Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa
File: 3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 0PeFdsUQFhXgBXjUP9i0PZmv5kfSee79Azrh9gfEa3Q=
Subject key identifier: 4B:7D:A0:DC:8C:01:DA:FB:FD:D3:3F:25:F9:B1:55:B3:D3:46:EA:71
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2B857016CF68B0AB4E626B3B96727D9AFC9A112E
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 17 May 2025 07:46:23 +0000
ROA not before: Sat 17 May 2025 07:41:23 +0000
ROA not after: Sat 16 May 2026 07:46:23 +0000
asID: 136787
IP address blocks: 185.183.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:85:70:16:cf:68:b0:ab:4e:62:6b:3b:96:72:7d:9a:fc:9a:11:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 17 07:41:23 2025 GMT
Not After : May 16 07:46:23 2026 GMT
Subject: CN=4B7DA0DC8C01DAFBFDD33F25F9B155B3D346EA71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:0b:b8:ef:85:63:87:aa:59:2e:9d:94:32:58:
60:da:92:c9:ce:e4:58:39:e6:64:8c:1e:a1:7f:5a:
59:cf:d6:41:0e:de:23:7d:f8:e5:e1:df:e4:f0:d7:
8a:8a:6b:4a:f9:81:ef:73:62:04:9e:18:28:ea:85:
1f:f7:b4:2d:ea:6b:e7:58:8a:99:b0:61:9e:36:ed:
60:23:1c:03:92:4a:73:f8:a7:f9:ae:d8:ad:ee:fb:
3d:cf:5e:d5:c2:b6:d7:b0:ca:1a:22:9e:83:89:bc:
8a:18:df:fa:6c:52:98:ff:c2:e6:df:6d:a3:31:e7:
f8:85:06:54:ad:a9:4d:15:88:74:db:70:a5:70:1c:
67:34:83:ae:f0:80:88:c5:e2:76:8b:da:3e:f9:2d:
1c:fd:72:ee:9a:d6:04:1c:60:ac:3c:89:11:7e:bc:
1a:9d:2c:1d:5d:4e:11:25:39:ba:b5:39:44:8f:2e:
54:96:60:23:35:72:9b:91:18:c9:ec:86:e6:f2:67:
92:f9:77:4d:53:55:3e:55:29:27:36:6a:fb:fe:fb:
83:29:94:14:4a:60:95:25:78:26:9c:50:ee:60:d5:
c3:05:9b:cf:c7:ee:0f:ee:09:3d:f5:eb:9d:2c:9e:
40:83:22:b7:e4:bd:b2:ab:11:f4:c9:02:fb:0a:5c:
36:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:7D:A0:DC:8C:01:DA:FB:FD:D3:3F:25:F9:B1:55:B3:D3:46:EA:71
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.52.0/24
Signature Algorithm: sha256WithRSAEncryption
97:f3:72:2c:00:1c:ee:88:d4:fc:50:52:b8:a8:84:82:84:c8:
f3:c3:ca:27:3b:66:c7:3b:6f:79:1e:81:bb:40:c5:68:f5:b6:
16:a2:7d:f0:fb:ed:a6:11:e1:db:6f:c6:70:8a:19:0e:af:af:
38:1c:3a:b7:3b:9e:c1:59:86:ff:a7:39:1c:9f:61:db:00:cb:
b4:59:fe:2e:d7:0a:0a:34:1a:3d:00:46:7f:29:e3:f8:19:d4:
98:00:4f:47:f8:7b:f5:b2:44:73:49:61:00:27:07:c7:2e:5b:
3d:c9:85:53:d7:be:1a:49:df:50:65:b1:c3:26:1d:73:fe:f7:
b8:3a:38:e9:38:b4:e3:c0:e0:4f:9b:a3:9d:47:c3:bd:cd:1c:
4f:e0:60:23:f7:22:3b:2b:9d:93:75:6f:dd:b5:d3:de:e2:a7:
f8:ec:b7:6c:ce:01:14:3b:14:22:ee:5e:e2:f2:7e:df:ff:1a:
5e:09:26:4a:c1:70:1c:c1:23:92:b8:89:b7:a6:f8:1f:5a:51:
b0:81:9e:3c:1e:8b:07:94:a4:20:70:ad:96:53:b1:c2:1d:f6:
60:3a:e0:24:a1:21:93:8f:93:62:62:63:2c:49:af:0d:a7:eb:
14:8b:7a:ca:d3:18:48:7e:f6:74:11:b5:d6:65:24:60:55:13:
85:aa:b7:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:36:12 2025 by rpki-client