Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3137322e302f32322d3234203d3e2037383433.roa
File: 3134352e37392e3137322e302f32322d3234203d3e2037383433.roa (raw, json)
Hash identifier: YXBVtRCUIbK4SSrLqPYLhSTAG3xcYGYeH8Op0BJCV8w=
Subject key identifier: F6:51:4E:D7:F0:85:A5:33:46:D8:68:B8:D0:91:13:61:49:53:99:96
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 0600704598143632C5042431B8D45FB30DA8822C
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3137322e302f32322d3234203d3e2037383433.roa
Signing time: Tue 03 Jun 2025 19:59:51 +0000
ROA not before: Tue 03 Jun 2025 19:54:51 +0000
ROA not after: Tue 02 Jun 2026 19:59:51 +0000
asID: 7843
IP address blocks: 145.79.172.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 17:19:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:00:70:45:98:14:36:32:c5:04:24:31:b8:d4:5f:b3:0d:a8:82:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 3 19:54:51 2025 GMT
Not After : Jun 2 19:59:51 2026 GMT
Subject: CN=F6514ED7F085A53346D868B8D091136149539996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:9f:6b:87:39:5f:b4:4b:cc:2b:59:1c:57:12:
f7:59:e4:af:0e:09:8f:7e:76:ed:a9:d6:96:c3:c4:
63:6c:ff:8a:26:87:cb:e2:71:f4:3a:e1:5b:63:fa:
ee:f5:ab:28:c6:47:9a:a6:e6:1a:9d:3e:8b:30:58:
f9:2b:76:a4:b1:97:ee:fb:73:5e:9b:56:19:e3:01:
72:74:40:59:9d:00:f9:a9:33:83:c3:04:9a:20:4c:
98:a0:41:02:f9:f7:ca:c1:65:db:69:aa:c2:24:11:
86:85:db:94:2c:60:8b:b4:c8:7a:7a:1d:89:4b:e9:
79:94:c5:90:31:a8:2b:07:44:d0:7a:8e:ae:66:e1:
4d:52:3f:65:1e:23:36:74:dd:b0:71:a2:44:2d:7b:
09:b3:da:5e:1f:3e:58:d4:46:91:ca:c5:74:33:1c:
14:44:31:7d:a7:7e:0c:26:fa:e5:60:54:b5:01:f2:
a7:ba:06:ac:ce:94:a7:81:b3:a2:df:68:db:17:22:
a2:4d:fe:3b:6b:0a:ff:53:bd:e3:c9:9e:6c:23:20:
4e:ca:2c:19:4a:d5:b4:d4:24:b0:76:b9:77:2d:5a:
d6:3d:87:40:1e:69:01:14:b5:aa:d7:34:29:df:4e:
ab:28:81:93:0f:3f:d7:d8:2c:6d:ea:09:35:56:e7:
7a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:51:4E:D7:F0:85:A5:33:46:D8:68:B8:D0:91:13:61:49:53:99:96
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3137322e302f32322d3234203d3e2037383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.172.0/22
Signature Algorithm: sha256WithRSAEncryption
58:7d:82:86:28:85:17:a2:cc:50:c2:31:86:48:8d:83:c1:a4:
2f:a2:8d:7e:24:15:e4:be:4c:c1:dc:42:db:34:84:1c:62:f7:
60:f0:19:36:32:31:8a:03:fd:28:12:f9:f2:e7:45:be:df:b1:
61:58:41:80:fc:f2:7a:c1:75:87:5f:d2:99:ff:a8:cd:9d:8b:
1d:e9:6e:6f:ca:80:43:4b:9b:f3:ef:08:0d:1c:7b:fd:4f:cc:
ff:60:8a:26:b7:9d:84:a8:a1:22:87:17:d0:ba:21:9a:a1:bb:
83:d4:34:b4:c4:a8:17:4b:fa:c8:26:58:18:bb:8b:e4:f7:78:
e8:5c:f0:f9:ea:76:73:79:b7:30:39:b1:4e:ce:bd:7a:4b:bc:
97:5f:24:fa:ec:d7:86:46:21:2d:4a:51:92:c1:c9:18:54:25:
c6:35:6c:4d:9d:93:fb:28:ab:8c:7b:5c:55:3a:6b:fb:76:37:
8b:c3:30:88:1c:21:ea:ee:df:27:76:d8:dc:30:48:f6:1a:0f:
74:40:ba:6c:23:87:e5:a8:3a:d0:b3:7d:27:27:01:f6:da:45:
01:bd:b5:7c:67:e9:7a:0f:5f:10:fd:37:0d:a9:4e:91:4d:2e:
23:45:90:4a:62:4d:d9:36:20:ed:83:13:58:94:59:e0:13:53:
7b:01:5d:e6
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUBgBwRZgUNjLFBCQxuNRfsw2ogiwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNTA2MDMxOTU0NTFaFw0yNjA2MDIxOTU5NTFaMDMxMTAvBgNV
BAMTKEY2NTE0RUQ3RjA4NUE1MzM0NkQ4NjhCOEQwOTExMzYxNDk1Mzk5OTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjn2uHOV+0S8wrWRxXEvdZ5K8O
CY9+du2p1pbDxGNs/4omh8vicfQ64Vtj+u71qyjGR5qm5hqdPoswWPkrdqSxl+77
c16bVhnjAXJ0QFmdAPmpM4PDBJogTJigQQL598rBZdtpqsIkEYaF25QsYIu0yHp6
HYlL6XmUxZAxqCsHRNB6jq5m4U1SP2UeIzZ03bBxokQtewmz2l4fPljURpHKxXQz
HBREMX2nfgwm+uVgVLUB8qe6BqzOlKeBs6LfaNsXIqJN/jtrCv9TvePJnmwjIE7K
LBlK1bTUJLB2uXctWtY9h0AeaQEUtarXNCnfTqsogZMPP9fYLG3qCTVW53oPAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU9lFO1/CFpTNG2Gi40JETYUlTmZYwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNDM1MmUzNzM5MmUzMTM3
MzIyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNzM4MzQzMy5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEApFP
rDANBgkqhkiG9w0BAQsFAAOCAQEAWH2ChiiFF6LMUMIxhkiNg8GkL6KNfiQV5L5M
wdxC2zSEHGL3YPAZNjIxigP9KBL58udFvt+xYVhBgPzyesF1h1/Smf+ozZ2LHelu
b8qAQ0ub8+8IDRx7/U/M/2CKJredhKihIocX0LohmqG7g9Q0tMSoF0v6yCZYGLuL
5Pd46Fzw+ep2c3m3MDmxTs69eku8l18k+uzXhkYhLUpRksHJGFQlxjVsTZ2T+yir
jHtcVTpr+3Y3i8MwiBwh6u7fJ3bY3DBI9hoPdEC6bCOH5ag60LN9JycB9tpFAb21
fGfpeg9fEP03DalOkU0uI0WQSmJN2TYg7YMTWJRZ4BNTewFd5g==
-----END CERTIFICATE-----
Generated at Fri Jun 6 06:26:09 2025 by rpki-client