Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3138332e302f32342d3234203d3e20313938323530.roa
File: 39352e3231342e3138332e302f32342d3234203d3e20313938323530.roa (raw, json)
Hash identifier: Ov/x1oZaBVg9UzR84S4kZKaf9zCxK3034xSjk7KKlY4=
Subject key identifier: 6C:74:00:49:D5:01:8F:B1:74:D7:F0:18:75:39:86:68:E4:55:3D:89
Certificate issuer: /CN=92f49de8684f1287f4f6cb185d5cf7de80c90b94
Certificate serial: 6FAB703CF8BB66E92DA1886F1485762ED82C733C
Authority key identifier: 92:F4:9D:E8:68:4F:12:87:F4:F6:CB:18:5D:5C:F7:DE:80:C9:0B:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3138332e302f32342d3234203d3e20313938323530.roa
Signing time: Sun 12 Apr 2026 06:11:36 +0000
ROA not before: Sun 12 Apr 2026 06:06:36 +0000
ROA not after: Sun 11 Apr 2027 06:11:36 +0000
asID: 198250
IP address blocks: 95.214.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.crl
rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.mft
rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 11:31:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:ab:70:3c:f8:bb:66:e9:2d:a1:88:6f:14:85:76:2e:d8:2c:73:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f49de8684f1287f4f6cb185d5cf7de80c90b94
Validity
Not Before: Apr 12 06:06:36 2026 GMT
Not After : Apr 11 06:11:36 2027 GMT
Subject: CN=6C740049D5018FB174D7F01875398668E4553D89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:dd:c8:86:2b:e3:01:ea:0d:f2:f3:de:3a:9d:
b3:e4:30:c1:14:34:7f:e0:02:08:0c:cf:80:6c:38:
81:45:fd:4c:d0:cf:f0:21:be:bb:19:e1:a8:cc:e3:
a6:55:3a:85:42:d4:e4:cb:4b:1a:c4:c9:6b:84:48:
85:cb:b3:34:a5:e3:40:56:f5:cf:2d:7f:a4:35:85:
27:42:6c:b6:b4:bf:04:b9:f1:9e:49:f5:51:97:07:
f6:43:c2:1c:5d:da:9c:68:38:86:72:d8:ad:00:f1:
92:44:b2:ce:f3:0c:f5:03:cc:d2:ef:7e:93:61:1a:
a8:cf:bf:ca:3a:8f:5b:e7:3d:1a:0f:34:2f:4f:4a:
c8:e6:45:91:ec:5a:83:b6:48:22:ac:8c:06:cb:a4:
d3:f8:ed:89:0e:5e:5e:82:77:e2:35:50:55:e6:8f:
59:57:c6:12:43:53:48:32:bc:c2:12:7b:df:b8:79:
9f:c9:97:c2:7b:36:44:70:0e:ad:f2:6d:60:18:43:
87:89:10:02:3a:cc:53:88:f9:66:4c:cf:25:b1:29:
27:54:be:cf:47:b8:8e:44:81:65:c1:e7:04:b6:9c:
57:18:20:1e:a6:bd:4f:34:b7:33:47:61:a7:cd:04:
5b:b3:8f:a2:71:f2:35:d4:2e:8c:29:62:4c:45:c7:
ec:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:74:00:49:D5:01:8F:B1:74:D7:F0:18:75:39:86:68:E4:55:3D:89
X509v3 Authority Key Identifier:
keyid:92:F4:9D:E8:68:4F:12:87:F4:F6:CB:18:5D:5C:F7:DE:80:C9:0B:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3138332e302f32342d3234203d3e20313938323530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.183.0/24
Signature Algorithm: sha256WithRSAEncryption
05:ec:ac:ab:3e:cf:93:43:bf:af:49:76:be:ad:52:41:e6:09:
1d:99:ef:70:8a:a6:66:cf:03:29:e9:54:e9:8f:da:5f:0f:3c:
93:a9:f3:55:1e:53:e5:dd:bc:58:ee:3a:81:4a:1c:cb:6f:33:
23:16:bc:f6:03:8a:2c:1e:ab:37:b4:18:a2:29:77:db:da:3f:
3a:c4:af:57:3e:f6:9c:56:47:76:b2:45:5c:d3:89:82:5d:ab:
80:5f:6f:c9:18:ca:4e:9a:36:42:11:53:9d:20:f7:5c:42:7a:
73:06:85:cf:eb:6b:4e:ba:83:c9:8e:1f:02:39:4d:12:c4:ce:
ed:07:94:7b:05:a8:e7:9e:83:ea:eb:84:8b:f0:fc:85:6d:ba:
bb:9e:9e:ed:90:6e:d1:ea:cd:73:c2:e5:17:98:f5:2d:c4:ad:
c6:7d:e5:5a:dd:51:7c:06:25:6d:21:cd:0b:be:45:da:60:1e:
2b:2a:53:62:d0:3e:71:2f:9d:be:c5:02:2b:30:ff:a9:a5:15:
56:05:67:a7:81:f0:8b:8f:d3:17:d9:29:8a:1d:9d:ec:ab:71:
77:81:90:0e:5f:57:51:e3:bc:97:48:8a:f9:26:df:84:71:16:
56:d7:47:cc:ff:e0:72:24:2a:60:5d:6b:4b:8c:fb:14:8f:62:
48:28:30:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 00:59:50 2026 by rpki-client