Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3134362e31392e35332e302f32342d3234203d3e20313532363732.roa
File: 3134362e31392e35332e302f32342d3234203d3e20313532363732.roa (raw, json)
Hash identifier: kMNRAnqn2ex5ku/KO9MIvv7GjcuVg1AMPoliCEdigOQ=
Subject key identifier: CD:55:7F:EE:CE:0D:CA:57:60:0A:E4:DD:26:BA:7C:96:62:EB:18:6A
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 4BA4F186B37209BC12CC7D77E6C16D6954BF7652
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3134362e31392e35332e302f32342d3234203d3e20313532363732.roa
Signing time: Mon 01 Jun 2026 06:47:19 +0000
ROA not before: Mon 01 Jun 2026 06:42:19 +0000
ROA not after: Mon 31 May 2027 06:47:19 +0000
asID: 152672
IP address blocks: 146.19.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 20:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:a4:f1:86:b3:72:09:bc:12:cc:7d:77:e6:c1:6d:69:54:bf:76:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Jun 1 06:42:19 2026 GMT
Not After : May 31 06:47:19 2027 GMT
Subject: CN=CD557FEECE0DCA57600AE4DD26BA7C9662EB186A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:dc:ea:d8:64:ee:d4:47:b1:15:32:6b:a4:c8:
c7:a4:44:49:c4:cb:db:84:c8:5a:82:43:c8:34:70:
1f:7d:71:aa:c9:1e:9c:58:23:1a:94:83:9a:5b:37:
42:6a:f3:2d:05:1a:7b:6f:19:e4:8e:67:a7:e3:fa:
59:c8:b2:6e:3f:8e:aa:2a:dd:4b:5e:12:f3:43:84:
3a:22:ff:56:e4:40:fe:27:4a:68:09:3e:17:83:bd:
2e:e6:2d:8d:ef:8e:4f:0c:29:04:8c:82:45:44:09:
ba:91:41:7d:75:db:1e:45:06:62:d9:d2:a7:6d:e3:
52:2a:4a:fc:54:d4:b4:05:e5:26:0a:91:6d:f9:21:
ef:54:d2:40:13:9e:a3:16:f8:ea:9f:17:7d:f1:7c:
6d:d7:f4:2b:a4:8a:94:72:84:b3:fb:c4:10:73:63:
b1:55:2b:f5:a8:27:a3:19:94:58:6a:31:f7:1f:ea:
3b:d6:1c:01:9a:08:59:7d:d6:b6:62:45:28:56:60:
dd:fe:58:ba:89:1f:36:e5:19:c7:2d:3f:e1:95:83:
ec:b8:80:a3:54:11:d6:7e:99:ff:7d:49:04:59:3b:
27:51:bf:53:c4:97:cc:46:85:bd:8c:49:e9:3d:1b:
0a:d7:52:2d:32:fc:6c:d7:ca:1a:1e:67:4b:35:f3:
ae:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:55:7F:EE:CE:0D:CA:57:60:0A:E4:DD:26:BA:7C:96:62:EB:18:6A
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3134362e31392e35332e302f32342d3234203d3e20313532363732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.53.0/24
Signature Algorithm: sha256WithRSAEncryption
26:93:cc:65:81:45:7c:21:c7:33:18:85:30:e3:26:0a:bf:06:
56:70:4a:5d:30:42:0a:05:7d:e6:2b:65:27:75:06:5e:06:51:
75:2e:b6:0a:e2:07:fe:68:d3:c8:80:3a:f3:9d:ec:ad:dc:95:
12:04:b4:51:3e:71:22:37:29:bb:5d:fc:a1:ee:62:f9:4c:c8:
10:f4:dc:b0:c2:08:bf:0b:fa:d5:2c:20:b6:58:9c:7e:c1:5c:
d2:72:8d:3a:6e:54:db:0c:eb:f8:94:ce:85:6c:6a:28:cd:2e:
93:4c:71:04:ba:88:d6:18:f1:12:a2:f9:2b:38:61:60:ca:28:
4d:24:21:94:8a:4d:e8:4a:e7:4c:e0:97:b4:e6:11:a8:52:5b:
c9:56:8d:a4:65:80:09:f7:e9:04:9a:e2:81:64:c7:d5:57:76:
72:8c:69:81:1b:e7:69:de:57:f4:22:de:51:4f:2c:36:5f:27:
51:b1:0d:d8:15:40:f4:ba:70:1b:89:c7:98:d4:17:34:2d:f4:
66:ea:e9:c6:10:99:30:62:a8:e5:3b:82:f6:04:d8:b0:3e:f4:
eb:9d:bc:d2:dc:b7:df:d8:c6:a7:da:ec:3f:e5:07:d9:c3:ee:
21:5e:17:d4:d9:f5:5b:28:cf:a2:99:b6:79:1a:3d:35:29:bc:
b0:86:8c:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:33:54 2026 by rpki-client