d:0d:b7:f7:c0:f8:82:a2:df:af:d5:bd:0b:17:
e6:da:7e:d4:e4:68:c3:61:f9:fa:4a:42:3e:ce:5b:90:c5:2a:
a9:30:18:37:97:6b:cc:4a:fc:20:47:d6:89:2b:02:e7:01:ce:
db:8a:17:fc:58:49:05:5c:6b:c5:8d:25:96:b4:9c:4a:6d:5e:
b3:e1:97:c0:d5:c3:23:d7:31:bc:70:0a:ca:07:ef:08:c6:90:
9a:46:d5:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 05:37:34 2025 by rpki-client