![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131372e302f32342d3234203d3e20313336373837.roa
File: 3138352e3137372e3131372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 6RgbVoOhZ0+qSpRckoFiDXz/f3S3O5nVJrmnL5IM+vs=
Subject key identifier: A5:05:12:73:6B:75:86:6F:CA:8C:A2:65:E3:BC:5B:59:82:9B:B9:B0
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 43E156BB6240BF471DE122094E314E8E5553B16B
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131372e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 12 May 2024 11:03:37 +0000
ROA not before: Sun 12 May 2024 10:58:37 +0000
ROA not after: Sun 11 May 2025 11:03:37 +0000
asID: 136787
IP address blocks: 185.177.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 13:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:e1:56:bb:62:40:bf:47:1d:e1:22:09:4e:31:4e:8e:55:53:b1:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 12 10:58:37 2024 GMT
Not After : May 11 11:03:37 2025 GMT
Subject: CN=A50512736B75866FCA8CA265E3BC5B59829BB9B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5a:f2:2c:fc:25:03:ad:00:93:75:d9:fd:0e:
77:41:52:ea:41:21:7f:ed:50:0b:e7:7e:66:14:24:
bb:da:fa:a8:53:7f:52:79:86:43:c9:26:cf:dd:24:
bd:59:60:4a:6c:f2:a6:53:ed:41:85:e8:33:03:98:
86:05:c3:82:ef:6e:ec:f2:8c:4e:91:9e:03:bc:4f:
4d:92:93:72:d4:d1:4d:58:d3:8f:e9:98:c1:df:d7:
e6:0f:f7:2e:f5:ad:0c:5e:9b:ed:d2:10:62:0c:1f:
06:16:f9:15:13:1b:ba:e8:4f:45:a5:41:fa:39:ea:
d9:79:9e:b9:42:64:0c:b8:7c:84:ee:92:a5:c6:3b:
15:1a:23:bc:ed:63:b4:4f:b1:fc:7e:27:cd:e8:22:
fb:bc:60:d9:26:67:ec:22:c8:0a:7a:22:f8:a8:59:
60:d8:01:4e:46:5d:66:25:5a:40:c7:c2:1c:5a:a7:
f3:a7:25:17:00:83:61:7a:73:5a:66:2b:54:e5:67:
68:ac:43:f4:69:5a:62:d1:ec:e0:10:89:a1:1e:ce:
be:d1:ed:fd:d6:bc:f6:59:58:bd:a5:73:a6:cf:5a:
aa:7d:ab:fd:98:30:bb:b2:de:9d:39:54:d6:82:81:
11:e5:0e:ae:a6:a9:14:d1:f7:ee:f1:01:15:ed:db:
8c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:05:12:73:6B:75:86:6F:CA:8C:A2:65:E3:BC:5B:59:82:9B:B9:B0
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.117.0/24
Signature Algorithm: sha256WithRSAEncryption
17:15:bc:46:96:24:45:15:3c:2a:db:8f:83:f6:5a:34:df:89:
7d:5f:43:4d:00:e5:73:33:5a:22:26:4e:99:c8:58:67:a9:30:
d7:8f:1e:03:a0:56:56:ba:50:64:dc:21:5a:49:a5:e6:f9:66:
da:e1:6a:4d:37:ec:81:2e:b8:73:d1:8e:a2:44:47:4e:c1:d0:
f7:c3:d5:00:92:53:aa:19:4b:93:bc:72:db:d1:be:ee:d3:8f:
6e:66:1d:0a:13:04:ab:d8:5b:5b:e6:d0:2f:d6:9d:fd:d4:c0:
d7:dc:a6:cb:88:bc:61:e0:56:5a:1b:d9:96:28:19:cf:2c:fa:
54:44:54:ba:44:1c:57:e4:aa:71:71:3c:73:e1:fd:fe:e3:28:
ed:44:48:4f:b9:e1:fc:6a:0f:24:8c:16:a2:df:71:62:b8:24:
8b:ac:e5:59:88:ed:91:3e:2e:86:df:a9:1e:cf:e1:3b:84:97:
fc:fc:b6:ce:da:69:a2:18:ff:a1:a3:5d:8c:97:5c:b6:82:dc:
00:9a:ca:99:bf:42:dd:07:6b:8f:a2:c8:cd:ff:f5:1c:43:24:
04:d9:28:44:5a:64:f3:59:fd:38:46:7e:85:34:47:3d:23:22:
37:53:57:d1:3d:a1:7a:d6:3e:2c:fc:ad:02:47:60:83:2a:20:
17:d3:d8:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:47 2025 by rpki-client