Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3138352e3138312e332e302f32342d3234203d3e20323030303137.roa
File: 3138352e3138312e332e302f32342d3234203d3e20323030303137.roa (raw, json)
Hash identifier: P57/fYjckH7KO6Bmf2RAAe9o4ZEd5zcCF66fMAqMs84=
Subject key identifier: 27:5C:88:67:E8:E3:35:E8:FB:C4:B0:63:4C:1E:55:10:51:7A:70:41
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 6CCF42E68DFBF04EB6C6B98379DDC34EE083C4C6
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3138352e3138312e332e302f32342d3234203d3e20323030303137.roa
Signing time: Tue 24 Feb 2026 14:46:24 +0000
ROA not before: Tue 24 Feb 2026 14:41:24 +0000
ROA not after: Tue 23 Feb 2027 14:46:24 +0000
asID: 200017
IP address blocks: 185.181.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 10:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:cf:42:e6:8d:fb:f0:4e:b6:c6:b9:83:79:dd:c3:4e:e0:83:c4:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Feb 24 14:41:24 2026 GMT
Not After : Feb 23 14:46:24 2027 GMT
Subject: CN=275C8867E8E335E8FBC4B0634C1E5510517A7041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:27:0c:3e:b6:c2:60:69:64:03:9f:39:d0:cd:
64:58:6d:23:df:62:b9:b0:38:06:04:40:65:50:8f:
b3:40:f0:5c:ef:9d:84:ed:d0:88:e3:17:fa:88:ef:
80:4e:b0:f1:2e:3d:dd:9b:5f:b9:a2:f0:49:03:e8:
df:cf:25:5d:75:13:47:a9:66:2a:4a:94:d0:e0:17:
73:15:0e:ee:70:cc:05:e0:0d:92:84:73:f6:c9:85:
7f:fd:ac:39:c0:48:3f:a4:00:ae:be:5e:a1:25:1f:
21:ee:79:d3:aa:a3:b6:ff:d9:aa:99:15:e8:d0:ec:
d0:ff:16:c3:f6:91:4d:7a:76:80:13:47:68:af:13:
1c:bf:82:ec:b5:e2:13:47:3e:22:e8:6e:66:8c:d9:
ff:e7:19:c3:86:92:19:1a:83:ed:29:71:d4:af:7c:
e0:d6:ec:29:77:13:6b:cd:11:59:38:e3:c2:da:9e:
b2:7c:be:49:04:1d:d9:86:87:c8:6a:0c:32:1e:23:
85:e5:19:e9:94:4b:b0:d4:f0:e7:7f:63:31:72:20:
e2:01:ca:2b:68:bd:73:79:43:99:07:61:11:88:c5:
80:4b:25:37:a7:2f:43:6f:86:0d:8b:2a:28:cd:da:
d2:55:28:4d:55:e0:7c:8c:36:22:2b:36:fd:79:c2:
75:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:5C:88:67:E8:E3:35:E8:FB:C4:B0:63:4C:1E:55:10:51:7A:70:41
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3138352e3138312e332e302f32342d3234203d3e20323030303137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.3.0/24
Signature Algorithm: sha256WithRSAEncryption
46:fe:59:6a:74:5d:ba:48:a8:20:a9:c3:3f:36:50:05:27:89:
12:09:3e:72:8d:54:b8:a8:62:01:20:32:6e:a5:f6:10:e1:60:
7a:42:d8:c9:ee:c8:44:22:d2:7e:de:9b:cd:71:80:d5:89:f5:
1e:2d:ec:82:e2:f9:6c:23:a2:62:fa:a5:43:b6:30:c9:00:c9:
85:79:de:e0:a6:40:55:5f:d7:02:a4:9e:f8:ac:12:8e:9c:da:
d6:fc:c0:e1:13:f5:7d:50:45:3c:4b:69:ee:5d:15:37:c2:b3:
a1:45:c5:02:f2:c2:36:d8:d1:f3:2e:fd:c0:58:48:70:83:cd:
10:6c:06:f9:0c:d5:61:33:2c:b2:c2:76:93:23:af:c1:6e:4f:
e7:67:28:b6:b1:f9:8e:8e:8f:f6:5c:51:84:a9:7a:ca:bf:14:
5f:97:00:86:0b:30:e1:df:f3:e8:e9:fa:8f:6f:be:dd:58:01:
ec:da:fa:13:7e:a4:b8:ae:c7:04:a9:ba:79:2e:23:28:37:44:
32:85:fb:8a:13:fe:21:e0:30:b7:8b:16:31:51:f3:b1:b5:bd:
26:e7:a9:c7:6f:61:d4:19:83:44:8a:ec:65:7c:51:9b:7b:50:
0e:83:42:ab:d4:de:2f:f3:8c:94:00:32:03:5f:f2:b3:4f:bd:
bc:5f:da:c3
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUbM9C5o378E62xrmDed3DTuCDxMYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGY0Y2U3NzIyZjk5MDc1ZDk0NzM4YjdlNjEwNzA0MDEy
NjllYjNkNjAeFw0yNjAyMjQxNDQxMjRaFw0yNzAyMjMxNDQ2MjRaMDMxMTAvBgNV
BAMTKDI3NUM4ODY3RThFMzM1RThGQkM0QjA2MzRDMUU1NTEwNTE3QTcwNDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaJww+tsJgaWQDnznQzWRYbSPf
YrmwOAYEQGVQj7NA8FzvnYTt0IjjF/qI74BOsPEuPd2bX7mi8EkD6N/PJV11E0ep
ZipKlNDgF3MVDu5wzAXgDZKEc/bJhX/9rDnASD+kAK6+XqElHyHuedOqo7b/2aqZ
FejQ7ND/FsP2kU16doATR2ivExy/guy14hNHPiLobmaM2f/nGcOGkhkag+0pcdSv
fODW7Cl3E2vNEVk448LanrJ8vkkEHdmGh8hqDDIeI4XlGemUS7DU8Od/YzFyIOIB
yitovXN5Q5kHYRGIxYBLJTenL0Nvhg2LKijN2tJVKE1V4HyMNiIrNv15wnXZAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUJ1yIZ+jjNej7xLBjTB5VEFF6cEEwHwYDVR0j
BBgwFoAUj0znci+ZB12Uc4t+YQcEASaes9YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWE5NzcxMTUtNTExMC00MjU3LTk0ZWYtNGQyYjQzODg0
MDQwLzAvOEY0Q0U3NzIyRjk5MDc1RDk0NzM4QjdFNjEwNzA0MDEyNjlFQjNENi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2owem5jaS1aQjEyVWM0dC1ZUWNFQVNh
ZXM5WS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWE5NzcxMTUt
NTExMC00MjU3LTk0ZWYtNGQyYjQzODg0MDQwLzAvMzEzODM1MmUzMTM4MzEyZTMz
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDMwMzAzMTM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
ubUDMA0GCSqGSIb3DQEBCwUAA4IBAQBG/llqdF26SKggqcM/NlAFJ4kSCT5yjVS4
qGIBIDJupfYQ4WB6QtjJ7shEItJ+3pvNcYDVifUeLeyC4vlsI6Ji+qVDtjDJAMmF
ed7gpkBVX9cCpJ74rBKOnNrW/MDhE/V9UEU8S2nuXRU3wrOhRcUC8sI22NHzLv3A
WEhwg80QbAb5DNVhMyyywnaTI6/Bbk/nZyi2sfmOjo/2XFGEqXrKvxRflwCGCzDh
3/Po6fqPb77dWAHs2voTfqS4rscEqbp5LiMoN0QyhfuKE/4h4DC3ixYxUfOxtb0m
56nHb2HUGYNEiuxlfFGbe1AOg0Kr1N4v84yUADIDX/KzT728X9rD
-----END CERTIFICATE-----
Generated at Mon Mar 2 16:09:36 2026 by rpki-client