Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131332e32352e302f32342d3234203d3e20323134323039.roa
File: 39332e3131332e32352e302f32342d3234203d3e20323134323039.roa (raw, json)
Hash identifier: JoDR/IGOmrYGEwu1+N5VZtYwQlvGeImnksk34tLzkIU=
Subject key identifier: 2A:80:51:06:9D:10:D3:B6:73:25:95:07:75:A7:8D:9A:B0:9A:1D:16
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 0CA0A8619E903F11B91C7AB4A963E7B58387D3C2
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131332e32352e302f32342d3234203d3e20323134323039.roa
Signing time: Mon 25 Aug 2025 19:54:13 +0000
ROA not before: Mon 25 Aug 2025 19:49:13 +0000
ROA not after: Mon 24 Aug 2026 19:54:13 +0000
asID: 214209
IP address blocks: 93.113.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 16:45:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:a0:a8:61:9e:90:3f:11:b9:1c:7a:b4:a9:63:e7:b5:83:87:d3:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Aug 25 19:49:13 2025 GMT
Not After : Aug 24 19:54:13 2026 GMT
Subject: CN=2A8051069D10D3B67325950775A78D9AB09A1D16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:61:69:a7:91:70:9c:a2:f5:29:b4:87:53:5e:
48:00:15:08:66:b2:74:62:94:4c:35:10:63:cb:c9:
ea:b3:53:d3:7c:2f:db:ea:34:9b:0b:90:9e:3d:44:
80:a8:5c:5c:59:b1:b6:8e:84:ad:8b:d9:44:09:17:
f2:43:fa:a3:e9:ed:fa:38:87:63:94:43:8f:c4:75:
4c:bf:40:87:0e:d2:35:1d:65:ec:17:fe:77:ef:be:
68:d2:90:4f:92:61:1e:0d:07:d7:a0:d5:28:f8:98:
61:95:a5:36:89:04:77:8a:c1:a5:41:d8:52:b2:9e:
86:d6:62:b0:7b:b7:7c:ff:c2:05:f2:3c:39:9a:48:
8e:85:48:d2:f8:e9:4e:ac:70:a0:3c:cc:a9:04:c1:
c8:47:3d:54:33:bc:09:2e:3d:43:20:ff:52:c7:7b:
01:63:33:cf:8b:a7:96:49:bf:e2:fa:42:fa:70:81:
03:3f:22:56:24:0f:f8:d1:8c:89:f9:91:92:67:5e:
9f:97:37:b2:1a:78:a5:f2:10:0f:14:cc:c0:5b:10:
c3:a0:ff:78:0b:f8:03:2a:79:c1:1c:f2:b2:00:78:
e5:9b:ad:b0:9b:9a:25:30:95:80:0a:18:4c:df:0e:
4f:ec:74:85:e4:5f:e4:33:c9:41:03:5a:07:4c:b3:
0f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:80:51:06:9D:10:D3:B6:73:25:95:07:75:A7:8D:9A:B0:9A:1D:16
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131332e32352e302f32342d3234203d3e20323134323039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.25.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:32:bb:6c:cc:a9:9d:8d:66:0d:b6:8d:72:67:24:45:2f:67:
89:f6:c9:f9:29:c7:aa:d1:a7:a8:c8:26:83:65:6e:b2:03:00:
3c:a0:97:3c:b2:69:b5:30:93:b7:f4:6e:b1:62:bc:97:cf:8d:
53:e9:ea:ec:0a:eb:ce:67:86:95:c6:f2:9f:6c:7c:e5:6b:3e:
3b:06:60:11:05:49:a5:45:b1:64:b7:2a:22:d6:ae:2b:e7:0f:
99:c6:57:03:79:1d:dd:f8:0d:15:b7:68:12:c1:0e:b7:c7:4e:
72:85:7d:a5:69:74:7e:2f:f4:4d:1b:f0:90:27:58:db:7a:45:
e0:9b:4e:95:a8:fe:6b:27:b1:9c:c6:51:9a:36:47:37:77:65:
2a:df:5c:28:a4:92:2e:f2:04:53:7f:cd:4c:e2:03:f2:37:90:
b6:f5:9c:79:0b:fb:2a:60:80:87:72:33:88:07:91:e3:66:56:
5a:fb:7c:bf:20:52:8e:6b:81:ed:60:13:2d:7a:1c:ca:75:af:
66:8a:d5:a2:94:9f:69:94:c9:92:a3:2c:4a:4b:5c:88:46:2f:
63:c4:e6:dc:77:99:c6:37:7a:92:18:7a:40:2c:5e:e7:ae:d2:
ac:52:55:3f:e5:6b:bd:35:06:25:64:13:eb:d3:d3:f6:98:98:
01:07:d2:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 03:56:06 2025 by rpki-client