Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134332e302f32342d3234203d3e203633303235.roa
File: 34352e3134382e3134332e302f32342d3234203d3e203633303235.roa (raw, json)
Hash identifier: IyTI73XOSQm4SpgvCMGs7ETKbvrzztCjpxSlGSdxGzA=
Subject key identifier: 13:72:21:F2:F7:58:7A:BA:44:03:84:AC:A9:0E:7E:FB:99:97:42:70
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 2C774B86348A02996156B3E1D6F6253E3A0BE912
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134332e302f32342d3234203d3e203633303235.roa
Signing time: Sun 15 Feb 2026 22:55:38 +0000
ROA not before: Sun 15 Feb 2026 22:50:38 +0000
ROA not after: Sun 14 Feb 2027 22:55:38 +0000
asID: 63025
IP address blocks: 45.148.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 14:27:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:77:4b:86:34:8a:02:99:61:56:b3:e1:d6:f6:25:3e:3a:0b:e9:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Feb 15 22:50:38 2026 GMT
Not After : Feb 14 22:55:38 2027 GMT
Subject: CN=137221F2F7587ABA440384ACA90E7EFB99974270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:89:e1:4b:c8:6b:49:ba:bc:e0:09:dd:2e:99:
4e:45:22:64:32:59:ea:31:56:c1:9d:0a:dc:e9:a2:
69:59:d3:5c:62:0e:68:d3:f2:8e:32:13:49:59:4b:
ea:70:78:23:0d:71:ea:70:c6:c1:4a:7f:d5:5e:99:
57:c3:c1:cc:0c:8b:78:1d:6e:54:3d:9c:04:81:18:
21:df:3d:ee:94:e4:10:84:e7:fa:df:a8:63:ee:7b:
9a:1d:da:9b:a8:43:77:2d:1a:cd:66:7f:0b:28:6d:
ae:2f:e8:fc:b7:b1:88:2c:ab:ec:c6:23:7c:7d:c4:
f1:7c:e2:87:43:72:f6:ad:ee:5f:35:ef:32:ea:91:
2d:66:bb:74:38:1b:7c:f3:c6:6b:7e:35:4f:29:c3:
17:4d:fc:39:26:90:a6:bd:1f:80:7f:95:22:bb:46:
77:f1:59:73:ee:f7:e9:db:f3:a1:ba:26:ee:2a:54:
6b:bb:0d:0c:c8:57:82:69:31:8d:e8:ab:80:2a:30:
5a:16:03:c9:52:70:0b:63:ac:e2:dc:47:1a:ed:24:
89:fd:95:c4:eb:e1:2b:f2:9c:20:77:8b:60:a3:84:
30:1e:8a:61:3b:4c:02:c6:99:d1:1d:51:a8:db:f5:
8a:9a:58:64:b6:6c:c4:dd:b4:7a:5f:8f:11:63:84:
a3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:72:21:F2:F7:58:7A:BA:44:03:84:AC:A9:0E:7E:FB:99:97:42:70
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134332e302f32342d3234203d3e203633303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.143.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:47:07:da:0d:5e:4f:36:0a:90:ef:81:62:bd:29:c5:b5:2f:
41:4a:f7:56:1a:1d:db:73:f7:f1:6a:5c:6e:95:28:3b:fe:08:
53:16:b4:5d:0b:22:24:24:b9:69:b3:ab:c4:60:86:07:e2:3a:
90:bb:a8:52:74:a2:ec:70:30:f5:40:e1:2b:90:5d:d6:4a:16:
4b:ad:14:9b:7d:e2:91:1d:72:eb:04:18:04:ec:36:39:70:ce:
1f:22:0e:cc:bd:f4:d5:fa:eb:a6:26:4c:da:29:b9:21:8d:8f:
96:c1:7e:11:b2:61:e1:ff:c6:b6:38:15:0b:2a:b9:f0:26:73:
71:7e:d6:07:65:78:d3:5b:11:c9:a4:25:38:18:d1:a4:7f:48:
90:30:9a:25:77:1d:cf:d1:c6:0f:34:e1:19:d6:12:d4:0b:82:
8c:f1:c7:0e:01:c8:6d:66:80:ed:8c:c8:b8:2c:05:8c:dc:40:
a2:68:98:d8:23:b8:5f:03:5a:7c:0a:69:be:9e:96:48:b0:dc:
af:bf:4d:70:a4:29:67:0c:b6:eb:2c:46:be:c5:53:c1:9b:52:
64:c7:40:dd:2f:36:78:d5:d4:4f:c2:82:3b:63:e4:0e:a3:05:
66:c2:62:c6:e9:0a:12:e9:1f:a3:91:0a:6c:1b:38:0e:12:4e:
9c:66:76:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:25:47 2026 by rpki-client