Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/326130653a666434353a326636303a3a2f34382d3438203d3e203532303431.roa
File: 326130653a666434353a326636303a3a2f34382d3438203d3e203532303431.roa (raw, json)
Hash identifier: IZkqFVYEgPyyB/+rGAFH6ZTxV7F8e0iFJgsbGpJjRuQ=
Subject key identifier: B1:06:DC:A5:6D:97:B5:6B:A3:05:5A:B2:E8:33:25:68:39:F8:B8:A5
Certificate issuer: /CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985
Certificate serial: 3718E9C08BE6E21A2F85A5677B63160815CE5AFE
Authority key identifier: 7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/326130653a666434353a326636303a3a2f34382d3438203d3e203532303431.roa
Signing time: Wed 18 Feb 2026 15:11:32 +0000
ROA not before: Wed 18 Feb 2026 15:06:32 +0000
ROA not after: Wed 17 Feb 2027 15:11:32 +0000
asID: 52041
IP address blocks: 2a0e:fd45:2f60::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl
rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft
rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 01:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:18:e9:c0:8b:e6:e2:1a:2f:85:a5:67:7b:63:16:08:15:ce:5a:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985
Validity
Not Before: Feb 18 15:06:32 2026 GMT
Not After : Feb 17 15:11:32 2027 GMT
Subject: CN=B106DCA56D97B56BA3055AB2E833256839F8B8A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4b:b9:41:d6:d1:6b:b5:07:3e:7c:7f:e4:60:
c6:61:14:30:05:98:eb:f8:9f:ae:bd:97:f6:8e:c5:
a5:78:46:aa:98:78:74:5a:cc:3a:d9:ff:98:56:b5:
8c:a1:24:69:07:8f:35:73:c3:fe:4b:07:84:cf:40:
08:f5:b8:e3:51:85:42:46:44:3b:87:57:78:83:0b:
3e:55:3f:42:af:cb:33:51:fa:6c:9a:c4:cb:ac:ad:
d3:59:c0:dd:02:59:39:e9:4b:7e:a6:e2:05:2b:74:
93:0e:8b:ff:e3:31:06:d6:0d:5a:56:47:00:5a:0b:
07:6b:be:58:53:cc:0b:a6:37:a7:91:d6:a6:b5:ad:
8b:7d:58:ce:72:62:63:a4:ec:11:b0:63:3e:aa:1a:
47:f3:b0:47:fd:e3:71:12:b1:cf:19:2d:df:3b:a4:
06:d9:90:35:0d:28:20:23:35:50:2e:d2:b1:95:9c:
a3:f8:be:a2:1d:67:55:d3:17:71:36:f4:70:25:d8:
b1:df:e4:7a:6d:51:c5:18:94:9f:cc:b6:76:d7:27:
e4:de:08:d5:c7:c0:ca:fd:93:6e:a9:6e:40:40:c0:
91:ba:f0:6f:23:43:84:8d:02:fc:f5:40:4e:e9:94:
47:35:df:57:f5:95:7d:05:5c:19:a0:06:e1:11:0d:
c9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:06:DC:A5:6D:97:B5:6B:A3:05:5A:B2:E8:33:25:68:39:F8:B8:A5
X509v3 Authority Key Identifier:
keyid:7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/326130653a666434353a326636303a3a2f34382d3438203d3e203532303431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:fd45:2f60::/48
Signature Algorithm: sha256WithRSAEncryption
3b:02:24:5b:c0:a9:40:82:80:f5:09:8f:db:88:00:60:80:c2:
73:b8:09:83:65:71:19:31:f1:6d:f1:36:db:b7:8a:11:f3:78:
af:0f:a4:d9:de:bf:7f:e6:ef:6e:8e:cf:2e:44:8d:87:bd:87:
fc:a9:eb:3b:fd:86:07:10:6b:f5:67:f9:91:6a:64:f0:48:32:
92:fa:49:ee:32:ba:43:f2:1e:12:fe:bd:30:79:7e:fd:cd:b0:
a7:27:59:d0:ce:ff:ad:bc:a6:e8:64:00:3c:56:e1:81:b0:d6:
2e:52:0b:42:e7:1e:08:20:8c:9a:f0:cf:dc:d0:3a:61:49:4e:
e4:21:41:86:0b:66:af:ae:c9:a6:c0:7e:91:d4:65:56:30:c2:
46:f1:e7:03:b8:7e:ea:2a:de:0a:74:49:4c:1e:99:d3:6c:18:
e0:d4:bd:04:78:aa:8a:d1:38:e5:97:12:5d:32:a1:5d:39:5c:
9d:b2:9b:8e:1e:53:cd:10:fe:64:c0:d9:36:d5:ab:30:8c:55:
b8:fa:ee:c4:7d:48:a9:a5:ec:28:08:4c:28:71:d1:db:eb:4e:
37:b9:61:99:e0:3e:8b:e3:69:8b:b9:6c:ca:3c:7c:ca:33:ea:
09:d8:06:62:02:9d:4d:15:69:b0:b3:db:10:49:a4:9b:2f:22:
dc:fe:59:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:42:58 2026 by rpki-client