Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e31362e3134302e302f32322d3234203d3e203437353833.roa
File: 3137382e31362e3134302e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: D8W9jvOeHvpFBR+uZw09dRZlP9gtvvu3HQEeYSnsVcU=
Subject key identifier: 68:9A:5D:68:54:1C:B8:1D:89:FD:61:A6:32:8F:1A:E4:0F:FD:72:31
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 0333B1CB1E69202CF662642C5898C6BCF94704AE
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e31362e3134302e302f32322d3234203d3e203437353833.roa
Signing time: Thu 15 May 2025 10:46:17 +0000
ROA not before: Thu 15 May 2025 10:41:17 +0000
ROA not after: Thu 14 May 2026 10:46:17 +0000
asID: 47583
IP address blocks: 178.16.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 12:43:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:33:b1:cb:1e:69:20:2c:f6:62:64:2c:58:98:c6:bc:f9:47:04:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 15 10:41:17 2025 GMT
Not After : May 14 10:46:17 2026 GMT
Subject: CN=689A5D68541CB81D89FD61A6328F1AE40FFD7231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:07:ac:ec:88:4e:a8:41:8e:8f:37:82:a6:40:
d3:6b:dd:b5:68:47:36:d2:95:9d:10:73:69:a1:22:
00:25:d9:1e:6a:f6:87:5a:03:90:bb:1e:4d:1d:fb:
ac:3f:02:47:e1:97:0e:46:a3:86:9d:29:64:9f:c8:
ac:e6:80:eb:dd:61:08:3e:45:49:a7:cf:36:17:fd:
a8:ba:f9:02:21:6b:a4:ae:dd:2e:8a:ff:9d:4e:2b:
67:47:41:a1:91:6a:d6:2e:b6:a3:85:63:11:9d:72:
9e:2c:26:28:94:21:29:f6:88:e4:85:7a:02:e2:e3:
10:a4:39:92:e3:74:d3:27:19:ea:87:73:4c:b2:40:
9d:0f:30:b3:71:d1:a8:b5:1b:8e:d6:f2:e4:3c:ce:
b0:42:fa:88:13:ff:f8:d7:25:4b:26:95:55:47:e9:
aa:3d:42:68:a4:d1:b9:8a:9a:e6:e5:43:32:32:cb:
4b:70:95:55:3e:98:e7:af:6a:07:80:ba:b8:e0:4e:
2c:e0:5a:a4:d6:90:5d:f3:3b:29:f4:b6:98:21:24:
30:5c:24:42:69:f6:a9:1a:16:57:f0:f2:f8:56:05:
46:b1:95:29:ac:d4:6b:7e:02:24:ce:cb:1a:25:c8:
1d:f0:79:87:33:e4:2f:94:10:63:61:5e:6d:42:ad:
d9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:9A:5D:68:54:1C:B8:1D:89:FD:61:A6:32:8F:1A:E4:0F:FD:72:31
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e31362e3134302e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.16.140.0/22
Signature Algorithm: sha256WithRSAEncryption
38:4c:62:62:1d:bd:80:5d:31:80:76:92:19:98:bf:e3:dc:8e:
b6:91:45:06:5b:d2:6e:7b:8a:25:95:fe:3d:5b:4c:b8:ab:d5:
da:0c:36:3e:53:db:ba:e1:4b:0d:39:80:35:93:eb:88:0a:47:
c1:f0:0f:13:ac:ba:2b:9f:21:69:e7:ba:d9:aa:fd:ac:62:4c:
86:72:03:91:32:71:3b:b7:39:c2:2c:ed:9d:54:dc:d5:cc:bd:
ce:cc:83:98:39:9c:ed:64:38:d9:04:d6:af:4c:e9:d4:e4:0d:
15:e9:ba:8d:08:2e:da:39:0d:9a:a0:35:02:4e:c3:5e:b9:1c:
ce:ae:a3:c1:f8:bd:e5:18:98:55:ad:8e:2e:01:0d:86:d8:4e:
f1:a5:62:a6:59:d5:e9:c4:24:16:f5:1c:d2:9b:30:fc:97:39:
a4:c8:2f:06:d1:5c:3e:60:bd:37:29:51:f3:e3:57:00:cd:61:
65:69:e5:12:05:de:90:ec:6b:62:95:de:93:ce:ea:3e:f5:1d:
d4:d5:8e:fa:a4:0a:7c:a7:1b:86:32:17:66:7d:d2:6d:cb:67:
b7:b7:97:26:23:43:1f:6d:94:ab:9a:a4:a2:37:7a:65:eb:0b:
18:1e:6e:7c:d2:51:e9:19:88:2e:dd:a1:5a:2d:bd:72:90:70:
ff:d1:74:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 19:22:10 2025 by rpki-client