Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/0/3136372e3130342e35352e302f32342d3234203d3e20323135323936.roa
File: 3136372e3130342e35352e302f32342d3234203d3e20323135323936.roa (raw, json)
Hash identifier: SV9ucGr+4h+fuaELn2IQUJABWEK0Rjvz/iTGykXuEuY=
Subject key identifier: E4:9F:ED:45:B5:18:C7:09:C8:0F:68:09:4A:69:59:FC:EB:39:82:E7
Certificate issuer: /CN=5cdc04bb23eaa4cecc791dfe04bb028b7e797b68
Certificate serial: 7EE498AC82C487B77CAAB74A09C28E4DFA6D27E7
Authority key identifier: 5C:DC:04:BB:23:EA:A4:CE:CC:79:1D:FE:04:BB:02:8B:7E:79:7B:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNwEuyPqpM7MeR3-BLsCi355e2g.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/0/3136372e3130342e35352e302f32342d3234203d3e20323135323936.roa
Signing time: Wed 08 Apr 2026 20:36:32 +0000
ROA not before: Wed 08 Apr 2026 20:31:32 +0000
ROA not after: Wed 07 Apr 2027 20:36:32 +0000
asID: 215296
IP address blocks: 167.104.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/0/5CDC04BB23EAA4CECC791DFE04BB028B7E797B68.crl
rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/0/5CDC04BB23EAA4CECC791DFE04BB028B7E797B68.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNwEuyPqpM7MeR3-BLsCi355e2g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:43:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:e4:98:ac:82:c4:87:b7:7c:aa:b7:4a:09:c2:8e:4d:fa:6d:27:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cdc04bb23eaa4cecc791dfe04bb028b7e797b68
Validity
Not Before: Apr 8 20:31:32 2026 GMT
Not After : Apr 7 20:36:32 2027 GMT
Subject: CN=E49FED45B518C709C80F68094A6959FCEB3982E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c6:6d:35:6f:4a:9a:c2:b5:df:5a:94:e6:a9:
2c:bb:23:f8:95:3e:b5:e5:60:1b:1a:cb:35:36:c0:
3e:47:cb:3a:07:06:d4:0e:8f:bb:51:87:40:3d:12:
41:a0:35:dd:8e:b1:37:ba:81:02:89:2b:31:31:7a:
05:ec:71:72:40:46:5e:de:7f:02:9a:24:1d:63:4f:
82:dd:29:42:89:52:95:7e:6d:00:5f:e3:a4:3a:2a:
93:d4:cc:be:17:ed:57:53:06:98:52:d2:b7:63:de:
12:02:07:04:3f:c0:a3:ec:8d:35:b1:23:93:00:99:
03:35:c1:e4:2c:e2:38:1e:d0:1a:ab:98:5f:96:39:
4b:7c:b2:d1:69:f3:90:68:50:71:9d:d3:ac:a6:78:
19:ce:44:3e:9a:84:40:74:76:55:31:34:e3:a8:cb:
99:2a:a5:da:ad:e2:ee:7e:4f:a7:f9:2b:40:4b:08:
ae:c4:c3:23:d8:6a:f3:57:d1:00:a9:39:c2:a1:09:
85:ce:69:e5:13:2a:7d:6f:57:e6:16:45:c5:31:c9:
de:ef:54:e2:d4:d9:ab:4a:20:09:3b:4e:80:d1:5a:
22:1c:f2:fe:f8:1c:90:91:64:19:79:92:09:21:c3:
b1:40:a7:08:57:b7:1e:d9:08:1e:f4:65:0e:af:86:
e2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:9F:ED:45:B5:18:C7:09:C8:0F:68:09:4A:69:59:FC:EB:39:82:E7
X509v3 Authority Key Identifier:
keyid:5C:DC:04:BB:23:EA:A4:CE:CC:79:1D:FE:04:BB:02:8B:7E:79:7B:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/0/5CDC04BB23EAA4CECC791DFE04BB028B7E797B68.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNwEuyPqpM7MeR3-BLsCi355e2g.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/0/3136372e3130342e35352e302f32342d3234203d3e20323135323936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.104.55.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:db:be:f0:1d:ee:1a:fc:06:87:75:fb:31:c4:61:fb:4e:63:
f6:47:62:c6:f5:dc:9e:8f:36:91:80:46:c3:51:8b:dd:a1:c7:
a4:78:da:46:15:81:42:6e:01:dc:c9:a4:0e:a9:c5:d8:76:37:
e6:84:04:17:1c:21:53:06:04:99:fd:d7:d2:31:87:dd:28:72:
91:55:8b:0f:52:e8:eb:97:99:bd:59:54:67:9f:e3:7c:aa:df:
18:2d:68:44:31:e1:bf:89:43:37:c7:88:4f:6f:0d:76:72:85:
3a:b7:46:73:de:e0:8c:44:5b:0e:9b:a0:dc:29:f5:30:86:d7:
8a:d8:8f:18:d4:a6:6b:8e:80:0b:c7:77:82:dd:e8:85:00:2a:
27:0c:44:0a:b7:7c:64:35:61:ae:e9:20:cb:79:46:65:c6:aa:
54:68:1b:00:8e:14:f8:0f:06:88:bf:dd:fc:c2:8b:07:fb:a0:
d9:0d:d9:30:f4:e6:00:27:41:e0:0b:32:08:3d:e8:6d:60:ce:
75:da:bc:85:92:9a:f9:c5:7b:85:3c:08:21:08:b6:85:50:14:
ed:30:f7:8d:05:b2:61:0c:f7:87:cf:7f:f1:08:5f:c0:ab:17:
04:24:e0:f5:aa:b8:f1:e3:d9:83:16:fc:94:d3:42:e1:01:1d:
44:4e:2f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:42:30 2026 by rpki-client