Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/3139332e33362e3136332e302f32342d3234203d3e20313938323530.roa
File: 3139332e33362e3136332e302f32342d3234203d3e20313938323530.roa (raw, json)
Hash identifier: /3VJzZo4U8NjiLVT1FBrdrfnpl4ifS+2leQF16HRFT8=
Subject key identifier: 4C:FD:3E:B1:32:AF:6B:7F:11:FB:C3:97:4C:1C:27:DD:97:BF:A3:6C
Certificate issuer: /CN=7fea37fdfe29b34173e97f1b637a44ec41acebb8
Certificate serial: 58004006EA40444F80EF0210745A2756158886E4
Authority key identifier: 7F:EA:37:FD:FE:29:B3:41:73:E9:7F:1B:63:7A:44:EC:41:AC:EB:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f-o3_f4ps0Fz6X8bY3pE7EGs67g.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/3139332e33362e3136332e302f32342d3234203d3e20313938323530.roa
Signing time: Fri 10 Apr 2026 12:19:27 +0000
ROA not before: Fri 10 Apr 2026 12:14:27 +0000
ROA not after: Fri 09 Apr 2027 12:19:27 +0000
asID: 198250
IP address blocks: 193.36.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/7FEA37FDFE29B34173E97F1B637A44EC41ACEBB8.crl
rsync://rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/7FEA37FDFE29B34173E97F1B637A44EC41ACEBB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/f-o3_f4ps0Fz6X8bY3pE7EGs67g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:22:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:00:40:06:ea:40:44:4f:80:ef:02:10:74:5a:27:56:15:88:86:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fea37fdfe29b34173e97f1b637a44ec41acebb8
Validity
Not Before: Apr 10 12:14:27 2026 GMT
Not After : Apr 9 12:19:27 2027 GMT
Subject: CN=4CFD3EB132AF6B7F11FBC3974C1C27DD97BFA36C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:67:fc:4d:60:6e:0f:68:c2:68:85:39:2f:b5:
26:93:cf:e2:e3:1d:30:aa:2b:c0:ed:ea:f0:9a:d4:
17:02:88:81:65:23:2d:07:48:c9:de:ac:ef:bd:7b:
ef:96:cd:c0:2f:42:55:74:2d:4c:06:c3:7b:5b:85:
73:75:60:ff:0a:18:06:6c:ee:b6:26:86:f9:9c:ed:
ac:61:7d:f8:7a:2c:80:fc:9a:d6:4b:65:43:cd:f8:
1e:75:3c:ac:8a:f6:e7:b0:bd:8d:6e:56:ea:2d:49:
09:c6:d5:53:b9:65:e4:df:be:f9:cb:34:29:c1:d7:
42:7c:85:f2:82:04:51:fb:0d:d9:db:a1:86:3a:c6:
61:b1:13:71:c1:e1:6a:57:e3:34:61:45:fe:f1:8a:
1a:39:88:10:86:12:ad:14:f1:70:c7:ae:e1:b3:1b:
5a:ca:90:44:24:3c:cc:e0:7d:d7:9c:57:f4:9d:c8:
46:cb:ef:84:f8:72:2e:d6:53:cc:bc:b2:b8:0a:2f:
0d:1e:a5:19:f6:df:f6:e7:8b:ac:ae:18:22:c9:56:
73:7b:8c:8c:35:63:9f:83:81:54:e0:b7:ad:45:0e:
35:58:17:ec:2b:e0:e6:b7:1b:b7:10:c4:2b:18:41:
5b:aa:01:e5:28:1e:28:6a:2d:e8:2f:ef:52:16:4b:
84:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:FD:3E:B1:32:AF:6B:7F:11:FB:C3:97:4C:1C:27:DD:97:BF:A3:6C
X509v3 Authority Key Identifier:
keyid:7F:EA:37:FD:FE:29:B3:41:73:E9:7F:1B:63:7A:44:EC:41:AC:EB:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/7FEA37FDFE29B34173E97F1B637A44EC41ACEBB8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f-o3_f4ps0Fz6X8bY3pE7EGs67g.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/03dd48eb-d136-4f0e-af8a-57a6bdd93a9d/0/3139332e33362e3136332e302f32342d3234203d3e20313938323530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.163.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:6e:26:1b:78:95:4e:b6:1e:52:54:49:e3:67:a3:2a:76:e0:
4c:8c:d2:69:bd:b6:c2:7f:da:cd:e6:ad:8c:42:18:7b:05:78:
e0:14:55:cf:de:9e:0e:e1:97:cf:70:cf:51:31:23:78:57:28:
1a:aa:c9:66:f4:3c:56:92:00:89:72:1b:41:d2:eb:ea:e0:c0:
da:04:55:a2:f6:15:7f:02:d8:58:d4:26:ea:3d:0e:17:9a:12:
ca:9c:e2:91:7f:c4:53:7a:7c:ff:ec:8a:6e:11:9d:9e:d5:12:
19:0c:02:7a:04:1f:f9:b9:55:d1:e4:06:1e:fe:a6:bb:ab:fc:
d8:70:da:3e:5b:db:ee:30:40:01:94:99:f9:28:0a:e3:6f:cc:
02:4a:d3:91:8e:3b:db:f7:68:5b:36:4c:a1:32:98:a0:c7:3a:
d3:56:5e:01:7e:cc:91:8a:17:38:dd:76:86:25:30:6a:aa:c6:
49:55:99:32:c3:50:2f:09:0a:a9:88:ed:b6:61:df:94:95:da:
85:8d:20:42:aa:49:37:0e:8e:8f:80:d4:8c:39:bb:a9:88:f5:
68:0c:ad:1e:37:3c:0f:3a:17:ae:87:73:4a:22:59:cb:19:2d:
95:f4:bf:ce:30:46:25:62:a2:65:9a:22:94:f3:29:cb:41:a7:
3d:4a:d3:31
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUWABABupARE+A7wIQdFonVhWIhuQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2ZlYTM3ZmRmZTI5YjM0MTczZTk3ZjFiNjM3YTQ0ZWM0
MWFjZWJiODAeFw0yNjA0MTAxMjE0MjdaFw0yNzA0MDkxMjE5MjdaMDMxMTAvBgNV
BAMTKDRDRkQzRUIxMzJBRjZCN0YxMUZCQzM5NzRDMUMyN0REOTdCRkEzNkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Z/xNYG4PaMJohTkvtSaTz+Lj
HTCqK8Dt6vCa1BcCiIFlIy0HSMnerO+9e++WzcAvQlV0LUwGw3tbhXN1YP8KGAZs
7rYmhvmc7axhffh6LID8mtZLZUPN+B51PKyK9uewvY1uVuotSQnG1VO5ZeTfvvnL
NCnB10J8hfKCBFH7DdnboYY6xmGxE3HB4WpX4zRhRf7xiho5iBCGEq0U8XDHruGz
G1rKkEQkPMzgfdecV/SdyEbL74T4ci7WU8y8srgKLw0epRn23/bni6yuGCLJVnN7
jIw1Y5+DgVTgt61FDjVYF+wr4Oa3G7cQxCsYQVuqAeUoHihqLegv71IWS4R3AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUTP0+sTKva38R+8OXTBwn3Ze/o2wwHwYDVR0j
BBgwFoAUf+o3/f4ps0Fz6X8bY3pE7EGs67gwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDNkZDQ4ZWItZDEzNi00ZjBlLWFmOGEtNTdhNmJkZDkz
YTlkLzAvN0ZFQTM3RkRGRTI5QjM0MTczRTk3RjFCNjM3QTQ0RUM0MUFDRUJCOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YtbzNfZjRwczBGejZYOGJZM3BFN0VH
czY3Zy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDNkZDQ4ZWIt
ZDEzNi00ZjBlLWFmOGEtNTdhNmJkZDkzYTlkLzAvMzEzOTMzMmUzMzM2MmUzMTM2
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM5MzgzMjM1MzAucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BADBJKMwDQYJKoZIhvcNAQELBQADggEBAJtuJht4lU62HlJUSeNnoyp24EyM0mm9
tsJ/2s3mrYxCGHsFeOAUVc/eng7hl89wz1ExI3hXKBqqyWb0PFaSAIlyG0HS6+rg
wNoEVaL2FX8C2FjUJuo9DheaEsqc4pF/xFN6fP/sim4RnZ7VEhkMAnoEH/m5VdHk
Bh7+prur/Nhw2j5b2+4wQAGUmfkoCuNvzAJK05GOO9v3aFs2TKEymKDHOtNWXgF+
zJGKFzjddoYlMGqqxklVmTLDUC8JCqmI7bZh35SV2oWNIEKqSTcOjo+A1Iw5u6mI
9WgMrR43PA86F66Hc0oiWcsZLZX0v84wRiViomWaIpTzKctBpz1K0zE=
-----END CERTIFICATE-----
Generated at Sun Apr 19 10:20:06 2026 by rpki-client