Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37382e302f32342d3234203d3e20323132333834.roa
File: 3137382e3234382e37382e302f32342d3234203d3e20323132333834.roa (raw, json)
Hash identifier: sj3Mzc5uAM4fOfd+NlVLzXe7KVKZIN7ymsHfPBwN4+I=
Subject key identifier: FA:21:10:81:02:A2:45:A2:28:27:46:BF:B5:61:E7:01:CF:50:A7:A1
Certificate issuer: /CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Certificate serial: 7FDAD661774787200AA28E1C1534966BD11F11B9
Authority key identifier: BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37382e302f32342d3234203d3e20323132333834.roa
Signing time: Thu 21 May 2026 13:47:15 +0000
ROA not before: Thu 21 May 2026 13:42:15 +0000
ROA not after: Thu 20 May 2027 13:47:15 +0000
asID: 212384
IP address blocks: 178.248.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.mft
rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 13:49:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:da:d6:61:77:47:87:20:0a:a2:8e:1c:15:34:96:6b:d1:1f:11:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Validity
Not Before: May 21 13:42:15 2026 GMT
Not After : May 20 13:47:15 2027 GMT
Subject: CN=FA21108102A245A2282746BFB561E701CF50A7A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:77:b2:ae:9e:54:84:80:3c:28:48:56:11:76:
67:8f:4a:43:86:b3:04:6a:cc:c8:2d:7c:ee:68:46:
c2:aa:81:0a:2c:a3:1f:f0:ec:f6:db:54:82:99:af:
a7:fc:23:e5:c1:aa:35:f6:0a:bc:34:d0:3a:80:37:
f6:b1:78:94:40:d8:53:77:5a:7d:d5:44:e1:a3:46:
24:e1:b2:b2:16:8b:b9:00:c0:79:30:c7:e5:87:8c:
4e:aa:73:0f:62:b2:f3:25:03:fc:41:fd:41:86:2e:
a8:93:55:16:55:59:ed:3d:be:38:58:7c:35:73:92:
67:cc:70:5a:f0:72:0b:d4:a5:fa:b1:bf:58:ca:a0:
f1:fb:64:28:9a:1c:27:ca:85:d1:e7:88:e5:21:f3:
77:4e:8a:7c:87:dd:7f:44:f7:cb:b1:31:5a:33:6e:
a8:98:b8:cc:ed:ad:d2:0f:71:b1:96:69:7d:ad:30:
61:7a:99:29:99:eb:2d:4e:8e:0e:99:04:76:62:ee:
0f:c8:a4:1f:17:cc:c6:df:2b:3e:e5:c8:75:f2:84:
70:27:8f:89:09:91:bf:b2:2d:ba:cd:00:5a:33:1b:
f8:91:a3:b6:dc:56:ab:28:fc:87:3c:85:74:3b:9e:
2d:db:b0:68:49:80:a8:cc:92:34:ce:c7:e6:91:f9:
5b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:21:10:81:02:A2:45:A2:28:27:46:BF:B5:61:E7:01:CF:50:A7:A1
X509v3 Authority Key Identifier:
keyid:BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37382e302f32342d3234203d3e20323132333834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.78.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:28:69:e8:4e:d3:c6:43:b1:87:a3:79:e2:89:34:9f:5c:28:
1b:52:5d:44:4d:03:3b:90:e3:f8:76:43:2e:b1:c1:98:0b:6d:
88:e7:4a:13:77:6b:71:52:1c:8c:ad:d3:79:1b:55:60:23:54:
f5:e6:11:fd:cb:b8:a8:df:ab:2d:5f:9f:f5:0f:01:da:0e:68:
b0:41:2b:49:08:92:d8:44:b1:9d:e4:0a:0e:eb:0e:cd:c4:10:
85:5e:42:7a:d4:06:33:eb:e5:c4:c8:cd:51:af:bd:da:7b:6e:
e0:69:d9:26:51:ac:ec:1a:8b:21:f6:82:96:60:31:77:88:19:
bf:f4:14:14:ad:ac:e7:5d:63:fc:af:28:a6:63:cf:22:08:22:
81:ee:83:3f:b0:88:32:13:5e:df:b4:43:e2:8b:16:13:52:fe:
fb:9f:bb:8d:aa:15:82:61:18:de:54:21:7a:13:0c:05:ce:93:
00:bd:ef:9f:ff:cf:40:34:3b:4a:32:ca:5f:be:09:fe:16:f9:
cd:c6:3d:a9:e2:3d:ae:14:6f:1f:40:75:b2:27:8f:4e:96:1b:
ed:d0:be:4a:8a:05:78:6a:e4:d3:4e:5c:d0:b2:f1:9e:c5:bc:
2b:b9:18:26:b2:1a:1c:c1:6a:5f:bd:1c:3c:21:3e:b6:f3:69:
e7:c9:66:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:35:32 2026 by rpki-client