Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa
File: 3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: d6v5Wmv54jaPitpSmrYzcx8aVjkOH1ApE11QUNc1m+k=
Subject key identifier: B9:00:8F:B7:F8:29:DA:A9:50:72:5B:8C:1F:73:F0:CD:3C:B5:DA:CA
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 0982EC14E2D25B17226BBCBBCEAECB23DCC5AC51
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 17 May 2025 07:46:23 +0000
ROA not before: Sat 17 May 2025 07:41:23 +0000
ROA not after: Sat 16 May 2026 07:46:23 +0000
asID: 136787
IP address blocks: 185.183.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 23:07:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:82:ec:14:e2:d2:5b:17:22:6b:bc:bb:ce:ae:cb:23:dc:c5:ac:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 17 07:41:23 2025 GMT
Not After : May 16 07:46:23 2026 GMT
Subject: CN=B9008FB7F829DAA950725B8C1F73F0CD3CB5DACA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:07:1a:2a:92:0c:97:89:5b:23:b1:ec:91:d8:
c4:66:ee:20:b6:04:69:b9:d0:a3:0a:a5:dd:eb:e0:
8b:69:b8:43:76:53:1a:29:b0:18:61:2b:7e:07:0c:
46:2a:c4:2e:6b:bb:ca:4f:4e:8a:8c:2a:b3:06:98:
55:e9:d3:4a:51:d4:89:20:41:3a:b3:d2:96:75:97:
95:d2:d7:c3:07:c8:7c:7e:2d:d4:0d:60:3a:9b:23:
42:0b:39:99:c5:71:e4:97:6f:5f:3f:76:28:d8:ae:
14:d3:73:01:7c:8c:f3:44:22:80:5e:8a:63:54:8c:
82:3a:19:63:9b:e3:90:84:8e:73:4c:69:de:fa:b1:
3f:e1:39:fc:ff:c2:d1:fc:89:6b:44:06:4a:38:92:
bd:11:a1:0d:96:db:a9:62:2e:49:22:3a:f5:ba:cd:
63:79:e6:5e:ce:44:b5:2d:41:f4:7a:f8:fe:44:91:
96:e4:82:f0:87:79:6c:7c:82:34:de:c0:90:ab:d4:
95:e5:be:eb:ec:56:92:7c:46:ca:f2:22:45:46:c1:
01:36:d3:e0:cf:c6:2b:c6:e3:27:3e:cf:a5:25:e9:
7a:ab:1d:c2:b3:cc:fc:f6:5f:e0:b0:7f:d0:e2:0c:
96:2a:c5:f5:f6:02:6d:d0:7f:9b:83:48:80:6a:db:
65:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:00:8F:B7:F8:29:DA:A9:50:72:5B:8C:1F:73:F0:CD:3C:B5:DA:CA
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.53.0/24
Signature Algorithm: sha256WithRSAEncryption
30:98:c9:f1:ed:48:65:22:d9:20:f6:6b:d8:3f:a3:e5:0f:eb:
e4:fe:88:45:30:dd:6c:46:40:48:3a:f9:36:a1:69:95:51:ce:
7c:03:82:0f:70:6f:f2:95:e1:e9:28:41:58:ee:d7:2b:28:fa:
87:1e:35:5a:b6:0f:75:85:cc:88:55:26:c6:36:82:03:6a:4c:
61:3c:07:5a:45:2f:19:53:25:72:d8:a8:54:8d:db:7e:8c:55:
b7:48:b7:bd:1c:d9:f9:37:ad:39:5e:c8:58:48:6d:f6:f4:24:
74:23:3c:e5:60:be:ec:7f:31:ba:c0:e4:00:69:d3:62:f4:4e:
79:68:37:36:dc:14:16:75:50:12:46:60:f3:67:f9:02:28:5c:
3b:82:7b:cb:19:7f:2c:78:69:11:82:98:e5:b5:8e:ac:8d:c6:
5c:30:f7:fd:ba:bb:6e:f5:3b:2e:70:de:94:5a:6b:59:1d:da:
de:5e:99:2f:e5:3f:c6:28:b9:12:e7:0a:3a:5b:76:c5:29:29:
5f:3c:3e:19:f4:80:f9:c8:4a:e7:a4:27:c9:96:42:c1:77:eb:
97:96:d7:bf:8d:4c:e7:44:79:64:7c:b3:93:d0:83:af:e5:5c:
16:c7:9c:7f:2e:8f:99:72:57:22:e7:6b:08:f9:c0:80:ac:66:
ab:9d:68:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:19:08 2025 by rpki-client