Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5df7bba-6d8c-49e9-bbe3-c525f53d4206/0/3139342e36322e3131342e302f32342d3234203d3e20323133323739.roa
File: 3139342e36322e3131342e302f32342d3234203d3e20323133323739.roa (raw, json)
Hash identifier: Id9Zf8+JCeW09y5eLtPMq8sTxFHunLxKCRu7r423igg=
Subject key identifier: 75:6E:29:27:BC:11:4D:12:43:30:D6:A7:3B:A0:98:B0:BD:93:F7:34
Certificate issuer: /CN=0d056bac6b22fd1ed0812c4c73ff09a59a409a6e
Certificate serial: 76F7081E9092E2315F1FC2CFC388DEEF47EBECB4
Authority key identifier: 0D:05:6B:AC:6B:22:FD:1E:D0:81:2C:4C:73:FF:09:A5:9A:40:9A:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQVrrGsi_R7QgSxMc_8JpZpAmm4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5df7bba-6d8c-49e9-bbe3-c525f53d4206/0/3139342e36322e3131342e302f32342d3234203d3e20323133323739.roa
Signing time: Fri 17 Apr 2026 13:33:27 +0000
ROA not before: Fri 17 Apr 2026 13:28:27 +0000
ROA not after: Fri 16 Apr 2027 13:33:27 +0000
asID: 213279
IP address blocks: 194.62.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5df7bba-6d8c-49e9-bbe3-c525f53d4206/0/0D056BAC6B22FD1ED0812C4C73FF09A59A409A6E.crl
rsync://rsync.paas.rpki.ripe.net/repository/c5df7bba-6d8c-49e9-bbe3-c525f53d4206/0/0D056BAC6B22FD1ED0812C4C73FF09A59A409A6E.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQVrrGsi_R7QgSxMc_8JpZpAmm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 08:22:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:f7:08:1e:90:92:e2:31:5f:1f:c2:cf:c3:88:de:ef:47:eb:ec:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d056bac6b22fd1ed0812c4c73ff09a59a409a6e
Validity
Not Before: Apr 17 13:28:27 2026 GMT
Not After : Apr 16 13:33:27 2027 GMT
Subject: CN=756E2927BC114D124330D6A73BA098B0BD93F734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:65:9a:14:1a:3d:22:af:4b:f5:84:0b:2c:84:
2d:64:5d:f9:e3:38:8a:4e:eb:32:d4:53:73:a0:56:
ae:6b:50:a0:73:d0:27:77:e1:11:74:eb:06:0d:9f:
5d:69:d1:50:7e:06:60:89:0e:f4:1e:b7:21:5e:69:
46:1d:ea:fe:53:17:d6:52:33:ea:87:4a:03:0a:cd:
07:0e:bb:42:1a:9f:92:9d:8c:b7:1c:50:75:de:a9:
8b:25:0f:51:73:d7:10:be:e1:01:c3:1e:12:8e:f6:
67:2e:d5:14:87:09:3b:ab:00:75:b2:ce:af:72:89:
16:cd:15:90:00:72:bb:43:dd:66:5f:55:61:cf:7d:
31:65:63:03:d0:ee:78:59:57:f8:0f:28:3c:b2:5e:
2d:6d:f9:cd:15:d3:67:0f:b4:85:92:11:64:63:a3:
98:5e:90:48:76:97:9d:f8:e1:ec:7c:32:71:64:55:
e3:48:87:be:79:e4:a2:a0:0e:af:e0:37:e2:a3:79:
fa:c6:30:d6:eb:ca:18:a8:ed:5b:28:78:30:4f:09:
ee:2b:70:c9:b6:96:03:83:15:73:51:b7:c5:d1:de:
17:40:25:7a:59:d3:b7:24:04:8a:f0:3e:d2:ef:0e:
7f:8b:5d:ae:7c:a4:39:d5:2b:7b:9d:82:cf:4a:5d:
5c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:6E:29:27:BC:11:4D:12:43:30:D6:A7:3B:A0:98:B0:BD:93:F7:34
X509v3 Authority Key Identifier:
keyid:0D:05:6B:AC:6B:22:FD:1E:D0:81:2C:4C:73:FF:09:A5:9A:40:9A:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5df7bba-6d8c-49e9-bbe3-c525f53d4206/0/0D056BAC6B22FD1ED0812C4C73FF09A59A409A6E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQVrrGsi_R7QgSxMc_8JpZpAmm4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5df7bba-6d8c-49e9-bbe3-c525f53d4206/0/3139342e36322e3131342e302f32342d3234203d3e20323133323739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.114.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:df:ce:36:2e:29:aa:c7:41:a8:ac:60:55:e1:66:92:1e:35:
cc:bc:53:17:34:8c:fc:40:99:a5:a0:b5:ea:35:49:38:e6:e2:
2e:ee:d9:64:ba:2e:7d:c4:ee:b1:36:85:94:92:73:ef:64:1e:
bb:4b:0e:7b:a0:22:09:a2:12:b2:99:3b:83:f2:90:ea:c4:4a:
ce:16:ad:b8:f8:68:d3:37:d6:b1:ba:a6:38:41:de:37:66:2a:
23:15:99:13:7b:d8:fa:8d:2e:c5:55:46:9e:c9:9e:1a:cc:f8:
0a:34:07:91:06:c4:72:b5:85:b5:fa:78:a6:77:40:2e:1c:0b:
b4:4a:d9:5a:8d:97:41:a3:40:1a:4b:19:38:6a:29:c1:8e:38:
1b:2c:76:c3:dc:ae:8e:a2:a1:89:32:5a:b6:c6:69:6f:8a:b7:
43:23:0f:68:37:83:2c:bf:22:82:67:c9:cc:2a:cc:e2:c6:88:
76:eb:b3:dd:50:c4:c8:7a:60:58:b9:24:ec:13:cd:75:94:ae:
fb:69:f6:55:33:83:70:1a:08:79:9a:b4:b9:ac:ce:76:42:be:
4d:c2:96:9e:64:a4:19:61:71:27:76:fc:52:54:9a:12:14:02:
f2:55:08:cb:a6:86:24:4b:95:1c:e9:00:bc:4a:b4:d4:ac:2e:
08:39:09:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 16:00:50 2026 by rpki-client