Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137382e302f32342d3234203d3e203239383032.roa
File: 39352e3136392e3137382e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: MC/iiuyAyWXJj834l+h/W2YmmeXSjAAVu9l7ZI6EqPY=
Subject key identifier: 83:F2:1A:24:8C:0A:EC:E3:CB:71:28:EF:8B:4F:B1:74:58:AD:F2:34
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 403202659B7D34AB7EDD0F7F04F9A01F24495230
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137382e302f32342d3234203d3e203239383032.roa
Signing time: Mon 13 Apr 2026 14:47:05 +0000
ROA not before: Mon 13 Apr 2026 14:42:05 +0000
ROA not after: Mon 12 Apr 2027 14:47:05 +0000
asID: 29802
IP address blocks: 95.169.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:32:02:65:9b:7d:34:ab:7e:dd:0f:7f:04:f9:a0:1f:24:49:52:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Apr 13 14:42:05 2026 GMT
Not After : Apr 12 14:47:05 2027 GMT
Subject: CN=83F21A248C0AECE3CB7128EF8B4FB17458ADF234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9e:2e:87:89:28:b7:c7:d5:a1:c6:93:e5:0e:
b5:3a:1b:a4:7e:9b:d7:75:2d:0a:a4:20:e6:ae:47:
1d:6d:a4:4c:cb:c0:c7:da:40:e1:45:4e:12:65:07:
f5:90:26:36:02:e0:84:7a:5b:52:bf:54:87:95:38:
a9:d1:14:f5:3e:1f:c3:f1:87:ef:94:78:81:fb:ac:
57:12:3e:ed:b4:ac:8f:ef:f8:a7:eb:62:a4:2c:4d:
fe:46:75:b4:22:06:8a:af:ef:80:9f:e3:9e:31:9c:
14:4b:87:ce:4b:c8:4f:a2:0d:db:09:09:47:28:a4:
24:b7:8f:e9:91:a3:75:0b:9f:b8:c1:63:db:1d:23:
80:bc:99:94:57:c2:ca:d8:e1:0c:17:f1:fa:ff:5a:
98:6b:c8:48:39:a3:02:8f:5f:a4:5d:f4:5a:9b:86:
1c:e3:8a:55:9a:9a:7d:dc:9a:b8:9e:45:b0:66:89:
d8:fd:4e:1d:81:9a:c7:39:fb:39:b7:74:c7:1e:97:
49:2c:a4:e6:3c:28:eb:78:e3:bc:27:8a:24:26:f7:
39:a5:a9:13:02:2c:56:0d:14:c6:37:b6:90:8a:04:
9c:5c:1a:f1:3c:9f:95:0c:31:a8:cd:5f:5f:54:4a:
ad:be:de:b3:64:88:c0:3e:4b:02:5e:a6:e1:e3:8a:
11:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:F2:1A:24:8C:0A:EC:E3:CB:71:28:EF:8B:4F:B1:74:58:AD:F2:34
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137382e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.178.0/24
Signature Algorithm: sha256WithRSAEncryption
18:2c:25:29:cd:36:df:38:cb:03:7b:06:11:dc:52:e4:f9:0d:
9e:3e:3f:25:31:05:f0:ea:dc:9e:56:5c:22:92:39:64:5d:48:
a4:8a:bd:e9:d5:53:44:80:ff:51:02:ea:e5:d1:29:7a:a7:c9:
19:51:b2:5b:b8:b6:64:cb:4c:65:de:db:23:24:36:cc:e5:72:
4c:b3:f2:25:8a:e0:2b:27:b8:c0:67:32:9f:f0:84:d7:3b:b1:
98:ae:0c:4d:04:ea:71:92:bc:40:9a:8f:8e:6e:d1:5a:44:ba:
9d:47:b0:0f:5b:54:3b:cb:78:07:d4:a6:6f:f8:80:f5:68:6d:
45:25:04:b0:f6:f8:24:67:15:20:7d:67:33:6b:80:90:64:dd:
cf:ed:0d:21:04:fd:7e:4a:f7:fa:7b:7d:03:99:95:6b:1b:8b:
a1:69:1f:80:29:18:5c:32:56:5c:c8:a1:20:b3:da:8c:91:05:
8f:3c:c3:57:1b:ef:28:45:87:72:b4:94:42:7a:38:b1:a2:2d:
0f:05:34:61:33:c8:1d:51:fb:2a:c0:5b:24:ad:01:2a:d6:e5:
e2:37:36:89:6d:4c:39:e0:9f:30:f3:55:f7:49:5c:f9:78:2e:
40:e2:6b:f1:62:6b:df:ab:4e:e1:09:2e:dc:a0:38:79:a9:81:
d6:de:47:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:11:02 2026 by rpki-client