Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138322e302f32342d3234203d3e203331313033.roa
File: 39352e3136392e3138322e302f32342d3234203d3e203331313033.roa (raw, json)
Hash identifier: 1iZhFHzkXrCKshGAqDd/oV19ZvihCn0A9jAJQSQLf7E=
Subject key identifier: 6C:8E:AA:7A:C5:AE:8C:2C:EA:C0:53:E4:B6:47:56:4F:04:43:21:F1
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 42790099696048A98350C51E479AEA1CF6CEDA18
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138322e302f32342d3234203d3e203331313033.roa
Signing time: Fri 03 Apr 2026 10:46:58 +0000
ROA not before: Fri 03 Apr 2026 10:41:58 +0000
ROA not after: Fri 02 Apr 2027 10:46:58 +0000
asID: 31103
IP address blocks: 95.169.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:79:00:99:69:60:48:a9:83:50:c5:1e:47:9a:ea:1c:f6:ce:da:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Apr 3 10:41:58 2026 GMT
Not After : Apr 2 10:46:58 2027 GMT
Subject: CN=6C8EAA7AC5AE8C2CEAC053E4B647564F044321F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4a:2f:53:1b:43:8d:57:82:6c:c6:ac:1f:7a:
09:c7:a3:c5:3e:f3:11:c2:7c:92:45:14:4b:6e:4f:
91:ec:ff:b0:6c:f0:c5:83:20:4e:3b:8b:f0:57:67:
c7:78:16:ff:95:09:28:51:ff:44:19:b9:d0:e6:eb:
cf:3b:ed:59:52:0d:a6:61:ef:2e:62:37:a4:72:e4:
59:f4:85:7d:24:04:23:ec:bd:a6:d4:1e:00:c6:8c:
62:97:1f:7d:10:a3:21:dd:cb:b7:bf:7b:e0:22:f6:
bb:92:0a:e9:c0:f2:38:e4:ce:bb:38:9c:01:d5:21:
e0:80:0a:c9:21:7c:8b:03:b5:8d:c8:ef:0d:28:cb:
aa:06:f0:9d:9b:c1:f0:17:02:40:b9:c2:18:4b:7e:
17:7a:bb:74:d5:12:44:a7:61:23:3f:1e:a8:a2:f6:
37:d2:9d:0d:41:dc:b1:c6:bc:51:80:28:04:92:07:
e6:e5:56:35:7f:9b:0e:1b:95:99:e2:ce:24:02:63:
58:36:db:31:52:c7:9e:c1:56:1a:d2:e8:ce:1d:8b:
fa:64:7a:fc:04:3b:c6:bc:45:58:72:14:58:ce:8d:
77:d2:b2:19:9d:c4:06:56:5b:ac:b8:42:b9:00:05:
98:96:f6:df:6a:66:6e:4a:69:d0:c8:ca:17:0a:72:
1c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:8E:AA:7A:C5:AE:8C:2C:EA:C0:53:E4:B6:47:56:4F:04:43:21:F1
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3138322e302f32342d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.182.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:c3:f1:6c:73:73:0e:f9:7c:7a:be:ca:ee:c9:d8:00:e6:ba:
a6:0b:c9:9b:8c:ff:ca:4a:4c:59:d6:40:fb:59:6c:8b:26:b3:
93:2b:97:8c:4b:4c:af:24:1e:c7:5f:56:51:39:73:f4:46:4a:
bd:f7:f8:a6:a2:30:f6:a6:16:54:e5:6e:02:f3:ad:b5:83:cd:
b0:a7:41:3c:3a:16:df:d7:b8:ba:8b:1c:f8:b9:0e:55:ea:69:
dd:c5:17:b9:6d:87:55:c5:7a:6d:b1:96:95:c8:49:43:76:5b:
10:3b:72:6b:d4:cc:74:a2:ea:af:9f:92:e5:43:27:b5:9a:24:
68:52:ac:b0:2a:c0:09:2c:e8:13:59:08:2d:ec:13:de:ab:9f:
77:9a:fb:5b:9b:38:13:ce:08:5b:08:68:18:3d:aa:22:00:30:
0a:1a:b8:84:ed:97:15:11:aa:56:a0:f9:51:cf:a8:12:2e:4a:
3c:37:1e:b9:55:2e:0f:09:4b:e9:b4:5a:59:19:22:cb:f2:c3:
04:a9:77:f7:55:ae:e7:de:99:04:4f:c7:e4:2e:50:16:60:3f:
97:cc:f0:8e:f0:e2:ea:fa:97:8d:29:5f:11:30:67:c9:65:68:
e1:79:0a:bd:7f:09:00:7e:ad:75:bb:44:be:a8:42:f3:2f:1c:
c0:24:f5:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:03:49 2026 by rpki-client