Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e33302e302f32342d3234203d3e20323036313530.roa
File: 38322e3131382e33302e302f32342d3234203d3e20323036313530.roa (raw, json)
Hash identifier: GQbNUBbyharUaqO4XvFcJE4s5q8l077rf+QS1KmAnxo=
Subject key identifier: A3:6D:D1:18:FD:A1:E9:30:43:A2:C3:73:A2:AD:4F:CA:F3:99:1B:DE
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 5C5A9C9D45E90DDF56C5D4036BD2E0F0A6B5C267
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e33302e302f32342d3234203d3e20323036313530.roa
Signing time: Thu 06 Mar 2025 11:53:56 +0000
ROA not before: Thu 06 Mar 2025 11:48:56 +0000
ROA not after: Thu 05 Mar 2026 11:53:56 +0000
asID: 206150
IP address blocks: 82.118.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:5a:9c:9d:45:e9:0d:df:56:c5:d4:03:6b:d2:e0:f0:a6:b5:c2:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Mar 6 11:48:56 2025 GMT
Not After : Mar 5 11:53:56 2026 GMT
Subject: CN=A36DD118FDA1E93043A2C373A2AD4FCAF3991BDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5c:86:82:eb:77:2d:67:96:98:0c:e2:c2:29:
7c:63:1a:d6:7d:4a:04:3e:a9:1e:ca:a9:da:fd:0f:
21:97:bf:1f:58:8a:79:91:25:de:d5:76:3a:22:27:
a5:8c:f1:ab:ce:a1:e9:3d:db:74:3b:a6:ef:5c:31:
c7:57:7d:1d:24:e4:2f:a5:26:6e:40:54:1a:a0:ae:
4d:e9:2a:63:a8:90:6d:34:00:00:06:b4:03:86:b0:
34:7c:41:0c:68:a2:99:d4:a6:d3:a4:8b:cf:4e:cf:
6b:6d:40:67:b9:a0:bd:f4:5a:fa:4d:c4:c8:f2:80:
26:b3:a4:86:13:eb:d1:73:ec:bd:b3:86:f2:0c:a6:
3a:3c:3a:9b:84:d5:a2:bf:8b:93:2e:c3:d9:27:d4:
43:df:32:19:56:ce:b2:c8:3b:19:dd:de:d1:7f:68:
20:75:35:d8:3b:bf:5e:4c:11:69:b5:b6:52:66:be:
0e:46:3f:e6:4b:56:9e:77:93:23:f1:70:33:ff:6f:
b5:15:bf:bf:c4:3d:99:e6:d8:ac:f3:bc:86:eb:17:
77:4e:6a:72:29:8f:7f:ad:c0:a1:55:94:3b:a3:31:
e8:48:ca:58:3f:33:2c:77:a4:79:a0:1f:05:dc:29:
ff:71:91:55:0a:54:6a:f6:a2:1e:f2:18:32:d6:3b:
e3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:6D:D1:18:FD:A1:E9:30:43:A2:C3:73:A2:AD:4F:CA:F3:99:1B:DE
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e33302e302f32342d3234203d3e20323036313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.30.0/24
Signature Algorithm: sha256WithRSAEncryption
38:15:b3:92:51:cb:79:1c:bf:5d:93:9f:aa:bd:dc:7d:4d:d8:
0f:1d:db:06:c3:64:54:74:94:1d:00:cc:b3:74:bb:58:61:c8:
98:80:04:68:1b:c7:2d:98:36:b7:fa:6e:1a:b1:34:32:23:9b:
6c:c0:62:1d:4b:44:48:bf:f6:cc:ca:ea:00:83:1e:fb:38:1a:
4a:6a:01:13:43:1c:bb:99:ee:db:8c:81:d3:f2:f0:10:7c:20:
06:06:f8:b8:4c:80:65:19:01:0a:99:cd:3b:82:d0:d6:d9:eb:
cb:64:15:57:69:4b:91:a5:55:1f:79:39:b7:dd:d1:f1:a4:9f:
2d:5f:ba:c0:a3:59:50:43:d3:6c:5f:2f:f6:de:ed:06:af:6e:
be:a0:e5:5b:dc:a6:97:5b:9a:e7:d7:e8:45:18:54:80:68:ff:
89:14:1b:98:77:1e:0c:80:1c:c9:35:2f:d5:c2:49:20:c5:5d:
81:a8:b5:78:6f:a5:12:6c:29:9f:37:7f:f7:a2:80:6f:a1:aa:
be:a9:64:5a:fb:c6:44:0a:25:60:c8:7f:4b:b0:37:4d:6a:e6:
08:ce:29:c1:b4:cf:80:96:9c:4d:51:ad:04:c8:25:c3:bb:6f:
45:ac:bf:81:c5:fd:2e:69:94:30:b7:f9:6b:be:8d:9b:c3:13:
59:84:72:b6
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUXFqcnUXpDd9WxdQDa9Lg8Ka1wmcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMGQwNTlmMTBkMThkMDAwNTJjODA4ZWI4MDY5ZjkwZDQ3
ZTMwNTY0YTAeFw0yNTAzMDYxMTQ4NTZaFw0yNjAzMDUxMTUzNTZaMDMxMTAvBgNV
BAMTKEEzNkREMTE4RkRBMUU5MzA0M0EyQzM3M0EyQUQ0RkNBRjM5OTFCREUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUXIaC63ctZ5aYDOLCKXxjGtZ9
SgQ+qR7Kqdr9DyGXvx9YinmRJd7VdjoiJ6WM8avOoek923Q7pu9cMcdXfR0k5C+l
Jm5AVBqgrk3pKmOokG00AAAGtAOGsDR8QQxoopnUptOki89Oz2ttQGe5oL30WvpN
xMjygCazpIYT69Fz7L2zhvIMpjo8OpuE1aK/i5Muw9kn1EPfMhlWzrLIOxnd3tF/
aCB1Ndg7v15MEWm1tlJmvg5GP+ZLVp53kyPxcDP/b7UVv7/EPZnm2KzzvIbrF3dO
anIpj3+twKFVlDujMehIylg/Myx3pHmgHwXcKf9xkVUKVGr2oh7yGDLWO+NVAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUo23RGP2h6TBDosNzoq1PyvOZG94wHwYDVR0j
BBgwFoAUDQWfENGNAAUsgI64Bp+Q1H4wVkowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQtMjg1NC00MDgwLTlhMDktNzI2MjMyNmM5
ZTIyLzEvMEQwNTlGMTBEMThEMDAwNTJDODA4RUI4MDY5RjkwRDQ3RTMwNTY0QS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RRV2ZFTkdOQUFVc2dJNjRCcC1RMUg0
d1Zrby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQt
Mjg1NC00MDgwLTlhMDktNzI2MjMyNmM5ZTIyLzEvMzgzMjJlMzEzMTM4MmUzMzMw
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDM2MzEzNTMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
UnYeMA0GCSqGSIb3DQEBCwUAA4IBAQA4FbOSUct5HL9dk5+qvdx9TdgPHdsGw2RU
dJQdAMyzdLtYYciYgARoG8ctmDa3+m4asTQyI5tswGIdS0RIv/bMyuoAgx77OBpK
agETQxy7me7bjIHT8vAQfCAGBvi4TIBlGQEKmc07gtDW2evLZBVXaUuRpVUfeTm3
3dHxpJ8tX7rAo1lQQ9NsXy/23u0Gr26+oOVb3KaXW5rn1+hFGFSAaP+JFBuYdx4M
gBzJNS/VwkkgxV2BqLV4b6USbCmfN3/3ooBvoaq+qWRa+8ZECiVgyH9LsDdNauYI
zinBtM+AlpxNUa0EyCXDu29FrL+Bxf0uaZQwt/lrvo2bwxNZhHK2
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:25:34 2025 by rpki-client