Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e203137343937.roa
File: 38332e3135302e3231362e302f32342d3234203d3e203137343937.roa (raw, json)
Hash identifier: 0l4IOdzRCdx4yM2792wScKsdUk6blTugRpJxUUyPRFw=
Subject key identifier: C7:55:AD:7D:37:11:21:3C:00:F7:BF:02:D6:9E:96:AA:55:19:2D:1D
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 5CCC681E34C5AC7951EBBA910AFBC0E9531137A5
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e203137343937.roa
Signing time: Fri 20 Feb 2026 13:42:03 +0000
ROA not before: Fri 20 Feb 2026 13:37:03 +0000
ROA not after: Fri 19 Feb 2027 13:42:03 +0000
asID: 17497
IP address blocks: 83.150.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:cc:68:1e:34:c5:ac:79:51:eb:ba:91:0a:fb:c0:e9:53:11:37:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Feb 20 13:37:03 2026 GMT
Not After : Feb 19 13:42:03 2027 GMT
Subject: CN=C755AD7D3711213C00F7BF02D69E96AA55192D1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7f:52:84:10:67:17:bd:82:79:28:92:8a:a6:
5e:66:39:30:7c:c1:ea:d2:97:e6:09:59:b5:46:81:
6a:0f:55:2e:cd:68:4b:ec:99:22:5d:30:bc:83:54:
55:fe:c2:4f:65:c8:ec:06:bf:15:90:2e:62:11:fc:
4b:4d:80:d2:69:03:57:ae:73:36:95:4c:ae:1e:16:
05:e1:f1:0f:28:75:2b:08:d3:4e:3c:88:21:42:a7:
74:30:55:c7:09:1e:04:52:6e:d5:63:b5:c5:46:e8:
cf:dd:c4:c3:d8:3d:85:0d:9c:bd:7e:25:c8:1e:df:
0b:99:3c:9c:01:8f:68:90:12:a7:0b:6f:ac:0f:76:
2b:67:e1:01:17:01:18:b7:9e:f1:fe:09:b1:44:58:
e1:20:f6:8f:07:48:63:b3:0c:c1:c6:ed:42:a6:26:
9b:79:47:70:30:51:6c:90:c8:b9:4c:ad:68:2b:a1:
09:68:90:83:7c:14:7b:06:39:30:d1:db:00:2d:05:
e8:c6:bd:3e:b8:47:93:c8:1d:01:91:52:b6:dc:50:
f4:b3:76:49:fa:d1:7b:82:70:07:70:1a:ea:c0:64:
1d:7b:b6:7b:d5:0a:85:c7:a8:b0:16:ba:02:5e:7c:
d6:60:f0:f0:d4:7a:8a:19:5e:2b:82:44:47:c0:a7:
de:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:55:AD:7D:37:11:21:3C:00:F7:BF:02:D6:9E:96:AA:55:19:2D:1D
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e203137343937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.216.0/24
Signature Algorithm: sha256WithRSAEncryption
49:91:16:c1:30:15:be:1c:3d:39:fe:4f:cf:47:b3:46:3f:4c:
60:68:33:71:8b:a5:fc:40:51:54:4b:b1:c7:bb:ba:2f:de:3c:
21:9d:87:c1:a4:03:fa:ef:9b:8f:eb:aa:4d:ff:94:17:6e:c4:
ce:2d:a2:79:9d:e2:03:15:3e:9d:1a:20:29:36:b6:72:b8:4c:
b7:d5:05:c3:42:17:3a:23:24:29:fb:b5:0b:c8:c9:55:6c:a9:
a6:1a:10:21:d3:dc:53:51:4d:89:82:35:66:88:81:2b:16:cc:
b6:15:ba:57:c3:61:f7:5a:e5:d1:8e:75:72:3d:da:9f:51:f7:
fa:6d:fd:e7:b6:31:64:74:32:13:23:a5:5f:98:82:1b:a2:9d:
83:b2:fc:fd:13:f1:80:21:88:f5:57:e1:8d:6b:2c:ca:2e:ac:
09:68:cf:eb:6c:36:5d:66:95:38:70:b2:18:d9:c0:4e:ef:46:
11:0e:38:63:49:a5:71:59:d9:a1:2b:d7:4c:0d:b0:a5:30:2a:
b1:4c:2c:54:60:23:6d:79:e5:0a:f1:cb:ac:7e:ad:6d:5a:de:
11:e2:5d:c5:b9:2f:f9:b7:d3:c1:59:a9:6a:a5:02:9d:14:7f:
6c:cf:00:98:52:86:4a:64:bd:50:e8:bf:e8:8f:81:29:5f:1d:
2f:bd:61:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:16:45 2026 by rpki-client