Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/326131333a376663303a313031303a3a2f34382d3438203d3e20323134353837.roa
File: 326131333a376663303a313031303a3a2f34382d3438203d3e20323134353837.roa (raw, json)
Hash identifier: qkAnu8n5ZwhWIiFOozTwrJIaIzyzsrR64v/E5gw6fnU=
Subject key identifier: 85:EE:F0:3D:51:31:4C:53:E9:E4:C1:D4:46:5A:E4:51:BD:93:B6:79
Certificate issuer: /CN=0177dcd7bee1190629437ca4c8ab83e3ad15c7a9
Certificate serial: 09F64AE64DE77EC01507413744239AC3A2DA5BD6
Authority key identifier: 01:77:DC:D7:BE:E1:19:06:29:43:7C:A4:C8:AB:83:E3:AD:15:C7:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXfc177hGQYpQ3ykyKuD460Vx6k.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/326131333a376663303a313031303a3a2f34382d3438203d3e20323134353837.roa
Signing time: Wed 15 Apr 2026 19:34:25 +0000
ROA not before: Wed 15 Apr 2026 19:29:25 +0000
ROA not after: Wed 14 Apr 2027 19:34:25 +0000
asID: 214587
IP address blocks: 2a13:7fc0:1010::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/0177DCD7BEE1190629437CA4C8AB83E3AD15C7A9.crl
rsync://rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/0177DCD7BEE1190629437CA4C8AB83E3AD15C7A9.mft
rsync://rpki.ripe.net/repository/DEFAULT/AXfc177hGQYpQ3ykyKuD460Vx6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:f6:4a:e6:4d:e7:7e:c0:15:07:41:37:44:23:9a:c3:a2:da:5b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0177dcd7bee1190629437ca4c8ab83e3ad15c7a9
Validity
Not Before: Apr 15 19:29:25 2026 GMT
Not After : Apr 14 19:34:25 2027 GMT
Subject: CN=85EEF03D51314C53E9E4C1D4465AE451BD93B679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6b:28:ab:f4:88:3d:c2:c4:45:e3:e3:53:0c:
e7:8f:2e:74:1e:66:eb:82:c4:d7:a1:03:16:62:5f:
06:01:16:98:72:fd:70:46:25:d6:b2:2f:88:9a:37:
dd:f2:b6:9b:3f:4b:fd:ad:d0:d5:de:c0:63:81:af:
e1:8b:d4:9d:e3:8f:75:c8:5b:06:9b:12:85:10:66:
37:ca:34:cc:6d:06:ab:9a:92:23:46:98:13:cb:87:
24:8d:60:29:b5:c5:f4:ee:81:c6:34:c9:fe:7b:9f:
a6:cf:a3:dc:a0:97:f6:6f:4b:86:18:cc:13:99:4f:
82:3c:bd:4e:d4:36:13:d2:0b:12:d8:39:73:8c:22:
ed:78:d0:6e:6a:f1:a4:db:b4:c2:6c:d9:60:b4:dd:
e4:87:cf:3a:b9:93:89:73:e3:5a:7a:fd:be:92:f5:
0d:0e:8e:74:10:cf:86:fc:4d:dd:cb:6a:b2:95:a0:
4c:13:27:af:00:79:46:4a:23:28:95:dc:9e:e9:0c:
84:d9:0f:ba:bc:45:91:7f:aa:40:0e:fb:5c:1e:10:
07:bf:6c:11:26:43:88:fe:ec:13:03:a7:3e:0e:c9:
87:d8:83:6a:3d:d8:5e:bb:2f:dc:16:61:39:31:cc:
57:50:dc:f8:68:c3:eb:8b:86:cd:26:0a:f3:fe:8f:
d9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:EE:F0:3D:51:31:4C:53:E9:E4:C1:D4:46:5A:E4:51:BD:93:B6:79
X509v3 Authority Key Identifier:
keyid:01:77:DC:D7:BE:E1:19:06:29:43:7C:A4:C8:AB:83:E3:AD:15:C7:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/0177DCD7BEE1190629437CA4C8AB83E3AD15C7A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXfc177hGQYpQ3ykyKuD460Vx6k.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/326131333a376663303a313031303a3a2f34382d3438203d3e20323134353837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7fc0:1010::/48
Signature Algorithm: sha256WithRSAEncryption
86:57:b8:fd:9d:e7:a6:d2:c8:d4:bc:cb:6c:ef:6a:96:aa:dc:
83:dd:fb:5e:b8:f6:de:eb:d3:a2:43:cf:df:44:db:5f:c6:9c:
18:7f:a7:dd:8c:ae:c0:82:e7:12:b6:cc:b8:56:b3:27:73:97:
99:09:18:7a:5b:ed:f9:43:b6:4a:f1:20:0c:f9:43:92:ab:eb:
78:06:6b:64:06:1f:35:35:c7:50:c6:69:66:53:e7:e7:f3:3a:
76:78:a3:1a:bb:89:f2:2d:7c:8b:40:8a:1f:10:06:f7:46:1a:
b6:15:db:f0:96:0e:26:b3:6b:db:4f:73:6a:b4:01:53:7e:b8:
c6:b1:98:23:ac:e4:c8:8e:75:f4:8f:8b:0e:bc:70:48:f2:74:
b8:2b:6f:2a:70:d1:d1:d6:f0:c2:37:ed:75:03:97:ae:cd:27:
6a:c6:32:68:04:e7:37:18:4a:29:ee:86:e4:d8:df:f7:f6:a2:
71:65:0c:f9:00:03:f2:2c:fb:0f:62:e6:23:95:1d:22:be:bf:
a8:9d:a2:87:a0:ca:e2:71:bc:8c:05:e4:e4:69:9c:b8:2b:4e:
c4:ea:5f:03:75:dc:99:be:f5:9b:d5:2f:ed:d9:dc:1e:ca:f7:
5b:32:c0:2c:30:5e:e6:3c:0d:d7:2a:ec:cf:4c:35:44:84:d3:
96:f2:20:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 00:58:15 2026 by rpki-client