Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138372e302f32342d3234203d3e20323030303137.roa
File: 3130392e3131302e3138372e302f32342d3234203d3e20323030303137.roa (raw, json)
Hash identifier: 36n/Pv+myEsWuaUJW1F2Cr0Cl6wG89089ED1qjDtP+8=
Subject key identifier: C6:6A:DD:7A:E7:95:35:BC:C3:93:DC:AD:96:07:BC:60:10:CB:BF:8D
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 6A61007271A0949BD6D20C1AAFE6578304E2CA17
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138372e302f32342d3234203d3e20323030303137.roa
Signing time: Wed 01 Apr 2026 13:46:57 +0000
ROA not before: Wed 01 Apr 2026 13:41:57 +0000
ROA not after: Wed 31 Mar 2027 13:46:57 +0000
asID: 200017
IP address blocks: 109.110.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:61:00:72:71:a0:94:9b:d6:d2:0c:1a:af:e6:57:83:04:e2:ca:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Apr 1 13:41:57 2026 GMT
Not After : Mar 31 13:46:57 2027 GMT
Subject: CN=C66ADD7AE79535BCC393DCAD9607BC6010CBBF8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:64:ef:ca:c7:0e:15:a0:91:1a:3c:7e:f1:43:
ec:fa:60:76:cc:b3:19:13:9c:06:b7:a8:cb:17:8e:
33:49:25:45:d8:6c:1e:60:a2:ea:d6:d7:3b:a8:bd:
ce:8b:05:d1:9e:f6:fc:51:d3:63:ba:ba:e4:40:7a:
9b:15:f1:c3:ca:5f:30:28:e7:5f:95:64:52:e0:50:
12:20:a2:c7:8d:9d:90:ca:72:36:ec:6b:66:3b:e4:
c4:49:f9:46:d4:e2:70:93:cd:7e:2c:dc:a7:ab:77:
3b:28:cb:ad:72:62:8d:aa:92:32:97:b9:d0:6e:5b:
8c:8b:d2:6f:dc:c2:64:83:b7:ff:6b:b2:4a:63:d3:
d4:90:83:b6:e2:25:8e:c9:ff:e1:ce:40:32:7b:6a:
00:87:66:15:30:dc:c4:ec:74:46:50:90:63:fa:3e:
c1:ad:dd:f6:19:c9:71:8b:06:95:8f:41:5a:19:c8:
41:2c:77:ec:d4:3d:19:d5:3d:a9:44:dc:1d:9c:9b:
bc:a1:e1:fc:c6:14:67:9c:3f:04:a1:34:32:dc:97:
f5:93:5d:ce:05:8b:45:40:fb:a9:e0:67:a8:f5:22:
62:2c:0a:60:7d:3b:09:ff:1a:da:ec:12:e1:95:81:
54:79:71:72:f9:7e:0f:9e:78:cc:72:6a:54:4b:31:
16:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:6A:DD:7A:E7:95:35:BC:C3:93:DC:AD:96:07:BC:60:10:CB:BF:8D
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138372e302f32342d3234203d3e20323030303137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.187.0/24
Signature Algorithm: sha256WithRSAEncryption
60:dd:3f:fa:88:31:f9:81:55:d0:61:e6:61:b1:2a:c6:06:00:
6b:a2:97:86:e0:1a:6b:bc:39:1f:a8:53:a8:c5:5a:22:08:42:
bd:12:c2:92:b4:bd:8d:3a:40:84:83:94:0e:b4:e2:6c:c9:72:
78:2f:5e:79:14:8c:0a:12:17:99:d6:c6:39:09:9c:f8:ba:68:
24:ab:20:4d:a6:29:74:3e:1a:d2:c5:bb:a5:2d:7b:a6:6a:9b:
d9:0d:df:b2:17:c7:88:b6:8a:22:69:eb:a8:60:3a:a7:44:e5:
b2:1f:8c:f2:1a:dd:c7:9c:62:2d:b0:32:61:d4:b5:c4:b7:8d:
27:8f:75:67:dc:83:ef:71:6b:11:ed:a0:f1:04:9c:0f:94:2d:
e3:96:94:52:b5:4b:be:7e:19:22:27:5f:ba:8e:b0:d2:f4:4d:
0d:d9:b0:54:63:80:b4:63:be:1f:8a:28:30:9e:0f:b9:6d:ac:
26:9a:5f:6f:d2:f8:30:1d:57:89:6e:bf:61:1a:9d:df:cb:55:
b6:f3:ce:34:72:fb:67:18:14:46:be:d0:5d:ae:7b:ec:fc:bb:
ef:8c:b5:82:1e:90:c2:c5:95:c6:3a:68:f2:b1:de:1b:ee:d9:
37:99:61:e3:cc:9c:a3:30:c5:34:ff:d5:69:9a:51:86:da:4d:
8a:75:95:02
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUamEAcnGglJvW0gwar+ZXgwTiyhcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNjA0MDExMzQxNTdaFw0yNzAzMzExMzQ2NTdaMDMxMTAvBgNV
BAMTKEM2NkFERDdBRTc5NTM1QkNDMzkzRENBRDk2MDdCQzYwMTBDQkJGOEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzZO/Kxw4VoJEaPH7xQ+z6YHbM
sxkTnAa3qMsXjjNJJUXYbB5gourW1zuovc6LBdGe9vxR02O6uuRAepsV8cPKXzAo
51+VZFLgUBIgoseNnZDKcjbsa2Y75MRJ+UbU4nCTzX4s3Kerdzsoy61yYo2qkjKX
udBuW4yL0m/cwmSDt/9rskpj09SQg7biJY7J/+HOQDJ7agCHZhUw3MTsdEZQkGP6
PsGt3fYZyXGLBpWPQVoZyEEsd+zUPRnVPalE3B2cm7yh4fzGFGecPwShNDLcl/WT
Xc4Fi0VA+6ngZ6j1ImIsCmB9Own/GtrsEuGVgVR5cXL5fg+eeMxyalRLMRYtAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUxmrdeueVNbzDk9ytlge8YBDLv40wHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzMDM5MmUzMTMxMzAyZTMx
MzgzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzMDMwMzEzNy5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAG1uuzANBgkqhkiG9w0BAQsFAAOCAQEAYN0/+ogx+YFV0GHmYbEqxgYAa6KX
huAaa7w5H6hTqMVaIghCvRLCkrS9jTpAhIOUDrTibMlyeC9eeRSMChIXmdbGOQmc
+LpoJKsgTaYpdD4a0sW7pS17pmqb2Q3fshfHiLaKImnrqGA6p0Tlsh+M8hrdx5xi
LbAyYdS1xLeNJ491Z9yD73FrEe2g8QScD5Qt45aUUrVLvn4ZIidfuo6w0vRNDdmw
VGOAtGO+H4ooMJ4PuW2sJppfb9L4MB1XiW6/YRqd38tVtvPONHL7ZxgURr7QXa57
7Py774y1gh6QwsWVxjpo8rHeG+7ZN5lh48ycozDFNP/VaZpRhtpNinWVAg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:59:31 2026 by rpki-client