Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3137372e302f32342d3234203d3e203438393235.roa
File: 3137382e3230382e3137372e302f32342d3234203d3e203438393235.roa (raw, json)
Hash identifier: 7F7gYZ5aI34gMroHXei1J7Zu4LeCOozyx0PZ42TtWN4=
Subject key identifier: 26:C9:2C:2B:4C:55:12:DF:3C:83:45:DC:EA:82:19:35:07:92:E0:06
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 0E1D4D6150264DD573F292E7CEE3D2F180CDC953
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3137372e302f32342d3234203d3e203438393235.roa
Signing time: Wed 11 Feb 2026 20:55:38 +0000
ROA not before: Wed 11 Feb 2026 20:50:38 +0000
ROA not after: Wed 10 Feb 2027 20:55:38 +0000
asID: 48925
IP address blocks: 178.208.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:1d:4d:61:50:26:4d:d5:73:f2:92:e7:ce:e3:d2:f1:80:cd:c9:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Feb 11 20:50:38 2026 GMT
Not After : Feb 10 20:55:38 2027 GMT
Subject: CN=26C92C2B4C5512DF3C8345DCEA8219350792E006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:58:c9:a9:ca:73:2b:31:d2:ce:70:fb:35:e5:
1d:c7:a7:35:d8:26:e9:bc:44:4a:09:da:98:2f:64:
60:b6:29:9e:56:db:da:6a:bf:7d:a6:93:e1:1f:ca:
80:46:0a:c2:21:8c:a5:46:f2:3e:40:58:f0:ac:d3:
c0:ac:31:92:25:90:43:3d:e6:af:03:d9:d3:16:f1:
84:82:3b:be:61:31:9a:26:a6:08:83:7c:69:db:dd:
0b:9e:a8:61:74:64:7e:d1:fc:34:a0:c1:5a:1c:a3:
bb:7e:29:91:90:1b:57:df:59:e4:f0:14:06:96:cb:
68:5c:88:68:47:bb:99:fb:81:85:6e:45:73:70:ee:
13:a1:d4:fb:e0:ad:49:fd:da:3a:bd:28:d7:46:62:
e8:b0:25:4d:a9:9e:08:1a:67:53:86:52:4f:bf:29:
37:ee:93:bb:56:2f:e8:45:a7:a2:c7:43:ed:85:68:
87:06:8f:18:5e:64:cf:db:25:96:75:5a:b4:8c:f6:
ad:63:30:19:fd:20:60:2c:81:b2:13:8b:11:22:1c:
19:42:34:c1:f0:78:cd:29:63:ab:95:52:c8:38:27:
32:a2:01:47:b2:c1:07:d5:7c:dd:e0:fe:f0:ca:d9:
6c:da:17:40:29:b8:93:ad:84:44:28:5d:03:e3:05:
e5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C9:2C:2B:4C:55:12:DF:3C:83:45:DC:EA:82:19:35:07:92:E0:06
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3137372e302f32342d3234203d3e203438393235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.177.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:dd:bb:29:9c:dd:6f:ea:ff:e6:5d:5c:89:d4:ac:0b:90:4b:
aa:eb:24:2b:b5:34:fc:74:31:1d:52:b7:0f:cf:09:8d:c5:c4:
5f:b7:b1:da:47:20:3c:02:18:33:23:e9:3e:a9:19:d2:0e:df:
b1:04:24:34:c1:7b:df:12:94:d4:1c:98:66:6e:5a:a7:47:bf:
0b:f1:ff:37:89:03:ae:ef:95:70:e6:94:a1:96:65:d5:5c:76:
f7:e4:fa:38:a7:bc:ca:b1:a8:d3:36:79:39:53:76:0b:81:bc:
71:43:56:ee:37:c6:a0:29:9c:a9:fe:ba:89:97:9f:0d:9a:b3:
aa:25:28:d9:20:67:dc:55:0f:0a:e8:b1:9d:c9:1a:2d:05:2b:
fe:ff:a6:a4:94:91:45:19:63:f2:cd:8e:13:71:66:8b:dc:a2:
c5:e9:10:1b:85:26:05:d2:2a:eb:64:9d:54:75:76:55:7d:5d:
31:9a:43:91:21:7b:2b:48:ef:15:42:80:07:2d:f3:bd:d1:60:
24:44:8a:f4:d4:81:49:56:f4:32:22:19:c8:6c:a6:5b:bd:c3:
5d:a5:10:69:42:a8:37:c0:40:a1:96:be:6d:85:1d:19:47:46:
4d:88:06:f7:26:c0:9e:a6:be:85:87:25:5b:ba:2c:84:15:f9:
87:6f:a0:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:04:45 2026 by rpki-client