Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137322e302f32342d3234203d3e203436353539.roa
File: 39352e3136392e3137322e302f32342d3234203d3e203436353539.roa (raw, json)
Hash identifier: JM9dpKIanlubgpq4VNE8vCqNAhvHx6W/LlVZssjkYGI=
Subject key identifier: AA:98:6F:7A:D4:B8:74:09:61:7E:D3:8C:1D:0F:AA:89:4D:DC:3F:C6
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 15A62B0C2830B201104151FA9C1FFDC78FB7E897
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137322e302f32342d3234203d3e203436353539.roa
Signing time: Fri 30 Jan 2026 21:33:07 +0000
ROA not before: Fri 30 Jan 2026 21:28:07 +0000
ROA not after: Fri 29 Jan 2027 21:33:07 +0000
asID: 46559
IP address blocks: 95.169.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:35:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:a6:2b:0c:28:30:b2:01:10:41:51:fa:9c:1f:fd:c7:8f:b7:e8:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jan 30 21:28:07 2026 GMT
Not After : Jan 29 21:33:07 2027 GMT
Subject: CN=AA986F7AD4B87409617ED38C1D0FAA894DDC3FC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1a:4c:15:90:50:13:5d:a8:f4:8c:42:6b:98:
4d:dc:48:de:ef:e8:ef:44:ef:aa:50:14:07:e4:e4:
c8:ff:10:d1:d3:cd:ca:fc:77:b5:12:b8:b0:8d:24:
2d:20:d7:49:6f:1a:c1:59:20:d1:02:83:b5:ea:75:
36:ac:36:66:3c:7c:23:64:77:63:30:d2:a0:a8:d3:
8d:98:76:a6:79:92:bb:dd:32:b0:f7:42:ba:bd:c9:
01:7e:c4:ed:49:ca:65:fb:64:1f:59:18:d2:0c:21:
c2:df:73:16:f6:b3:42:e2:b4:9e:e1:b3:bf:3a:b0:
8d:b5:60:76:15:85:a6:ce:7c:2d:8d:32:21:44:01:
4f:3f:44:ec:ef:51:58:68:b0:77:f6:5b:8e:72:16:
f4:42:b0:30:71:17:0d:17:4f:25:e1:3b:96:85:28:
38:a1:83:2e:46:e8:f3:de:1c:4e:10:36:9c:7e:00:
b6:7b:5f:a4:04:96:51:5a:2f:94:4b:56:8b:7d:97:
52:41:30:12:ab:3d:6a:5a:69:62:8e:59:2e:ad:07:
21:b4:63:ea:f5:e6:61:87:8e:03:fb:37:a5:b7:95:
4a:eb:ed:08:8d:26:4f:4e:13:b6:dc:9c:15:69:66:
34:c7:89:25:c8:80:41:c4:5c:95:44:7f:4d:e1:2b:
f0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:98:6F:7A:D4:B8:74:09:61:7E:D3:8C:1D:0F:AA:89:4D:DC:3F:C6
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137322e302f32342d3234203d3e203436353539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.172.0/24
Signature Algorithm: sha256WithRSAEncryption
99:e0:84:8c:75:a3:8b:d4:d9:d7:b0:48:e2:d2:70:4b:3d:16:
43:b4:7d:bd:5b:38:0a:d8:97:5e:52:bd:c1:3d:3d:01:ff:39:
96:e0:fd:d5:40:14:3b:47:47:5e:ab:59:8c:79:c0:37:6b:20:
54:30:08:2c:b9:e1:10:4a:93:6b:ca:8b:47:18:ab:96:45:1c:
7b:a8:72:c9:f2:d1:44:9c:c3:65:40:f1:38:9c:7d:ba:10:eb:
5e:cb:13:5d:1d:54:09:2a:7e:2f:7b:fc:1b:8c:39:25:3c:7d:
66:f8:c7:1d:23:f5:cc:76:87:6e:a5:b0:36:45:9e:e3:6c:72:
75:aa:ce:3b:ee:35:5f:b1:b7:84:e6:f2:71:6d:51:db:46:2c:
59:57:b0:76:44:a6:bc:a7:f3:76:62:14:f8:91:10:c4:75:0b:
de:b0:a7:12:8d:0e:44:32:d5:75:ca:db:09:d7:44:56:b8:2c:
46:e7:1a:82:32:b1:7b:a3:27:8a:a4:66:11:9d:54:05:1b:8b:
a1:59:87:b1:39:bf:ec:dd:be:c6:69:e8:b6:63:35:af:b0:8c:
60:66:1c:fb:98:f4:2c:e7:28:1f:cb:1a:23:1e:5e:db:7d:3c:
5e:7b:bc:e6:af:14:b9:e5:00:2b:a6:ee:71:1c:b3:24:34:b6:
d0:7c:91:42
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUFaYrDCgwsgEQQVH6nB/9x4+36JcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWU1NzY5OTYzODhlOTRiOGM3YWIyMGVmZmIyM2JkMTFi
ZWNiNDEwODAeFw0yNjAxMzAyMTI4MDdaFw0yNzAxMjkyMTMzMDdaMDMxMTAvBgNV
BAMTKEFBOTg2RjdBRDRCODc0MDk2MTdFRDM4QzFEMEZBQTg5NEREQzNGQzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClGkwVkFATXaj0jEJrmE3cSN7v
6O9E76pQFAfk5Mj/ENHTzcr8d7USuLCNJC0g10lvGsFZINECg7XqdTasNmY8fCNk
d2Mw0qCo042YdqZ5krvdMrD3Qrq9yQF+xO1JymX7ZB9ZGNIMIcLfcxb2s0LitJ7h
s786sI21YHYVhabOfC2NMiFEAU8/ROzvUVhosHf2W45yFvRCsDBxFw0XTyXhO5aF
KDihgy5G6PPeHE4QNpx+ALZ7X6QEllFaL5RLVot9l1JBMBKrPWpaaWKOWS6tByG0
Y+r15mGHjgP7N6W3lUrr7QiNJk9OE7bcnBVpZjTHiSXIgEHEXJVEf03hK/CXAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUqphvetS4dAlhftOMHQ+qiU3cP8YwHwYDVR0j
BBgwFoAUnldpljiOlLjHqyDv+yO9Eb7LQQgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAtMmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2
MTIzLzAvOUU1NzY5OTYzODhFOTRCOEM3QUIyMEVGRkIyM0JEMTFCRUNCNDEwOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25sZHBsamlPbExqSHF5RHYteU85RWI3
TFFRZy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAt
MmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2MTIzLzAvMzkzNTJlMzEzNjM5MmUzMTM3
MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM2MzUzNTM5LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
X6msMA0GCSqGSIb3DQEBCwUAA4IBAQCZ4ISMdaOL1NnXsEji0nBLPRZDtH29WzgK
2JdeUr3BPT0B/zmW4P3VQBQ7R0deq1mMecA3ayBUMAgsueEQSpNryotHGKuWRRx7
qHLJ8tFEnMNlQPE4nH26EOteyxNdHVQJKn4ve/wbjDklPH1m+McdI/XMdodupbA2
RZ7jbHJ1qs477jVfsbeE5vJxbVHbRixZV7B2RKa8p/N2YhT4kRDEdQvesKcSjQ5E
MtV1ytsJ10RWuCxG5xqCMrF7oyeKpGYRnVQFG4uhWYexOb/s3b7Gaei2YzWvsIxg
Zhz7mPQs5ygfyxojHl7bfTxee7zmrxS55QArpu5xHLMkNLbQfJFC
-----END CERTIFICATE-----
Generated at Mon Mar 2 08:36:13 2026 by rpki-client