Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Pfcloud/2/326131343a383030303a3a2f32392d3239203d3e203330303538.roa
File: 326131343a383030303a3a2f32392d3239203d3e203330303538.roa (raw, json)
Hash identifier: RmUAy8PzxTU8swfxx9FgRD6DubhFI89+l40cHw3KDtc=
Subject key identifier: 42:F4:75:58:A9:EF:4C:77:BA:80:42:D3:2B:84:5B:18:9E:83:3A:E7
Certificate issuer: /CN=cae8150e9595dbe9a74a289bfd0e8d2b1ce6b38d
Certificate serial: 174254F53C9C8E5C02CCE6FDCAFBACEF770B41C4
Authority key identifier: CA:E8:15:0E:95:95:DB:E9:A7:4A:28:9B:FD:0E:8D:2B:1C:E6:B3:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yugVDpWV2-mnSiib_Q6NKxzms40.cer
Subject info access: rsync://repo.rpki.space/repo/Pfcloud/2/326131343a383030303a3a2f32392d3239203d3e203330303538.roa
Signing time: Wed 04 Feb 2026 08:51:01 +0000
ROA not before: Wed 04 Feb 2026 08:46:01 +0000
ROA not after: Wed 03 Feb 2027 08:51:01 +0000
asID: 30058
IP address blocks: 2a14:8000::/29 maxlen: 29
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Pfcloud/2/CAE8150E9595DBE9A74A289BFD0E8D2B1CE6B38D.crl
rsync://repo.rpki.space/repo/Pfcloud/2/CAE8150E9595DBE9A74A289BFD0E8D2B1CE6B38D.mft
rsync://rpki.ripe.net/repository/DEFAULT/yugVDpWV2-mnSiib_Q6NKxzms40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 10:27:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:42:54:f5:3c:9c:8e:5c:02:cc:e6:fd:ca:fb:ac:ef:77:0b:41:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cae8150e9595dbe9a74a289bfd0e8d2b1ce6b38d
Validity
Not Before: Feb 4 08:46:01 2026 GMT
Not After : Feb 3 08:51:01 2027 GMT
Subject: CN=42F47558A9EF4C77BA8042D32B845B189E833AE7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:58:f1:84:d1:b8:fd:94:95:e0:fe:28:2a:32:
52:ec:60:ff:a7:c7:c7:08:40:ef:bd:61:85:16:3f:
c9:32:c9:3f:cf:f8:86:15:13:50:0f:5e:76:8f:64:
90:a0:2a:5d:4f:eb:0f:ca:c7:2b:d3:2f:0d:a3:94:
2c:2d:76:c0:ef:c0:a8:33:b3:4c:af:e8:57:07:be:
8c:28:49:09:72:89:a9:23:08:47:fc:4f:32:19:61:
2f:4c:63:3f:cb:10:9e:3e:5a:06:88:23:20:82:00:
68:4c:55:e5:b0:d5:a3:b6:a9:38:fb:0a:f7:5a:56:
5b:ca:e4:fb:8c:c0:47:90:5a:0d:65:6e:e8:98:80:
c6:e3:fe:85:74:33:58:e1:f7:2e:93:b2:e4:ec:f0:
67:c5:54:8b:67:a7:30:55:67:e7:a8:1a:36:40:9d:
62:eb:c7:07:a8:5b:e5:00:b7:f4:e0:62:d2:b3:d8:
90:38:1f:c0:3e:63:07:10:b1:9e:b6:ee:5b:14:92:
aa:79:8e:10:7a:2c:ef:93:e4:8e:a8:ee:40:ed:17:
cb:9f:6a:90:b0:82:c1:da:17:14:b6:99:50:43:28:
44:6b:03:b8:7c:aa:e5:c0:f0:37:27:fb:78:54:fe:
2a:b7:b3:ef:1d:29:8b:d8:5d:6b:ca:c7:73:c5:d3:
9c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F4:75:58:A9:EF:4C:77:BA:80:42:D3:2B:84:5B:18:9E:83:3A:E7
X509v3 Authority Key Identifier:
keyid:CA:E8:15:0E:95:95:DB:E9:A7:4A:28:9B:FD:0E:8D:2B:1C:E6:B3:8D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Pfcloud/2/CAE8150E9595DBE9A74A289BFD0E8D2B1CE6B38D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yugVDpWV2-mnSiib_Q6NKxzms40.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Pfcloud/2/326131343a383030303a3a2f32392d3239203d3e203330303538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:8000::/29
Signature Algorithm: sha256WithRSAEncryption
0b:aa:45:9f:2c:8c:8d:3b:ef:47:8b:52:7b:8d:9f:bd:00:73:
8f:63:ae:5c:b9:80:c0:43:72:58:6a:73:71:71:5b:b2:2d:59:
dc:b3:5c:25:80:12:e0:bb:7a:0a:ad:97:db:fc:34:af:f5:66:
bc:5e:d5:23:a8:c2:23:db:56:fd:24:af:5d:42:88:7e:0f:f1:
e3:2c:c2:5f:48:fd:6f:54:6e:3e:0b:ea:6f:cd:d5:7d:38:7a:
e8:2c:b4:a6:75:d5:6c:0c:9b:76:a3:44:ae:c5:5f:7d:6f:47:
83:1a:85:08:b1:a0:26:a3:fb:8c:0d:be:1c:ec:df:dd:4c:a3:
84:c8:74:ee:91:d2:c3:c9:93:e9:99:9d:54:87:52:a7:6d:ec:
4c:f7:e2:92:c4:7f:81:2b:da:25:0b:89:c5:e6:62:fe:84:df:
55:33:71:eb:ca:be:f8:f5:94:0b:3b:7d:7a:3c:0e:cd:a3:50:
f2:28:0d:aa:64:1f:df:2d:2a:c3:a6:e0:79:d6:7c:cb:54:79:
3f:ba:e5:5e:53:cc:0e:e5:cf:bc:dc:9a:46:34:ed:51:e9:1f:
05:6c:8d:4a:01:10:7e:04:d5:65:df:bd:6a:b0:dc:84:0b:3f:
29:b9:ad:33:dd:c3:64:34:de:01:9f:39:d8:8b:97:e4:ac:13:
47:f7:ef:b3
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgIUF0JU9TycjlwCzOb9yvus73cLQcQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoY2FlODE1MGU5NTk1ZGJlOWE3NGEyODliZmQwZThkMmIx
Y2U2YjM4ZDAeFw0yNjAyMDQwODQ2MDFaFw0yNzAyMDMwODUxMDFaMDMxMTAvBgNV
BAMTKDQyRjQ3NTU4QTlFRjRDNzdCQTgwNDJEMzJCODQ1QjE4OUU4MzNBRTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/WPGE0bj9lJXg/igqMlLsYP+n
x8cIQO+9YYUWP8kyyT/P+IYVE1APXnaPZJCgKl1P6w/KxyvTLw2jlCwtdsDvwKgz
s0yv6FcHvowoSQlyiakjCEf8TzIZYS9MYz/LEJ4+WgaIIyCCAGhMVeWw1aO2qTj7
CvdaVlvK5PuMwEeQWg1lbuiYgMbj/oV0M1jh9y6TsuTs8GfFVItnpzBVZ+eoGjZA
nWLrxweoW+UAt/TgYtKz2JA4H8A+YwcQsZ627lsUkqp5jhB6LO+T5I6o7kDtF8uf
apCwgsHaFxS2mVBDKERrA7h8quXA8Dcn+3hU/iq3s+8dKYvYXWvKx3PF05yrAgMB
AAGjggHZMIIB1TAdBgNVHQ4EFgQUQvR1WKnvTHe6gELTK4RbGJ6DOucwHwYDVR0j
BBgwFoAUyugVDpWV2+mnSiib/Q6NKxzms40wDgYDVR0PAQH/BAQDAgeAMGQGA1Ud
HwRdMFswWaBXoFWGU3JzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vUGZjbG91
ZC8yL0NBRTgxNTBFOTU5NURCRTlBNzRBMjg5QkZEMEU4RDJCMUNFNkIzOEQuY3Js
MGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC95dWdWRHBXVjItbW5TaWliX1E2Tkt4em1z
NDAuY2VyMHsGCCsGAQUFBwELBG8wbTBrBggrBgEFBQcwC4ZfcnN5bmM6Ly9yZXBv
LnJwa2kuc3BhY2UvcmVwby9QZmNsb3VkLzIvMzI2MTMxMzQzYTM4MzAzMDMwM2Ez
YTJmMzIzOTJkMzIzOTIwM2QzZTIwMzMzMDMwMzUzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoUgAAw
DQYJKoZIhvcNAQELBQADggEBAAuqRZ8sjI0770eLUnuNn70Ac49jrly5gMBDclhq
c3FxW7ItWdyzXCWAEuC7egqtl9v8NK/1Zrxe1SOowiPbVv0kr11CiH4P8eMswl9I
/W9Ubj4L6m/N1X04eugstKZ11WwMm3ajRK7FX31vR4MahQixoCaj+4wNvhzs391M
o4TIdO6R0sPJk+mZnVSHUqdt7Ez34pLEf4Er2iULicXmYv6E31UzcevKvvj1lAs7
fXo8Ds2jUPIoDapkH98tKsOm4HnWfMtUeT+65V5TzA7lz7zcmkY07VHpHwVsjUoB
EH4E1WXfvWqw3IQLPym5rTPdw2Q03gGfOdiLl+SsE0f377M=
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:57:17 2026 by rpki-client