Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138342e3138382e302f32342d3234203d3e203531313637.roa
File: 3138352e3138342e3138382e302f32342d3234203d3e203531313637.roa (raw, json)
Hash identifier: wIbUDtMUSq6GFw/brfFOaeZUJXEfndDWhy+FqJvU6oU=
Subject key identifier: 49:1C:07:48:2E:8E:63:1A:D1:E9:23:29:A0:33:30:AA:B3:E8:77:18
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 3FB59E22D1505A992919AB643AFC291ED491A4A1
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138342e3138382e302f32342d3234203d3e203531313637.roa
Signing time: Fri 12 Sep 2025 20:47:35 +0000
ROA not before: Fri 12 Sep 2025 20:42:35 +0000
ROA not after: Fri 11 Sep 2026 20:47:35 +0000
asID: 51167
IP address blocks: 185.184.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Sep 2025 16:59:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:b5:9e:22:d1:50:5a:99:29:19:ab:64:3a:fc:29:1e:d4:91:a4:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 12 20:42:35 2025 GMT
Not After : Sep 11 20:47:35 2026 GMT
Subject: CN=491C07482E8E631AD1E92329A03330AAB3E87718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b5:e3:52:02:34:49:29:76:2a:27:93:fd:c1:
a7:fc:15:3b:65:03:fb:37:99:3c:f4:30:33:db:80:
80:78:9d:e7:aa:57:ce:de:87:35:b3:48:1c:95:60:
fe:63:49:a4:0e:f6:7b:15:88:ca:11:58:9c:ff:29:
65:cc:87:14:f6:a5:d1:95:4c:ae:cd:ef:3e:1c:6b:
9e:96:af:39:26:90:ff:a1:03:fe:47:dc:6a:0a:30:
9c:82:76:ac:13:cc:93:ad:26:ba:c9:9a:e2:ab:d1:
88:34:09:09:67:e2:dd:14:32:fd:b0:a5:d9:2e:12:
4f:4d:8f:5b:5b:63:3c:1c:2d:20:53:59:66:27:67:
31:e5:d8:cd:88:b0:29:5e:f8:36:31:7a:8d:03:3f:
b0:e3:c0:ed:3b:02:3e:3b:01:a6:7c:c3:34:eb:39:
d2:47:c2:68:39:70:ea:2b:36:26:fe:3f:95:c7:40:
8a:98:a4:56:0a:b4:46:2b:b1:34:57:d7:bd:e9:48:
28:32:78:74:db:11:53:0b:ee:3c:1f:f5:3d:17:9b:
97:0c:01:80:68:18:45:11:76:b1:7e:56:fe:7d:ea:
52:94:4e:60:df:28:cc:b7:73:3c:49:6b:de:5a:5c:
16:90:0a:f9:d5:c9:a1:01:e2:e7:1a:7f:0f:ff:0e:
ca:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1C:07:48:2E:8E:63:1A:D1:E9:23:29:A0:33:30:AA:B3:E8:77:18
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138342e3138382e302f32342d3234203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.188.0/24
Signature Algorithm: sha256WithRSAEncryption
56:87:20:74:a0:6f:5f:70:da:a2:1e:fd:be:54:6c:f7:61:e0:
75:15:99:a6:7e:24:92:ce:18:11:dd:85:61:a5:3d:32:bc:73:
08:57:47:e1:0a:5f:07:8a:84:33:bd:48:55:d5:9b:82:20:17:
e7:98:63:c8:93:08:df:a1:12:d9:26:9c:f4:eb:bd:66:2d:fe:
0d:4f:af:29:9c:35:d4:12:f8:72:7f:2b:16:86:17:10:9a:ac:
74:1e:18:b1:44:5e:5a:14:89:18:44:41:d9:30:e1:68:52:a5:
89:61:57:74:d2:f8:b6:32:c9:98:f3:11:bf:70:f7:c8:8a:0b:
50:f9:c7:1c:5a:c6:00:cd:5f:3a:83:0a:3f:47:80:52:03:8e:
fa:f8:e6:82:7d:7b:8a:9f:10:50:a5:5a:c7:d2:8c:e6:2c:a9:
e9:17:54:b7:e9:97:66:53:32:97:7f:6e:94:64:20:07:00:49:
10:58:e1:30:9f:2e:4e:3e:77:10:1a:02:75:6f:89:1a:68:8d:
ec:bf:21:d6:13:25:a7:ab:6a:00:44:1c:9a:38:63:64:46:3f:
b2:f1:06:2f:16:54:7c:4d:22:a3:93:14:86:47:81:b6:6c:85:
80:98:99:86:12:e1:7d:fe:4d:2c:7f:be:f2:05:9b:77:e0:59:
b4:88:ee:62
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUP7WeItFQWpkpGatkOvwpHtSRpKEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNTA5MTIyMDQyMzVaFw0yNjA5MTEyMDQ3MzVaMDMxMTAvBgNV
BAMTKDQ5MUMwNzQ4MkU4RTYzMUFEMUU5MjMyOUEwMzMzMEFBQjNFODc3MTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDteNSAjRJKXYqJ5P9waf8FTtl
A/s3mTz0MDPbgIB4neeqV87ehzWzSByVYP5jSaQO9nsViMoRWJz/KWXMhxT2pdGV
TK7N7z4ca56WrzkmkP+hA/5H3GoKMJyCdqwTzJOtJrrJmuKr0Yg0CQln4t0UMv2w
pdkuEk9Nj1tbYzwcLSBTWWYnZzHl2M2IsCle+DYxeo0DP7DjwO07Aj47AaZ8wzTr
OdJHwmg5cOorNib+P5XHQIqYpFYKtEYrsTRX173pSCgyeHTbEVML7jwf9T0Xm5cM
AYBoGEURdrF+Vv596lKUTmDfKMy3czxJa95aXBaQCvnVyaEB4ucafw//DsqBAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUSRwHSC6OYxrR6SMpoDMwqrPodxgwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM4MzQyZTMx
MzgzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5uLwwDQYJKoZIhvcNAQELBQADggEBAFaHIHSgb19w2qIe/b5UbPdh4HUVmaZ+
JJLOGBHdhWGlPTK8cwhXR+EKXweKhDO9SFXVm4IgF+eYY8iTCN+hEtkmnPTrvWYt
/g1PrymcNdQS+HJ/KxaGFxCarHQeGLFEXloUiRhEQdkw4WhSpYlhV3TS+LYyyZjz
Eb9w98iKC1D5xxxaxgDNXzqDCj9HgFIDjvr45oJ9e4qfEFClWsfSjOYsqekXVLfp
l2ZTMpd/bpRkIAcASRBY4TCfLk4+dxAaAnVviRpojey/IdYTJaeragBEHJo4Y2RG
P7LxBi8WVHxNIqOTFIZHgbZshYCYmYYS4X3+TSx/vvIFm3fgWbSI7mI=
-----END CERTIFICATE-----
Generated at Thu Sep 18 03:31:52 2025 by rpki-client