Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/326131333a376663303a313031663a3a2f34382d3438203d3e20323134353837.roa
File: 326131333a376663303a313031663a3a2f34382d3438203d3e20323134353837.roa (raw, json)
Hash identifier: NILQ8/k8RWx9Jp9dOJ2tdW/rwY6dVyE3d3RQvgfQQ7Q=
Subject key identifier: DE:A9:D0:A7:C6:0D:AA:86:F6:F9:BD:8A:E1:B7:0A:F5:0C:0C:CC:9A
Certificate issuer: /CN=0177dcd7bee1190629437ca4c8ab83e3ad15c7a9
Certificate serial: 3890B7EC6DF6AF8FC1AB25FAA20187256C46344B
Authority key identifier: 01:77:DC:D7:BE:E1:19:06:29:43:7C:A4:C8:AB:83:E3:AD:15:C7:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXfc177hGQYpQ3ykyKuD460Vx6k.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/326131333a376663303a313031663a3a2f34382d3438203d3e20323134353837.roa
Signing time: Wed 15 Apr 2026 19:34:26 +0000
ROA not before: Wed 15 Apr 2026 19:29:26 +0000
ROA not after: Wed 14 Apr 2027 19:34:26 +0000
asID: 214587
IP address blocks: 2a13:7fc0:101f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/0177DCD7BEE1190629437CA4C8AB83E3AD15C7A9.crl
rsync://rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/0177DCD7BEE1190629437CA4C8AB83E3AD15C7A9.mft
rsync://rpki.ripe.net/repository/DEFAULT/AXfc177hGQYpQ3ykyKuD460Vx6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:90:b7:ec:6d:f6:af:8f:c1:ab:25:fa:a2:01:87:25:6c:46:34:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0177dcd7bee1190629437ca4c8ab83e3ad15c7a9
Validity
Not Before: Apr 15 19:29:26 2026 GMT
Not After : Apr 14 19:34:26 2027 GMT
Subject: CN=DEA9D0A7C60DAA86F6F9BD8AE1B70AF50C0CCC9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d3:93:34:bd:99:5b:16:6d:3e:98:83:bd:8e:
0f:bb:4c:31:b0:f2:87:8b:e3:7d:23:eb:e3:02:82:
ad:a1:c5:31:54:3b:21:39:5b:33:b5:df:60:3b:28:
8c:09:f8:75:b7:b3:a0:c3:10:19:1d:38:cd:22:ac:
24:a4:b3:08:9e:2c:14:52:9a:6c:67:a7:c8:4f:34:
f1:35:72:70:2a:1d:db:12:89:64:df:eb:6a:51:55:
46:b4:df:1b:14:bb:97:24:b1:d0:45:96:f8:81:4d:
fc:1f:6d:f8:cc:ba:aa:c0:71:44:ef:61:3e:12:1a:
04:dc:85:96:93:a2:e0:a9:c1:e7:ad:f6:ee:89:e0:
f3:c0:d7:07:89:19:cf:ed:1f:34:1a:8a:97:e0:d3:
1b:15:88:f2:7c:3c:73:a7:15:45:fc:a6:42:a9:b4:
4b:20:a5:1e:a2:e7:6e:a3:3b:0e:4d:0f:a7:15:12:
4c:b2:f1:16:82:b7:c7:de:dc:97:c6:30:f3:1d:a6:
66:ce:26:52:0c:ee:08:a1:be:1d:f7:0b:0a:8a:c6:
4e:2b:1c:0f:75:e6:bc:0c:19:65:30:bb:5b:13:64:
e6:79:33:d7:1c:0e:4a:83:a2:57:fe:8e:98:5c:69:
2f:9a:52:2f:3c:29:64:05:53:9b:fc:63:35:4a:60:
4c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A9:D0:A7:C6:0D:AA:86:F6:F9:BD:8A:E1:B7:0A:F5:0C:0C:CC:9A
X509v3 Authority Key Identifier:
keyid:01:77:DC:D7:BE:E1:19:06:29:43:7C:A4:C8:AB:83:E3:AD:15:C7:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/0177DCD7BEE1190629437CA4C8AB83E3AD15C7A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXfc177hGQYpQ3ykyKuD460Vx6k.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f0e48da2-bf3d-4f94-9c13-c08c1190de18/0/326131333a376663303a313031663a3a2f34382d3438203d3e20323134353837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7fc0:101f::/48
Signature Algorithm: sha256WithRSAEncryption
57:b8:10:9a:e7:e6:9d:a0:83:c6:31:8d:db:58:a2:1b:2f:b9:
e2:f7:e7:6f:ed:0d:11:ef:a3:4b:39:d7:b8:bd:9e:ce:37:f5:
07:f3:b2:3b:9b:84:48:86:67:1a:6a:dc:2e:70:1d:ba:12:e8:
ce:4a:3e:49:49:55:f9:16:23:1d:11:ea:1f:c4:3d:dd:ae:30:
f1:d1:40:74:a3:c6:5d:1f:de:d2:0d:1a:89:ae:38:71:99:ae:
7e:33:36:b1:dd:db:c3:22:07:d2:d9:09:6e:95:1b:e0:0f:fd:
d7:11:75:e0:ef:c6:53:7b:26:5c:df:18:ac:98:22:33:6c:ca:
a3:54:85:9d:68:f0:e3:b4:f4:79:6c:06:40:f0:9e:c1:ca:94:
0d:1b:38:46:0e:9e:34:e6:2e:42:07:c9:a2:f3:54:1d:8d:e6:
54:51:73:bc:92:43:ab:14:f2:5b:92:3a:8d:0d:29:d3:99:e1:
5a:bb:e1:f6:3a:18:fd:1b:e5:21:ce:3b:65:09:2c:37:8a:2d:
89:ed:e9:b4:8e:ce:4b:45:86:7c:ce:66:e9:81:0f:66:12:48:
60:cc:b8:63:00:31:39:6c:e6:d3:21:4e:47:8e:db:eb:8d:68:
ae:b0:14:aa:30:be:84:1f:b2:43:b2:fe:10:70:f3:3f:60:8f:
26:18:db:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 00:57:38 2026 by rpki-client