Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3134322e302f32342d3234203d3e20333935373933.roa
File: 3134352e37392e3134322e302f32342d3234203d3e20333935373933.roa (raw, json)
Hash identifier: d7GSIAOPYtyLWd62h7KbA5b4XN5aaXMHoE1p9jl2fkY=
Subject key identifier: A6:9A:17:7D:0C:BA:57:37:65:2D:6D:F7:78:14:F9:79:6F:C6:94:F4
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6D0B2177718A36A010224D6E87BFFD2EBE0DB975
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3134322e302f32342d3234203d3e20333935373933.roa
Signing time: Thu 29 May 2025 19:06:58 +0000
ROA not before: Thu 29 May 2025 19:01:58 +0000
ROA not after: Thu 28 May 2026 19:06:58 +0000
asID: 395793
IP address blocks: 145.79.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:0b:21:77:71:8a:36:a0:10:22:4d:6e:87:bf:fd:2e:be:0d:b9:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 29 19:01:58 2025 GMT
Not After : May 28 19:06:58 2026 GMT
Subject: CN=A69A177D0CBA5737652D6DF77814F9796FC694F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2c:e1:56:0a:57:2e:4b:ff:60:0f:13:ae:50:
85:3b:c6:b2:64:d6:4d:75:b3:81:04:10:0e:0b:fb:
05:4b:90:20:20:e5:86:d4:e9:3d:db:e5:25:5c:71:
88:92:f3:7a:bf:cd:7a:9a:15:2b:85:f4:cb:17:42:
32:4c:4d:7c:a3:1c:76:97:a4:ef:b8:b2:18:85:cb:
6e:1f:df:df:da:2e:c0:89:5e:5b:6f:7c:c2:ad:41:
f6:97:fa:c8:0a:65:8c:bf:96:ba:f8:6a:8f:ef:5f:
ba:c5:87:96:45:95:ba:6d:4b:ed:dc:61:f1:80:22:
4e:fb:0b:82:7f:cd:b1:20:3f:e8:3d:17:eb:76:63:
2a:a5:05:af:3d:cf:2f:1b:92:6a:bf:3b:47:05:0a:
53:09:3a:28:19:77:5a:bd:59:8b:bd:bc:97:bd:cf:
d2:56:7f:cb:e7:3b:45:18:4d:d9:da:55:bb:87:31:
af:a8:16:fb:8b:32:47:33:6d:e6:ec:f0:05:9e:72:
2e:b2:fc:90:a5:31:a7:36:61:43:30:96:5b:78:ec:
3e:bb:da:57:17:84:29:fc:f1:5a:18:44:40:5f:9a:
ef:43:fe:db:b5:7c:50:a9:67:b0:60:a2:c0:0d:11:
04:6c:06:e1:55:26:91:88:6d:f2:cc:58:c0:d5:f0:
5b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:9A:17:7D:0C:BA:57:37:65:2D:6D:F7:78:14:F9:79:6F:C6:94:F4
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3134322e302f32342d3234203d3e20333935373933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.142.0/24
Signature Algorithm: sha256WithRSAEncryption
55:0d:a8:8f:7a:26:40:78:8a:89:4a:44:6e:5d:0b:11:b7:91:
56:b2:d9:57:8a:25:19:8b:30:65:f2:28:52:b4:22:01:40:a3:
d5:e5:7c:3b:62:c3:d9:77:10:e1:ee:c1:95:81:1e:41:63:ac:
0d:3e:06:49:2c:1a:89:87:2d:a9:f2:41:f8:78:09:6e:3c:90:
ec:5b:9f:4f:5b:52:81:4c:05:d6:0b:42:05:7a:19:c0:8c:12:
81:c2:a1:6f:61:64:c9:6c:89:fa:7a:0a:7a:ec:74:94:65:41:
ea:6d:ea:70:6c:20:52:c2:6f:f6:0a:23:3f:f5:94:87:30:00:
4c:58:b4:08:27:9a:9c:12:d0:38:db:43:00:06:cc:ad:13:fe:
8d:7a:ea:fc:3d:36:1c:a6:d7:55:b3:cd:26:ff:d5:f3:07:43:
1e:5c:41:a8:6d:86:c9:c4:1b:95:50:74:b0:10:64:ca:f5:4f:
3c:99:41:90:41:f8:1a:b8:c1:58:4e:4d:5a:a5:b3:6b:fc:ad:
68:56:29:9d:4c:aa:5e:cf:b1:79:33:f5:f2:b4:98:24:61:82:
de:8d:1f:ed:0e:57:0f:50:da:4d:f9:d5:df:38:0c:f9:5c:b3:
15:64:1f:99:6d:1e:a7:b0:64:12:78:2b:f2:6c:a4:e3:9d:5d:
a7:70:86:cd
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUbQshd3GKNqAQIk1uh7/9Lr4NuXUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNTA1MjkxOTAxNThaFw0yNjA1MjgxOTA2NThaMDMxMTAvBgNV
BAMTKEE2OUExNzdEMENCQTU3Mzc2NTJENkRGNzc4MTRGOTc5NkZDNjk0RjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMLOFWClcuS/9gDxOuUIU7xrJk
1k11s4EEEA4L+wVLkCAg5YbU6T3b5SVccYiS83q/zXqaFSuF9MsXQjJMTXyjHHaX
pO+4shiFy24f39/aLsCJXltvfMKtQfaX+sgKZYy/lrr4ao/vX7rFh5ZFlbptS+3c
YfGAIk77C4J/zbEgP+g9F+t2YyqlBa89zy8bkmq/O0cFClMJOigZd1q9WYu9vJe9
z9JWf8vnO0UYTdnaVbuHMa+oFvuLMkczbebs8AWeci6y/JClMac2YUMwllt47D67
2lcXhCn88VoYREBfmu9D/tu1fFCpZ7BgosANEQRsBuFVJpGIbfLMWMDV8FuZAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUppoXfQy6VzdlLW33eBT5eW/GlPQwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNDM1MmUzNzM5MmUzMTM0
MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM5MzUzNzM5MzMucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACRT44wDQYJKoZIhvcNAQELBQADggEBAFUNqI96JkB4iolKRG5dCxG3kVay2VeK
JRmLMGXyKFK0IgFAo9XlfDtiw9l3EOHuwZWBHkFjrA0+BkksGomHLanyQfh4CW48
kOxbn09bUoFMBdYLQgV6GcCMEoHCoW9hZMlsifp6CnrsdJRlQept6nBsIFLCb/YK
Iz/1lIcwAExYtAgnmpwS0DjbQwAGzK0T/o166vw9Nhym11WzzSb/1fMHQx5cQaht
hsnEG5VQdLAQZMr1TzyZQZBB+Bq4wVhOTVqls2v8rWhWKZ1Mql7PsXkz9fK0mCRh
gt6NH+0OVw9Q2k351d84DPlcsxVkH5ltHqewZBJ4K/JspOOdXadwhs0=
-----END CERTIFICATE-----
Generated at Thu Jun 5 18:36:10 2025 by rpki-client