Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3230302e31322e302f32322d3234203d3e203437353833.roa
File: 3139352e3230302e31322e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: uUONDjsqQeEmbYdhu87U17Id6LtEWwkjR4KKnQHJvWc=
Subject key identifier: 9B:EB:24:64:A5:82:C2:7F:CB:ED:EE:9A:2C:68:AD:75:A9:14:A8:39
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7916A857B07246A1BF2BBAF5FF5D63BFF1D0F916
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3230302e31322e302f32322d3234203d3e203437353833.roa
Signing time: Thu 15 May 2025 10:46:19 +0000
ROA not before: Thu 15 May 2025 10:41:19 +0000
ROA not after: Thu 14 May 2026 10:46:19 +0000
asID: 47583
IP address blocks: 195.200.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 12:43:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:16:a8:57:b0:72:46:a1:bf:2b:ba:f5:ff:5d:63:bf:f1:d0:f9:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 15 10:41:19 2025 GMT
Not After : May 14 10:46:19 2026 GMT
Subject: CN=9BEB2464A582C27FCBEDEE9A2C68AD75A914A839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fc:62:d3:bd:03:4a:48:db:ea:94:59:60:c2:
f6:1d:25:98:7a:51:96:fb:a6:1f:1a:55:8e:80:49:
9f:a9:52:b4:5e:80:06:fe:78:3d:db:1e:b9:bd:f3:
9d:d8:55:35:e1:ad:50:60:36:33:d5:c9:69:4c:79:
4b:9d:b7:5c:11:ec:60:9d:10:4c:95:53:09:75:30:
89:12:9d:bc:4e:43:38:86:44:ba:b2:cc:1f:c3:04:
56:50:c9:95:95:da:4d:9c:57:e2:e5:9d:5c:1f:c7:
85:a5:28:3b:42:f2:da:2d:b1:48:9f:d0:62:75:0b:
2c:87:16:85:5f:09:83:bb:71:88:eb:99:d0:27:f7:
3b:9e:9b:b2:58:99:9e:65:21:c4:f9:65:a0:5b:46:
70:d3:88:08:38:5c:59:93:f6:e5:4b:f4:57:61:ad:
51:24:e9:b3:d3:8c:82:26:d1:37:c7:c0:60:c4:50:
f6:ee:96:98:e5:60:1e:54:ad:d9:87:e9:b4:64:4e:
4b:d5:d6:99:1f:7c:32:f6:8d:26:ac:21:3f:3f:fc:
5f:78:94:64:8c:6a:cb:70:43:54:6b:3b:e2:5b:2a:
cb:6d:a6:12:c8:3a:87:0e:38:dc:f6:da:be:36:c6:
79:35:d6:48:cf:ae:d6:ce:db:e9:5b:01:f7:f0:ab:
92:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:EB:24:64:A5:82:C2:7F:CB:ED:EE:9A:2C:68:AD:75:A9:14:A8:39
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3230302e31322e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.12.0/22
Signature Algorithm: sha256WithRSAEncryption
99:0e:c9:64:d3:e6:7f:86:4a:aa:47:f1:75:66:a2:83:9f:28:
38:99:cc:54:d3:b7:f0:0b:5d:0d:58:d1:6d:f3:ec:6f:27:64:
e6:34:29:41:5d:31:a6:c0:7d:07:b4:85:88:2b:39:e2:6a:48:
16:5e:a8:b7:7b:43:93:c5:ec:a8:83:86:1e:b7:29:c1:37:e5:
21:2a:67:58:e1:12:d1:e0:33:d2:ea:9e:ee:d5:d5:c3:39:6f:
3d:44:35:70:96:90:77:5c:2b:d6:77:57:b1:fb:28:33:3c:74:
d8:0e:d3:75:5e:86:e9:a9:9c:b7:c0:09:49:5d:b6:63:85:f7:
f5:97:db:aa:e2:12:e6:7e:21:31:1f:7e:6f:27:6a:c7:71:92:
75:af:65:ab:eb:94:00:6d:5f:a7:ab:4f:28:fa:cc:12:eb:99:
ec:a6:15:af:1c:ff:bb:1c:f3:89:7f:59:2e:f0:f3:11:03:73:
44:09:ed:68:53:34:16:f0:5c:6a:86:be:40:dc:61:1e:49:41:
c7:94:57:ac:74:00:bd:a4:37:01:b0:e2:5d:90:73:1b:fa:ee:
ef:5b:fe:32:4c:9d:83:87:f1:77:6c:53:7b:c3:73:23:3c:c0:
80:ae:63:86:c9:e8:5e:ba:8e:6e:46:5e:d7:66:68:4d:17:32:
50:2a:a4:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 19:27:25 2025 by rpki-client