Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/36322e3134312e34382e302f32312d3234203d3e203331313033.roa
File: 36322e3134312e34382e302f32312d3234203d3e203331313033.roa (raw, json)
Hash identifier: Eoqc9k3Yv1UQaUFZuo0jARSDnM1xTkUtiaDPuATQups=
Subject key identifier: 0F:A6:C1:9F:1D:25:09:1D:F3:AC:C3:52:3A:CA:2D:F3:72:81:62:A9
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 060157D81FACC99C26023608376642F93F378787
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/36322e3134312e34382e302f32312d3234203d3e203331313033.roa
Signing time: Mon 19 May 2025 12:50:19 +0000
ROA not before: Mon 19 May 2025 12:45:19 +0000
ROA not after: Mon 18 May 2026 12:50:19 +0000
asID: 31103
IP address blocks: 62.141.48.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:01:57:d8:1f:ac:c9:9c:26:02:36:08:37:66:42:f9:3f:37:87:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 19 12:45:19 2025 GMT
Not After : May 18 12:50:19 2026 GMT
Subject: CN=0FA6C19F1D25091DF3ACC3523ACA2DF3728162A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:62:40:a4:96:65:9a:3c:ee:66:5b:37:87:72:
2d:6d:3c:92:8b:94:16:48:c0:ce:a1:8f:df:d6:2e:
b7:e8:8d:ec:0d:d0:e7:45:09:8a:b5:76:12:f2:db:
6b:c7:fb:be:3c:55:0d:5b:6c:46:89:e6:80:ad:4f:
a2:c2:74:70:a4:03:1e:d7:67:5e:c4:a4:91:13:9b:
a4:ca:91:c1:3a:7e:57:17:c4:4b:08:80:5b:57:ef:
3e:18:8e:49:0e:71:6b:c5:5c:4d:59:06:5a:86:9d:
2c:66:3d:4f:aa:48:cd:fb:b4:38:01:bb:93:31:ef:
0a:30:97:25:e9:f5:a7:9f:de:dd:f4:de:9d:93:dd:
2a:2f:bc:72:fe:1b:a2:1e:80:50:a2:fe:b0:37:e9:
80:c4:42:b2:8a:ce:2f:38:db:cf:7c:eb:c6:f8:8a:
97:5a:e1:98:4a:e1:ac:2f:fd:93:d3:4b:ee:83:9a:
a2:15:b8:49:e5:57:e0:39:43:bb:d8:bb:96:a5:fa:
5b:8e:03:37:19:a2:69:83:16:cc:ee:c6:64:89:10:
ca:39:db:3a:ac:5c:e4:bd:e6:a8:97:a4:c4:f1:2c:
e1:01:13:ae:c8:54:e9:15:c1:ca:2b:b9:a8:c3:0b:
75:46:b2:35:38:7c:f8:86:28:09:f0:4c:c8:17:54:
d6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:A6:C1:9F:1D:25:09:1D:F3:AC:C3:52:3A:CA:2D:F3:72:81:62:A9
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/36322e3134312e34382e302f32312d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.141.48.0/21
Signature Algorithm: sha256WithRSAEncryption
99:90:c1:1e:1f:1e:32:34:2b:86:06:f5:cb:a9:f7:d4:19:f3:
7b:f3:27:3d:75:c1:2c:4f:81:bd:a6:37:a7:77:bd:c3:3f:41:
1d:ef:bf:77:ee:f2:b1:63:bc:2c:28:74:d0:d4:ae:d7:6f:62:
30:f6:73:31:05:f7:2b:3f:cc:ab:23:58:26:b6:4f:82:7b:d9:
1b:5e:23:16:30:fd:e2:d7:56:14:bb:0e:57:bd:1f:0d:99:01:
b5:67:a6:6c:c0:d5:83:e1:0d:2b:bf:a4:b4:f0:e9:f6:01:d5:
da:f0:6a:6f:47:3a:f5:4a:a0:85:b6:9a:52:f6:09:0a:98:77:
84:62:11:5b:4b:05:97:d6:18:20:21:ea:3a:61:a2:1b:57:e7:
b3:5d:6d:c6:7f:38:73:de:c4:c4:63:62:49:31:49:6e:a8:9a:
3f:e7:d3:df:11:a1:16:d9:46:f3:b3:b3:2a:f9:06:0a:a3:78:
de:48:fe:41:22:c9:e3:30:c4:8f:55:10:f5:52:97:c6:2f:64:
55:22:e4:4a:a0:f1:cb:7c:9a:ca:2e:74:11:da:04:ec:7d:34:
f6:d8:2a:bc:5a:cb:80:b7:c9:18:13:3d:92:25:1a:b1:39:fb:
4e:f0:02:ed:e7:c8:74:bd:51:d4:51:55:51:db:61:2d:95:f2:
b6:59:c8:34
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUBgFX2B+syZwmAjYIN2ZC+T83h4cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWU1NzY5OTYzODhlOTRiOGM3YWIyMGVmZmIyM2JkMTFi
ZWNiNDEwODAeFw0yNTA1MTkxMjQ1MTlaFw0yNjA1MTgxMjUwMTlaMDMxMTAvBgNV
BAMTKDBGQTZDMTlGMUQyNTA5MURGM0FDQzM1MjNBQ0EyREYzNzI4MTYyQTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6YkCklmWaPO5mWzeHci1tPJKL
lBZIwM6hj9/WLrfojewN0OdFCYq1dhLy22vH+748VQ1bbEaJ5oCtT6LCdHCkAx7X
Z17EpJETm6TKkcE6flcXxEsIgFtX7z4YjkkOcWvFXE1ZBlqGnSxmPU+qSM37tDgB
u5Mx7wowlyXp9aef3t303p2T3SovvHL+G6IegFCi/rA36YDEQrKKzi84289868b4
ipda4ZhK4awv/ZPTS+6DmqIVuEnlV+A5Q7vYu5al+luOAzcZommDFszuxmSJEMo5
2zqsXOS95qiXpMTxLOEBE67IVOkVwcoruajDC3VGsjU4fPiGKAnwTMgXVNbVAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUD6bBnx0lCR3zrMNSOsot83KBYqkwHwYDVR0j
BBgwFoAUnldpljiOlLjHqyDv+yO9Eb7LQQgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAtMmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2
MTIzLzAvOUU1NzY5OTYzODhFOTRCOEM3QUIyMEVGRkIyM0JEMTFCRUNCNDEwOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25sZHBsamlPbExqSHF5RHYteU85RWI3
TFFRZy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAt
MmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2MTIzLzAvMzYzMjJlMzEzNDMxMmUzNDM4
MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzMzMTMxMzAzMy5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAz6N
MDANBgkqhkiG9w0BAQsFAAOCAQEAmZDBHh8eMjQrhgb1y6n31Bnze/MnPXXBLE+B
vaY3p3e9wz9BHe+/d+7ysWO8LCh00NSu129iMPZzMQX3Kz/MqyNYJrZPgnvZG14j
FjD94tdWFLsOV70fDZkBtWembMDVg+ENK7+ktPDp9gHV2vBqb0c69UqghbaaUvYJ
Cph3hGIRW0sFl9YYICHqOmGiG1fns11txn84c97ExGNiSTFJbqiaP+fT3xGhFtlG
87OzKvkGCqN43kj+QSLJ4zDEj1UQ9VKXxi9kVSLkSqDxy3yayi50EdoE7H009tgq
vFrLgLfJGBM9kiUasTn7TvAC7efIdL1R1FFVUdthLZXytlnINA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 08:06:27 2025 by rpki-client