Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138322e302f32342d3234203d3e20323033353337.roa
File: 3130392e3131302e3138322e302f32342d3234203d3e20323033353337.roa (raw, json)
Hash identifier: MNa4XLY1IP3dVHDccoTKhsCXBj+LFnyfD4EudZyQFE4=
Subject key identifier: 00:4E:D7:38:15:F7:11:24:F4:C0:F0:04:13:C0:6E:46:58:59:A8:28
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 4FA527E4FF28E6D0331AA6F4C65B34F6B3536CD3
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138322e302f32342d3234203d3e20323033353337.roa
Signing time: Wed 18 Feb 2026 18:14:54 +0000
ROA not before: Wed 18 Feb 2026 18:09:54 +0000
ROA not after: Wed 17 Feb 2027 18:14:54 +0000
asID: 203537
IP address blocks: 109.110.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:a5:27:e4:ff:28:e6:d0:33:1a:a6:f4:c6:5b:34:f6:b3:53:6c:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Feb 18 18:09:54 2026 GMT
Not After : Feb 17 18:14:54 2027 GMT
Subject: CN=004ED73815F71124F4C0F00413C06E465859A828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:76:eb:84:4a:f8:9f:58:93:72:39:33:0c:9a:
be:53:e0:bd:0a:99:f1:4f:d2:93:0f:91:b9:cb:d2:
b2:36:31:08:59:a7:37:b4:fe:df:ea:73:23:0b:1a:
d3:ef:54:c4:d3:40:ba:70:4d:ce:d4:6b:3d:4a:23:
23:89:86:63:f3:2c:61:76:5d:90:8b:02:57:a1:dc:
7f:62:f9:32:07:da:80:04:12:74:1f:cf:8e:ad:f7:
f1:a5:2e:3f:2a:60:3d:d2:9b:f9:be:da:ac:85:f7:
a9:a5:a9:f8:8c:f2:1f:d6:57:42:6d:c4:19:79:e3:
95:d6:76:81:d9:64:75:61:4e:3d:4a:5e:9e:9d:8b:
fe:d2:fd:44:5c:ce:be:f9:38:67:49:3d:8e:da:1e:
1e:4d:2d:ec:05:e9:bc:af:cf:66:7c:e8:fd:9f:9b:
66:95:8c:59:92:53:76:7d:a7:09:d5:8b:ce:3b:55:
56:5f:8e:de:84:17:a5:a5:ce:7b:b2:31:dd:b9:04:
4a:09:0a:12:a8:82:e9:2e:77:91:78:a8:42:db:60:
d1:67:64:23:02:17:0f:1e:82:46:c6:1e:02:2b:31:
c8:b1:10:96:eb:10:3c:ed:d0:32:c5:0e:96:e3:47:
aa:51:03:b9:d0:e0:b4:32:14:8b:59:4f:ab:3e:f1:
d0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4E:D7:38:15:F7:11:24:F4:C0:F0:04:13:C0:6E:46:58:59:A8:28
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138322e302f32342d3234203d3e20323033353337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.182.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:4d:77:07:43:94:3a:b0:4c:6d:8c:af:ec:f2:8e:77:02:c9:
13:9d:f7:05:29:c9:ca:ea:be:37:6c:82:68:da:e2:7f:6b:57:
39:d6:93:ea:e9:ce:ce:f9:e5:34:d2:4f:fd:dc:79:f4:00:1b:
4b:ff:e9:9d:a1:e5:cc:ea:15:5a:5e:fe:1b:8a:cc:0e:95:5a:
e3:4d:54:5e:fb:71:a3:72:85:cb:95:48:ff:f1:44:67:b8:76:
f3:8c:6c:0a:a2:dc:a7:60:f3:7a:6d:76:c8:f9:d8:9a:3e:89:
38:f3:0d:11:c3:e7:05:a7:68:3d:68:e8:33:47:c1:02:1a:75:
e3:5b:e9:d8:60:45:bb:f3:7b:4c:0d:9c:54:80:b3:ba:ec:f0:
15:90:02:a1:16:03:6e:dc:3e:f7:d7:f5:05:85:43:b0:db:22:
f4:94:58:a3:ed:9a:ca:2b:c1:00:2f:9a:be:a7:73:65:d4:1b:
8f:82:da:24:e2:85:06:c5:df:70:63:df:91:c6:9f:38:9f:7f:
22:aa:9b:d8:de:48:c5:ee:1c:18:af:18:51:fa:0d:5f:36:a8:
f0:c2:af:4b:31:70:05:51:7a:69:3d:78:a0:f7:f8:41:5c:c4:
04:65:bd:7e:02:23:9d:7f:b9:fe:b6:25:da:03:9b:7a:14:e6:
5a:c4:b1:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:24:45 2026 by rpki-client