Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137372e302f32342d3234203d3e203537303433.roa
File: 3138352e3136322e3137372e302f32342d3234203d3e203537303433.roa (raw, json)
Hash identifier: +c1TTk5Rm2OMKD2o6akHXeEqfUk1ENZ3MyDf0vJnJ9o=
Subject key identifier: 8E:BD:C5:EB:90:CE:CF:8E:86:DE:84:3E:57:AB:5A:53:38:A7:41:5F
Certificate issuer: /CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Certificate serial: 01208C4A38F05ECE3E45517FEC512B2523C203E2
Authority key identifier: E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137372e302f32342d3234203d3e203537303433.roa
Signing time: Thu 26 Feb 2026 15:43:47 +0000
ROA not before: Thu 26 Feb 2026 15:38:47 +0000
ROA not after: Thu 25 Feb 2027 15:43:47 +0000
asID: 57043
IP address blocks: 185.162.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:20:8c:4a:38:f0:5e:ce:3e:45:51:7f:ec:51:2b:25:23:c2:03:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Validity
Not Before: Feb 26 15:38:47 2026 GMT
Not After : Feb 25 15:43:47 2027 GMT
Subject: CN=8EBDC5EB90CECF8E86DE843E57AB5A5338A7415F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:0a:5b:1c:c7:47:64:2e:1d:3e:66:80:49:98:
87:f9:d6:59:7b:c2:7a:e6:e0:32:76:4f:9c:ca:44:
eb:a8:ff:3d:12:85:c3:a1:7c:fb:13:05:c3:28:fc:
f4:cb:7e:1f:cb:3d:2c:96:76:a4:1d:31:c0:99:72:
1a:3d:83:3a:ab:f3:15:b2:6e:5c:1c:ef:0d:bb:41:
d6:27:6d:7b:1f:32:0e:dc:51:b7:68:2a:d7:b5:0b:
d4:ca:fc:09:48:54:ae:50:9c:00:ce:06:a1:9e:62:
7d:df:7d:2a:b7:72:3d:ee:99:0f:d8:24:8a:ee:23:
58:98:af:d0:43:82:b7:84:10:fe:b7:65:20:23:3c:
1e:c1:a8:03:ce:01:02:e4:49:5f:70:c2:bf:8e:a7:
bf:03:02:1e:fe:24:af:0f:42:b0:53:3b:7a:f3:ba:
79:c0:cb:65:6d:17:78:a0:30:27:3f:20:be:4a:f4:
98:62:b8:0e:39:a3:3b:8e:02:b9:3f:a2:88:11:c7:
61:2e:c8:f1:99:e9:b2:67:fe:48:7c:2a:41:e1:ad:
7a:e6:3f:a6:0a:79:4b:34:0d:ab:d1:b8:26:fa:c9:
7f:f2:01:d2:bf:0d:8c:1b:a7:5f:6b:a0:43:a1:3f:
4a:cf:09:a6:e8:b3:26:13:ec:f6:88:7b:2f:3e:2d:
7a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:BD:C5:EB:90:CE:CF:8E:86:DE:84:3E:57:AB:5A:53:38:A7:41:5F
X509v3 Authority Key Identifier:
keyid:E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137372e302f32342d3234203d3e203537303433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.177.0/24
Signature Algorithm: sha256WithRSAEncryption
65:70:03:eb:76:5a:52:85:63:79:cb:06:f2:9b:cf:ac:3a:17:
80:86:10:89:60:2f:d3:51:d1:ae:57:7d:31:c2:ac:0e:75:79:
d3:64:3a:48:05:15:73:35:a2:44:33:bb:e7:91:b4:03:0a:8b:
33:00:3a:f9:48:2d:44:6a:d0:ec:7c:b1:1e:4d:ac:8e:6e:b3:
6a:6a:dc:cb:5c:f9:d4:8d:d4:44:8e:e5:b4:9e:b8:9f:5a:6d:
b4:40:06:54:05:00:2c:e5:fa:f5:65:75:c3:0b:0c:1c:31:2c:
a4:23:5a:c1:7b:f1:69:51:34:20:3b:5b:f3:60:f5:a9:97:6f:
00:4c:64:ea:6e:25:21:ac:37:c0:4f:59:7d:c0:0e:08:03:e7:
d2:9c:59:67:37:d3:bd:d5:b0:01:9a:c1:ac:5b:59:e2:b8:f4:
e3:6f:9f:e8:d2:85:ad:77:35:5e:76:61:d7:0a:c5:58:59:1d:
ff:93:34:e4:5b:77:cd:f2:7c:d3:b9:65:96:ce:45:b5:ee:c1:
cc:a9:48:ea:08:ac:9a:55:15:0e:5a:a3:f9:15:2e:d7:66:84:
16:43:15:99:98:77:e4:1f:fd:ff:ea:03:88:21:fb:0e:30:21:
71:e2:59:21:8a:bd:4b:c2:cc:1d:bd:83:a5:70:44:6b:1e:dc:
3c:00:31:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 22:44:47 2026 by rpki-client