Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131372e302f32342d3234203d3e20313332333539.roa
File: 39332e39352e3131372e302f32342d3234203d3e20313332333539.roa (raw, json)
Hash identifier: M5vwdteA6vgVGSkPPJNq/lGZgSs9KFCNf+KWBKR3xOo=
Subject key identifier: 6F:E5:58:97:5C:1D:75:E1:03:3E:6E:CE:E0:64:9E:C2:CC:8F:F2:9B
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 603BDDF1AF7795B1265F55A5DB1E8A6D9EA3D097
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131372e302f32342d3234203d3e20313332333539.roa
Signing time: Thu 11 Jun 2026 07:45:05 +0000
ROA not before: Thu 11 Jun 2026 07:40:05 +0000
ROA not after: Thu 10 Jun 2027 07:45:05 +0000
asID: 132359
IP address blocks: 93.95.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 20:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:3b:dd:f1:af:77:95:b1:26:5f:55:a5:db:1e:8a:6d:9e:a3:d0:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Jun 11 07:40:05 2026 GMT
Not After : Jun 10 07:45:05 2027 GMT
Subject: CN=6FE558975C1D75E1033E6ECEE0649EC2CC8FF29B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:df:53:f8:5a:18:49:b3:a2:ec:66:6a:a0:0e:
3a:90:b7:57:80:22:83:9d:dc:8c:0f:48:f4:ff:e9:
87:34:af:c5:75:44:a3:b9:af:a2:fe:dd:62:4e:cf:
7c:e5:d7:2d:d4:77:df:a2:e0:d4:c5:8a:26:f4:07:
c3:9e:81:61:d0:25:65:5d:93:3c:01:19:f6:7e:0a:
58:ab:f0:21:d3:a6:c0:9c:f3:0a:87:d0:7c:97:dc:
9e:8c:37:07:09:44:a8:82:10:10:f4:a3:02:89:23:
c9:e9:dd:de:f1:5b:29:76:67:7b:ae:3a:0b:bb:e4:
b0:f0:ba:69:7f:bd:c4:bb:27:c3:c7:3e:63:fd:cf:
08:40:a3:50:7e:0d:39:f9:7d:df:34:06:f7:90:10:
7f:cd:16:d9:4a:a7:9b:d9:3f:a9:92:6f:fa:20:74:
37:65:a5:c9:bf:43:64:05:13:f7:81:f5:74:2f:3c:
e6:dd:d5:86:1c:bf:83:13:33:02:50:8c:99:da:82:
01:50:09:f9:b1:ae:9a:d6:90:b7:7a:dc:e9:e3:cd:
92:ab:84:e3:cb:0e:e8:92:db:a8:81:87:2a:58:28:
fc:1f:9d:bb:22:1a:3a:8e:84:9d:7e:a4:f6:9a:90:
be:5b:4a:61:d0:54:b4:08:d5:80:27:4f:34:2d:74:
3f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E5:58:97:5C:1D:75:E1:03:3E:6E:CE:E0:64:9E:C2:CC:8F:F2:9B
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131372e302f32342d3234203d3e20313332333539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.117.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:a1:fc:3e:d1:8a:a0:9f:04:fd:09:7c:a6:82:43:b3:24:73:
4e:6c:e6:04:6a:8d:bf:93:31:32:b6:d8:b9:4b:61:26:90:30:
e6:99:b1:da:e7:c2:33:a8:6a:a8:65:34:d4:ea:8c:a0:f0:1b:
48:66:cc:7f:b4:c4:4f:a9:64:5d:42:5f:70:5c:75:bf:93:3c:
3f:c3:ae:44:4b:58:55:e5:62:28:50:7e:9f:6c:e2:24:9d:20:
18:43:f3:22:a7:d8:58:03:4c:21:ee:1c:2d:4c:23:b0:d0:dd:
49:c5:bd:1b:60:14:3d:c7:2a:5c:ce:56:07:71:4a:06:bb:cf:
d4:a7:2b:db:fd:e2:23:7f:99:e8:59:c1:6c:2e:0c:5d:0c:bc:
1d:98:16:9a:cb:2c:84:4a:e1:29:50:51:72:0d:53:e5:2f:52:
95:ba:f1:54:f2:c9:fd:97:d9:a9:cd:d0:04:34:61:4e:3f:8e:
fe:c9:39:63:92:f0:65:36:f3:b0:35:94:f1:92:52:e9:a8:ff:
8e:35:21:93:f0:15:85:c6:d3:15:1b:25:87:4a:2a:bf:b3:c3:
26:ed:e3:af:a1:d3:67:2b:a8:d2:b6:9b:04:04:f4:6e:01:b2:
bf:25:01:4c:ba:81:63:60:1b:d8:d4:34:be:c2:21:fb:93:5e:
db:f8:17:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 09:28:25 2026 by rpki-client