Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3131382e302f32342d3234203d3e20333935373933.roa
File: 3134352e37392e3131382e302f32342d3234203d3e20333935373933.roa (raw, json)
Hash identifier: iLQJTGYEHXCFKFD2R7Ex48UDy/XIchQI7/G2VxjxSE0=
Subject key identifier: E1:92:91:B2:AE:7D:69:E2:04:9A:2C:5A:F2:91:84:6F:5B:23:B1:D9
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 37EB20D8E742926E4D81FD24B04D356FABB38BB5
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3131382e302f32342d3234203d3e20333935373933.roa
Signing time: Wed 10 Jun 2026 11:25:08 +0000
ROA not before: Wed 10 Jun 2026 11:20:08 +0000
ROA not after: Wed 09 Jun 2027 11:25:08 +0000
asID: 395793
IP address blocks: 145.79.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 23:42:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:eb:20:d8:e7:42:92:6e:4d:81:fd:24:b0:4d:35:6f:ab:b3:8b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 10 11:20:08 2026 GMT
Not After : Jun 9 11:25:08 2027 GMT
Subject: CN=E19291B2AE7D69E2049A2C5AF291846F5B23B1D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:52:50:eb:37:e4:e0:af:b4:5b:5d:9b:3f:d5:
bf:34:69:15:15:b1:70:fc:ab:29:6d:27:4a:e1:7a:
12:54:37:13:da:4a:7a:6a:db:9e:a0:a7:ed:ca:e4:
65:60:22:15:c0:d0:3c:82:71:a7:5e:e5:96:25:f9:
eb:18:9b:8c:89:0b:1c:77:f8:15:dc:0d:2d:82:f2:
0c:e7:3c:6a:48:23:dd:43:89:b5:89:1d:b4:2f:65:
7f:0d:21:d2:cf:ea:74:67:e1:7e:e1:c8:f7:38:9d:
88:a9:b7:a0:0b:9f:61:23:6c:60:43:5c:18:8f:e6:
df:01:84:77:46:70:f3:b5:87:b3:3e:0a:11:71:83:
e8:c6:9a:50:6d:7d:b2:d1:3e:48:8b:31:ca:2d:b0:
df:cd:f7:e1:14:a5:8f:2c:c8:22:e3:94:26:ae:47:
81:b6:d8:0d:e2:2a:53:31:7b:58:35:c1:41:27:19:
7e:87:73:0e:75:7f:86:8d:a8:fc:22:e5:14:bf:7c:
7f:98:bb:b3:88:f1:bf:43:14:8e:af:13:f1:cc:e4:
61:39:22:c0:c9:a1:1e:c1:9d:31:b4:70:df:90:4a:
9c:d4:da:e6:b9:45:3d:98:b9:f9:a3:c5:0c:1f:1f:
48:48:55:06:05:24:99:41:a2:27:55:58:2c:82:b8:
d4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:92:91:B2:AE:7D:69:E2:04:9A:2C:5A:F2:91:84:6F:5B:23:B1:D9
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3131382e302f32342d3234203d3e20333935373933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.118.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:06:94:a3:46:e1:8b:02:e5:cd:1b:ad:22:ea:08:fa:0e:fe:
75:95:e6:b2:e5:4e:f2:4d:e8:25:7a:9d:88:ac:90:69:78:85:
95:7d:f9:60:a1:65:ec:86:80:fb:86:a7:cd:3e:9e:aa:fc:90:
35:07:ea:e8:ea:72:6c:31:76:e3:e8:72:54:04:99:27:5b:fb:
d6:d0:72:41:c2:41:54:44:f6:15:e2:c7:25:5d:70:08:71:68:
16:e9:64:ce:a2:6a:60:0c:d3:0c:ce:9f:d5:d7:66:de:ef:a7:
c7:84:ce:17:aa:bd:c4:e7:36:c3:97:46:50:74:42:ed:2c:3a:
6a:b7:e9:2b:b0:e1:a4:29:36:9c:49:30:0b:7e:fa:15:9f:88:
1f:fe:c1:fb:f2:d3:87:62:b5:40:19:c9:d2:1e:21:11:82:a8:
a2:20:16:79:88:4c:ae:2f:5d:2e:68:83:54:0b:09:3d:0c:cc:
d2:4d:c5:6c:9b:66:07:e7:59:f5:7c:a4:5a:2d:ad:52:21:15:
ea:3f:62:81:e9:51:10:b8:95:35:61:46:4d:8c:8b:2e:6b:a1:
40:fe:41:00:8f:17:80:58:05:53:4a:c0:3c:f1:2f:52:36:bc:
81:26:81:2d:c2:6a:60:b5:88:18:57:06:68:ab:7c:df:7b:95:
ef:55:ca:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:45:08 2026 by rpki-client