Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137382e302f32332d3233203d3e2035353131.roa
File: 3130392e3131302e3137382e302f32332d3233203d3e2035353131.roa (raw, json)
Hash identifier: +CM2/jQDEpgzqyqMBPb/VOjPaHz8JPDsfNIB+SC6U1c=
Subject key identifier: 0A:DD:99:86:DA:D9:AE:3B:C5:80:D1:0D:3B:93:DB:99:E8:02:EF:F8
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 164237E7FD5E70E0079744F78791A658BFE5C6A1
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137382e302f32332d3233203d3e2035353131.roa
Signing time: Thu 11 Jun 2026 18:47:33 +0000
ROA not before: Thu 11 Jun 2026 18:42:33 +0000
ROA not after: Thu 10 Jun 2027 18:47:33 +0000
asID: 5511
IP address blocks: 109.110.178.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 17:23:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:42:37:e7:fd:5e:70:e0:07:97:44:f7:87:91:a6:58:bf:e5:c6:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jun 11 18:42:33 2026 GMT
Not After : Jun 10 18:47:33 2027 GMT
Subject: CN=0ADD9986DAD9AE3BC580D10D3B93DB99E802EFF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:00:17:0c:ca:fe:96:f7:73:a7:2d:81:10:ac:
72:54:16:3f:52:59:b7:e4:66:cd:eb:bd:2b:5b:a1:
b7:03:d8:b6:e6:11:df:2c:80:a0:dd:4c:37:bc:35:
8a:34:5c:85:a8:21:0c:d1:b3:79:70:4b:1e:84:bf:
f1:3f:48:83:0f:63:fc:44:c3:8e:73:c9:8f:bd:23:
ca:c7:91:69:5b:68:53:f6:b4:81:2d:44:57:a0:5a:
a5:7b:a3:f2:ad:a4:41:4f:b4:15:f9:59:fa:d3:b7:
2f:1a:1d:4e:b0:c4:7e:ee:a2:42:ae:0b:7c:b1:e1:
fc:af:65:5f:6a:6a:7b:25:55:cc:f0:14:b7:00:50:
bc:8f:a6:41:87:ac:cd:22:91:ce:34:c8:c3:08:e5:
74:be:42:9d:57:b4:b0:0e:54:41:d4:54:32:fb:e1:
97:a8:00:f3:7b:91:89:ec:3a:d6:e2:fc:20:61:13:
95:f1:c5:31:5b:82:e9:6d:b8:33:85:6c:d6:3e:95:
91:56:7e:34:9e:39:d1:db:06:23:93:ea:9f:d5:3c:
c8:0d:33:d5:20:d9:61:49:7b:bc:ab:80:3f:86:4c:
14:a6:24:ce:71:fd:3c:85:0e:f1:c4:27:d7:fe:4c:
d3:a2:b1:a6:cd:57:29:51:78:8a:a7:b4:f9:04:1b:
55:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:DD:99:86:DA:D9:AE:3B:C5:80:D1:0D:3B:93:DB:99:E8:02:EF:F8
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137382e302f32332d3233203d3e2035353131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.178.0/23
Signature Algorithm: sha256WithRSAEncryption
92:c1:a2:23:e3:70:24:9e:1a:26:2a:96:56:f1:28:33:22:b1:
b3:ba:a4:48:84:a0:2a:99:26:77:bd:a6:91:74:4e:92:ad:35:
97:48:24:9c:71:05:67:27:9b:1e:98:b3:51:59:bf:8d:6c:3e:
6b:26:3a:19:c1:52:b9:00:d5:22:0b:32:76:30:5f:15:5e:ea:
62:9a:e1:57:12:39:78:2c:5e:cc:dd:46:2e:07:5b:cd:0b:06:
df:43:a5:47:e5:37:b8:e1:bc:76:4c:e7:3d:ee:d5:ee:80:e4:
54:e3:8c:c2:b8:78:7e:b0:b8:69:fe:a2:58:6e:de:f6:ab:63:
fd:00:8f:44:80:ec:33:e5:82:bf:52:6b:c2:73:61:5b:af:e2:
24:2d:a5:14:4d:42:91:41:d0:f2:21:14:f4:00:97:d9:00:46:
eb:4a:b4:40:09:2b:be:8b:b4:f1:c8:ed:2c:ff:7a:18:8c:28:
20:0f:f4:de:bf:91:f2:1a:29:b8:12:1c:ec:96:cb:f6:dd:3d:
63:05:7e:c8:cc:29:c8:0f:47:9f:23:5d:91:be:ee:a8:eb:4e:
ee:33:50:b8:79:2e:80:b4:cb:50:c1:a0:93:44:64:de:27:be:
28:06:c0:56:16:4c:53:6e:a4:cd:0b:4f:ed:11:32:48:d5:5f:
61:cb:e6:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:22:53 2026 by rpki-client