Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS63793.roa
File: AS63793.roa (raw, json)
Hash identifier: ZE712KpPkG55FgMc0FuAnaFXwOpgdyUrK99WLWwrj1c=
Subject key identifier: C3:FD:91:20:49:33:4B:EC:8A:7E:53:91:94:21:74:87:B2:62:73:A8
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 0285B2B1E8B67DB23A1DFDA0B7F51D5223B0B0D7
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS63793.roa
Signing time: Wed 25 Feb 2026 03:21:38 +0000
ROA not before: Wed 25 Feb 2026 03:16:38 +0000
ROA not after: Wed 24 Feb 2027 03:21:38 +0000
asID: 63793
IP address blocks: 85.8.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:85:b2:b1:e8:b6:7d:b2:3a:1d:fd:a0:b7:f5:1d:52:23:b0:b0:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Feb 25 03:16:38 2026 GMT
Not After : Feb 24 03:21:38 2027 GMT
Subject: CN=C3FD912049334BEC8A7E539194217487B26273A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e9:06:a8:a7:85:34:ba:7e:15:fa:a8:be:69:
1d:c5:39:41:aa:e7:fc:2a:2b:5a:75:04:c7:53:4a:
0e:8e:3e:45:d9:79:5e:46:44:7f:5f:30:f6:2f:ca:
3e:cd:3e:69:2d:02:4a:4e:5c:fa:6f:8d:43:11:aa:
48:ae:bf:e3:bc:04:ad:fa:f1:6c:59:dd:34:f6:eb:
87:46:97:71:79:6a:c4:0e:90:e5:80:5b:67:51:13:
e3:40:31:90:69:57:8a:a0:68:fe:75:79:3f:6e:0e:
69:75:43:70:0d:c9:1d:b5:63:32:d4:e5:f3:f4:1a:
e0:ec:ab:e8:a1:fd:94:60:04:f1:d8:ff:bf:ed:29:
1c:fc:69:6d:ce:0b:7e:b6:7d:7c:5d:03:65:c5:c9:
af:ee:13:80:6b:82:a0:6c:50:6e:73:e1:65:e0:d7:
64:0a:14:37:74:39:e2:53:6a:e6:ea:16:c3:35:ab:
dd:e7:c0:dc:8c:8c:fe:98:57:13:b4:ff:02:ae:ad:
ad:0e:fe:e7:f5:c7:14:ce:b5:4b:8d:bd:9c:89:f6:
eb:f4:31:2e:77:ab:c4:68:22:d9:ff:f6:c6:82:58:
b2:55:c2:ce:d1:fe:d4:c6:15:a5:1b:2a:25:d2:5f:
72:9c:fe:61:56:27:09:a0:1d:b2:78:26:41:ef:36:
6a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:FD:91:20:49:33:4B:EC:8A:7E:53:91:94:21:74:87:B2:62:73:A8
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS63793.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.8.161.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:57:d9:e0:6e:a5:24:ad:31:9a:49:1f:34:a3:f1:f5:22:da:
a4:69:bd:a4:c2:60:d5:01:53:ed:e8:73:15:23:b7:16:95:a7:
a8:ab:fb:a6:99:bf:b0:8e:54:ec:77:a7:b2:0c:a0:8a:95:c6:
aa:2b:88:75:c9:c8:67:17:77:ae:ea:d4:c2:e1:84:97:79:49:
39:fc:6a:43:26:07:72:fe:01:f8:85:cb:60:89:e9:65:a6:e9:
0f:26:f7:b3:b4:8c:6f:cc:5d:b4:e1:39:d4:de:20:2d:08:a2:
70:38:20:7e:ba:84:22:48:e6:a8:1e:a0:94:ec:cb:cc:6a:d8:
a8:b9:07:90:a6:4e:b0:9d:2f:f8:c0:9e:28:9c:08:d4:f7:f7:
84:32:0d:f4:46:89:94:12:8a:70:82:ec:77:71:b1:05:59:7d:
04:a2:2f:b0:7e:a5:cf:e4:22:81:41:ac:64:93:34:7d:02:35:
ff:94:73:d3:c1:51:2e:23:00:69:fa:90:ca:4a:53:a9:62:ee:
d6:eb:a3:a8:9b:d7:e6:80:91:5a:8d:7a:98:25:b1:e9:da:b0:
56:60:e2:0e:0a:88:8c:5c:d8:02:e6:6d:da:52:5e:07:99:ee:
e4:14:d3:da:3a:8f:b3:8e:41:83:38:d5:2f:0f:96:b1:29:cf:
1d:44:f6:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:35:08 2026 by rpki-client