Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131332e3231322e302f32342d3234203d3e203631333137.roa
File: 39332e3131332e3231322e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: CUK9BLYWAoY9RH/0vBT8OlenT5Pgl+QBvak8dy0OD58=
Subject key identifier: 60:68:D0:35:17:76:88:9C:13:B8:26:08:16:89:77:37:B2:B1:99:1C
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 7A3A8A9DA18EF22504322FF7CA158BE20385119A
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131332e3231322e302f32342d3234203d3e203631333137.roa
Signing time: Wed 27 May 2026 13:47:17 +0000
ROA not before: Wed 27 May 2026 13:42:17 +0000
ROA not after: Wed 26 May 2027 13:47:17 +0000
asID: 61317
IP address blocks: 93.113.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 19:24:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:3a:8a:9d:a1:8e:f2:25:04:32:2f:f7:ca:15:8b:e2:03:85:11:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: May 27 13:42:17 2026 GMT
Not After : May 26 13:47:17 2027 GMT
Subject: CN=6068D0351776889C13B8260816897737B2B1991C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9a:25:16:14:12:08:1d:29:1a:81:94:ee:7d:
10:22:c5:b0:3f:05:9e:31:56:8a:e0:c1:b5:15:96:
9c:82:28:f4:7f:27:88:7d:b4:fa:7c:d2:c1:35:c6:
42:79:22:d2:99:06:ec:c7:c1:e1:d3:59:e7:20:30:
b3:b8:2a:a7:f2:7d:b8:2d:81:b4:f9:90:d1:c5:3f:
25:62:f9:57:ed:e7:6b:ae:4b:54:d6:e3:57:c2:12:
da:c5:ce:45:6b:7d:68:a1:c1:5c:ad:1a:a7:94:7a:
45:87:87:2d:63:f9:46:e9:dc:57:a8:01:1b:61:11:
bf:54:b4:f7:b2:9e:f8:d5:ff:ac:e3:3d:80:0d:f4:
a2:52:80:ea:9f:fd:6c:dd:43:72:32:40:2b:c7:d9:
0a:79:0e:49:e7:f2:64:50:19:82:c5:97:92:47:89:
68:4d:d2:93:ff:b3:e4:7c:73:c8:8a:28:49:a2:ba:
b9:a4:3d:d0:0f:b9:63:c9:c9:bd:84:09:c5:4f:a4:
5d:13:9b:dc:76:b5:92:cd:64:6f:41:f0:97:58:c0:
ce:7d:d6:fc:c7:a9:e4:4b:2a:0f:52:4d:d5:72:ef:
d2:6b:12:56:b0:aa:e3:fc:1a:01:7c:c6:78:ac:a4:
dd:aa:78:64:34:37:e3:98:0d:3e:48:c8:8c:25:b4:
16:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:68:D0:35:17:76:88:9C:13:B8:26:08:16:89:77:37:B2:B1:99:1C
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131332e3231322e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.212.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:15:ad:60:c3:9b:79:e9:93:0b:03:04:f8:d4:3e:9d:21:0a:
5b:79:df:7a:32:b6:04:63:f0:65:71:55:d4:4f:65:41:9f:85:
41:1d:2f:ef:3b:42:e9:97:64:ef:7e:92:93:af:dd:be:d4:fd:
55:30:c0:c9:ae:ac:11:30:c4:4a:81:67:99:be:c3:45:4c:60:
77:ca:ed:cd:33:41:8e:d2:aa:15:34:23:81:43:e6:d2:d3:80:
3e:cc:25:bc:09:70:85:3b:52:dd:f8:4f:b6:8c:0e:43:14:c0:
94:a1:a1:eb:57:96:13:6d:a8:f5:6c:7e:a3:67:4e:6b:19:0a:
21:84:ed:0a:77:09:17:1b:f4:e1:f5:58:bb:35:9d:47:fb:e0:
ca:84:c2:c3:ea:bd:c4:7f:93:62:e5:e5:c1:c1:5c:cc:36:af:
46:90:9b:c8:c0:cc:ad:c7:bc:84:db:62:3b:cd:fa:ca:d8:d2:
25:5a:79:50:62:2a:e2:fd:b9:8b:49:5c:5d:45:62:30:65:1c:
3b:da:60:3c:ed:39:d7:22:45:62:54:3d:fc:3f:44:ae:f4:57:
48:f9:17:e4:22:84:ec:60:ea:90:a7:fa:b1:2f:e0:8c:e2:3d:
4c:73:76:73:2d:ce:7b:8b:87:17:83:42:93:6a:b9:fe:27:d4:
4f:55:9d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:56:41 2026 by rpki-client