Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/468b081e-ba93-465f-9b6e-7fbd63bdff63/0/37372e3234362e3234302e302f32342d3234203d3e203133333437.roa
File: 37372e3234362e3234302e302f32342d3234203d3e203133333437.roa (raw, json)
Hash identifier: s7bJrOak+k6vmxZw3NK9sCosxffSZUuLUPKBmOsK+p8=
Subject key identifier: 50:A7:82:93:E6:0E:E6:41:25:03:A7:99:A9:A5:3E:A1:CA:16:FD:A5
Certificate issuer: /CN=ff426f19ba67bc89de5ae6df487c1c8c1e752e27
Certificate serial: 3416F2DC6B5507993F5D2412929DF601B5CF74EF
Authority key identifier: FF:42:6F:19:BA:67:BC:89:DE:5A:E6:DF:48:7C:1C:8C:1E:75:2E:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0JvGbpnvIneWubfSHwcjB51Lic.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/468b081e-ba93-465f-9b6e-7fbd63bdff63/0/37372e3234362e3234302e302f32342d3234203d3e203133333437.roa
Signing time: Thu 26 Feb 2026 15:46:29 +0000
ROA not before: Thu 26 Feb 2026 15:41:29 +0000
ROA not after: Thu 25 Feb 2027 15:46:29 +0000
asID: 13347
IP address blocks: 77.246.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/468b081e-ba93-465f-9b6e-7fbd63bdff63/0/FF426F19BA67BC89DE5AE6DF487C1C8C1E752E27.crl
rsync://rsync.paas.rpki.ripe.net/repository/468b081e-ba93-465f-9b6e-7fbd63bdff63/0/FF426F19BA67BC89DE5AE6DF487C1C8C1E752E27.mft
rsync://rpki.ripe.net/repository/DEFAULT/_0JvGbpnvIneWubfSHwcjB51Lic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 01 Mar 2026 21:08:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:16:f2:dc:6b:55:07:99:3f:5d:24:12:92:9d:f6:01:b5:cf:74:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff426f19ba67bc89de5ae6df487c1c8c1e752e27
Validity
Not Before: Feb 26 15:41:29 2026 GMT
Not After : Feb 25 15:46:29 2027 GMT
Subject: CN=50A78293E60EE6412503A799A9A53EA1CA16FDA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3e:a2:35:ba:b3:07:30:38:c1:0f:37:6c:56:
23:8c:30:72:54:02:8a:87:46:94:7c:d2:72:79:db:
41:2f:b2:72:e8:82:6c:f1:5d:6d:e8:4a:ed:d4:56:
9a:80:1f:68:3a:93:45:e2:0c:88:f7:87:47:ee:04:
ab:a0:6f:94:ef:bd:2c:53:fa:46:7e:9e:98:00:37:
3f:b0:b8:ef:cb:b9:c5:64:32:d3:17:e1:6e:de:21:
4a:0a:84:8a:06:54:dc:4f:e5:e9:ba:74:a5:c2:ac:
2f:f1:96:b4:42:db:c1:39:6d:4a:3b:cc:49:d9:46:
36:a6:e2:b3:b5:ff:bf:2d:87:b4:63:da:47:27:50:
43:ad:cf:14:ee:bd:aa:a8:98:07:be:15:b4:ed:fb:
5e:3f:2a:e1:19:a7:1f:eb:91:49:17:d0:09:9f:30:
96:ad:fd:a1:c9:5c:80:6d:e5:a5:08:c0:b8:9e:3b:
b2:f5:98:59:b0:73:c8:a8:68:6d:fc:00:a0:f8:ce:
26:e6:e2:94:99:14:5e:99:1f:07:bb:da:0b:a3:43:
2f:fb:63:f2:9e:75:ca:fe:10:65:39:1a:6e:f9:ea:
e2:56:aa:90:d6:d9:3e:2d:63:9c:eb:cd:8a:38:cf:
b6:6d:61:6b:cc:6e:d6:0f:e7:38:ae:49:7b:8a:ce:
ea:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A7:82:93:E6:0E:E6:41:25:03:A7:99:A9:A5:3E:A1:CA:16:FD:A5
X509v3 Authority Key Identifier:
keyid:FF:42:6F:19:BA:67:BC:89:DE:5A:E6:DF:48:7C:1C:8C:1E:75:2E:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/468b081e-ba93-465f-9b6e-7fbd63bdff63/0/FF426F19BA67BC89DE5AE6DF487C1C8C1E752E27.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0JvGbpnvIneWubfSHwcjB51Lic.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/468b081e-ba93-465f-9b6e-7fbd63bdff63/0/37372e3234362e3234302e302f32342d3234203d3e203133333437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.240.0/24
Signature Algorithm: sha256WithRSAEncryption
58:0f:25:77:cc:38:3f:ce:3f:3a:50:09:a8:3b:bc:ff:98:f2:
0b:18:cf:7b:4f:e7:dc:71:53:b3:4d:80:04:71:cb:95:7e:19:
5d:33:e6:3d:87:21:a2:3d:1b:52:e6:22:9a:5b:88:1e:7f:5e:
ce:31:f0:d8:d4:8f:c4:c5:de:40:67:db:e8:5c:fc:39:5a:da:
82:c2:a0:19:96:08:d5:c3:83:38:96:0b:60:5d:29:9f:09:ad:
1c:2b:78:66:fc:8d:43:74:ae:8e:18:bb:03:9b:e8:30:79:78:
06:50:c6:91:21:cc:3c:b1:ed:6c:8c:fa:f5:6b:02:b7:88:42:
a2:27:39:22:e3:67:04:bf:97:80:c2:17:4a:f2:c7:89:c8:15:
2f:e5:68:d1:8d:cc:06:fa:aa:89:01:d6:a0:44:64:1d:e5:41:
d2:df:3d:49:5e:34:07:6e:ec:58:29:9b:6c:7f:6d:44:97:74:
94:a5:f9:a5:65:5d:b7:f6:20:4d:dd:54:d0:4a:4e:ab:2d:82:
0c:60:47:9e:f6:9e:63:e3:8e:f5:7f:62:d4:36:13:2b:83:44:
83:60:9c:eb:21:68:7b:a5:73:c8:ff:b3:a3:93:15:d7:d5:66:
1d:80:d3:23:39:44:21:42:6f:82:fa:e6:52:26:6c:ec:d2:54:
a2:d2:35:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 14:46:27 2026 by rpki-client