Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e20313530323933.roa
File: 3130392e3131302e3138332e302f32342d3234203d3e20313530323933.roa (raw, json)
Hash identifier: G+rbWLS6li8+UcOMmvYecXhoytLhGuz1o08XnQCYE6w=
Subject key identifier: A3:F0:9F:BA:9E:94:42:BC:6E:D0:D1:D4:C0:64:41:90:38:BB:80:A1
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 6F2B228FA4FE9491C5D17BEA9246C4B30D86A81E
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e20313530323933.roa
Signing time: Wed 08 Apr 2026 09:19:06 +0000
ROA not before: Wed 08 Apr 2026 09:14:06 +0000
ROA not after: Wed 07 Apr 2027 09:19:06 +0000
asID: 150293
IP address blocks: 109.110.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 17:05:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:2b:22:8f:a4:fe:94:91:c5:d1:7b:ea:92:46:c4:b3:0d:86:a8:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Apr 8 09:14:06 2026 GMT
Not After : Apr 7 09:19:06 2027 GMT
Subject: CN=A3F09FBA9E9442BC6ED0D1D4C064419038BB80A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2f:c0:eb:28:a0:16:89:ad:cf:33:8b:b8:80:
5d:47:80:f3:fc:0e:39:ad:ad:fb:e5:ca:90:c9:39:
3d:5f:d1:07:b8:6b:25:52:4a:09:9a:b5:f0:78:af:
c3:d0:da:3f:a7:f8:fc:4d:bf:1a:c8:ab:ec:77:9a:
61:38:c4:b8:77:ba:1b:a2:89:14:f5:87:c0:12:5f:
86:e1:f5:d1:79:31:b2:19:ad:e9:e2:87:2b:0b:05:
20:82:e2:25:c7:9f:e5:cd:a3:f4:38:6c:90:a4:16:
80:09:e0:5b:b3:f4:ae:65:6e:69:74:89:aa:d0:70:
08:33:bc:22:13:f6:f9:1a:56:05:0e:08:e8:b7:71:
3e:0d:90:2d:5e:87:bf:ae:b5:ba:5f:73:46:cf:08:
db:3e:24:7f:02:5b:e3:80:b0:2e:84:8b:b1:cf:49:
a0:85:b6:9f:ee:17:d8:ef:95:f8:78:fd:bf:1b:aa:
26:0d:54:2e:a6:42:83:3f:31:a7:71:85:6d:17:94:
e9:db:06:d1:59:05:e4:09:e7:ed:8a:3f:26:2a:4c:
40:31:25:ea:05:a0:e9:0b:07:15:57:22:9f:0b:a1:
9e:87:44:e4:bb:c7:e5:b3:cb:85:fd:bb:64:71:ac:
5b:be:70:48:9b:97:1a:4c:b7:a5:47:51:01:03:1b:
ea:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F0:9F:BA:9E:94:42:BC:6E:D0:D1:D4:C0:64:41:90:38:BB:80:A1
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e20313530323933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.183.0/24
Signature Algorithm: sha256WithRSAEncryption
70:af:e7:7c:81:bf:85:d1:a2:39:a6:a1:cd:73:bb:f1:62:65:
81:cf:d8:15:74:2b:ba:d5:eb:0c:5d:fc:6a:e3:30:d6:ab:ce:
4a:c4:5c:62:ac:44:e3:3b:9d:ab:14:aa:24:a3:60:34:37:53:
3e:94:2c:73:98:e9:c9:d8:be:97:f6:f4:6d:65:f1:70:32:7e:
39:de:6c:3b:fe:05:df:e8:1e:6b:0e:9e:19:b0:1d:56:cc:21:
71:32:39:81:d4:d9:b6:a9:1d:54:a1:87:af:e4:8f:35:5c:a6:
bc:51:e6:a7:59:fb:82:42:3b:28:56:58:53:3b:9c:74:62:d6:
a2:91:fd:56:0e:84:dd:a7:b4:ed:32:e3:78:b7:18:d0:d5:74:
d4:d0:bb:dc:01:82:ea:56:a5:c7:ed:b8:64:0e:f9:31:81:bd:
b2:04:78:f2:50:06:93:49:ed:1c:2f:11:e5:37:3d:e7:63:0b:
c5:3b:71:3b:d7:34:da:6a:d5:88:8a:e0:7b:be:04:89:c8:26:
d1:c1:56:5d:bc:d3:bf:62:d1:73:97:b1:fb:c3:83:f9:21:1c:
31:5d:69:f3:e6:19:d0:93:5b:af:3c:45:7e:b0:af:9c:2b:79:
f3:08:79:43:ed:79:01:f8:51:10:93:7c:3a:21:d8:ba:d5:65:
73:72:18:5d
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUbysij6T+lJHF0XvqkkbEsw2GqB4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNjA0MDgwOTE0MDZaFw0yNzA0MDcwOTE5MDZaMDMxMTAvBgNV
BAMTKEEzRjA5RkJBOUU5NDQyQkM2RUQwRDFENEMwNjQ0MTkwMzhCQjgwQTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzL8DrKKAWia3PM4u4gF1HgPP8
DjmtrfvlypDJOT1f0Qe4ayVSSgmatfB4r8PQ2j+n+PxNvxrIq+x3mmE4xLh3uhui
iRT1h8ASX4bh9dF5MbIZrenihysLBSCC4iXHn+XNo/Q4bJCkFoAJ4Fuz9K5lbml0
iarQcAgzvCIT9vkaVgUOCOi3cT4NkC1eh7+utbpfc0bPCNs+JH8CW+OAsC6Ei7HP
SaCFtp/uF9jvlfh4/b8bqiYNVC6mQoM/MadxhW0XlOnbBtFZBeQJ5+2KPyYqTEAx
JeoFoOkLBxVXIp8LoZ6HROS7x+Wzy4X9u2RxrFu+cEiblxpMt6VHUQEDG+pBAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUo/Cfup6UQrxu0NHUwGRBkDi7gKEwHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzMDM5MmUzMTMxMzAyZTMx
MzgzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzkzMy5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAG1utzANBgkqhkiG9w0BAQsFAAOCAQEAcK/nfIG/hdGiOaahzXO78WJlgc/Y
FXQrutXrDF38auMw1qvOSsRcYqxE4zudqxSqJKNgNDdTPpQsc5jpydi+l/b0bWXx
cDJ+Od5sO/4F3+geaw6eGbAdVswhcTI5gdTZtqkdVKGHr+SPNVymvFHmp1n7gkI7
KFZYUzucdGLWopH9Vg6E3ae07TLjeLcY0NV01NC73AGC6lalx+24ZA75MYG9sgR4
8lAGk0ntHC8R5Tc952MLxTtxO9c02mrViIrge74Eicgm0cFWXbzTv2LRc5ex+8OD
+SEcMV1p8+YZ0JNbrzxFfrCvnCt58wh5Q+15AfhREJN8OiHYutVlc3IYXQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 03:38:24 2026 by rpki-client