Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3131322e3234342e302f32322d3234203d3e203437353833.roa
File: 38322e3131322e3234342e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: 8vU/aviiMmStlOj/n6h+2SBQKJtdqcbYnHmKk1klL78=
Subject key identifier: E4:3E:CA:22:B5:00:9D:61:D9:27:89:8A:09:D1:5F:FA:20:46:E4:48
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1E909C51D47ED60E6975D7CADA407E2AE160E809
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3131322e3234342e302f32322d3234203d3e203437353833.roa
Signing time: Wed 28 May 2025 20:46:31 +0000
ROA not before: Wed 28 May 2025 20:41:31 +0000
ROA not after: Wed 27 May 2026 20:46:31 +0000
asID: 47583
IP address blocks: 82.112.244.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 12:43:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:90:9c:51:d4:7e:d6:0e:69:75:d7:ca:da:40:7e:2a:e1:60:e8:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 28 20:41:31 2025 GMT
Not After : May 27 20:46:31 2026 GMT
Subject: CN=E43ECA22B5009D61D927898A09D15FFA2046E448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:37:22:9c:a0:99:52:00:57:26:62:7b:10:d4:
4b:ae:63:70:f5:8c:e0:17:21:ac:77:7d:0a:f7:5c:
7f:c2:49:07:ed:4c:e8:b1:57:4e:cb:70:78:30:bb:
d2:d3:db:72:6a:77:c6:6e:20:44:05:bf:9e:91:06:
1f:da:81:75:69:33:30:a2:ad:f2:18:f9:5f:a9:e5:
25:90:4e:2c:ac:4d:e0:88:d8:a1:2a:26:f5:2b:b3:
57:9b:b3:b8:58:50:9c:4a:74:f8:ad:ae:b2:47:e8:
03:96:e5:45:09:83:24:bb:b0:cc:9d:a5:b5:97:7e:
7f:a2:0f:a8:00:b8:8d:aa:9a:17:25:a6:d7:13:68:
29:75:fd:db:dd:fb:4a:c4:e0:68:b1:61:a6:97:e4:
12:c9:15:c1:18:cc:27:ba:a5:f5:68:22:48:3d:f8:
08:f6:11:74:11:25:ca:a7:85:43:69:6b:f9:15:45:
40:94:59:94:28:64:ee:64:45:1d:c4:22:2c:0f:d9:
49:d2:59:32:7b:21:c2:66:31:b5:16:f2:f8:2c:e9:
f0:e1:fe:ed:51:f4:be:98:f7:3f:3f:1f:df:2b:e5:
a7:2e:44:d0:da:0f:a1:43:f9:18:3f:92:22:0f:75:
ab:7f:b9:27:85:91:c0:bf:a2:aa:07:6e:28:b3:8f:
f0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3E:CA:22:B5:00:9D:61:D9:27:89:8A:09:D1:5F:FA:20:46:E4:48
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3131322e3234342e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.112.244.0/22
Signature Algorithm: sha256WithRSAEncryption
45:36:88:3d:61:f7:f8:ab:65:1e:96:1d:a8:16:3b:0c:de:50:
5d:ae:c7:14:2a:62:5d:af:25:96:e6:83:23:3c:69:de:04:cb:
14:c9:f5:f1:a4:60:c0:b3:38:57:f9:20:3a:17:22:20:62:26:
f0:51:0a:35:3f:d2:d9:98:45:0f:fe:f7:57:c5:2f:bc:73:89:
b2:b7:e7:f0:2c:57:f1:5a:40:7d:19:d6:c6:d9:7d:26:cd:06:
e7:90:a7:2b:17:79:cf:20:0f:f8:dd:44:d5:7a:d4:03:9d:0a:
de:78:76:e2:44:eb:95:ac:9a:17:9a:a0:62:d7:f4:e7:e8:86:
0e:3b:fa:61:c8:d6:c4:31:51:21:a2:61:24:3c:c3:57:71:9a:
6a:3f:d8:2d:c3:66:86:c2:3e:85:5f:f8:35:eb:78:48:ee:9f:
ec:36:cc:84:cd:3f:1d:6e:36:bd:97:f5:0e:44:80:08:7c:c0:
3b:36:76:b6:d9:3f:79:10:3e:e9:81:a1:4c:e1:ad:14:17:b3:
e2:79:19:46:34:3e:7e:1a:46:8e:16:23:45:83:f3:ef:a5:f3:
fa:d7:46:1a:1b:21:8d:23:99:be:72:81:7a:4b:74:1b:5b:4e:
ba:04:b7:d0:b1:f1:e9:ce:3e:fb:3e:2a:fa:8e:e5:84:23:99:
10:e0:3f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 04:21:46 2025 by rpki-client