Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3132382e302f32342d3234203d3e20343032323135.roa
File: 3134352e37392e3132382e302f32342d3234203d3e20343032323135.roa (raw, json)
Hash identifier: HlvKmMl6Ia+l/EjW3SUSlRxswlqP9ckVegMgtftUCqw=
Subject key identifier: 6B:A7:7C:ED:2B:30:9C:64:01:AE:1C:F0:F3:49:13:3A:B9:0D:E8:E3
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7C6689A4FDCC6BB6DE81E77CA1B13750EDA98CFE
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3132382e302f32342d3234203d3e20343032323135.roa
Signing time: Thu 16 Apr 2026 06:55:25 +0000
ROA not before: Thu 16 Apr 2026 06:50:25 +0000
ROA not after: Thu 15 Apr 2027 06:55:25 +0000
asID: 402215
IP address blocks: 145.79.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:66:89:a4:fd:cc:6b:b6:de:81:e7:7c:a1:b1:37:50:ed:a9:8c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Apr 16 06:50:25 2026 GMT
Not After : Apr 15 06:55:25 2027 GMT
Subject: CN=6BA77CED2B309C6401AE1CF0F349133AB90DE8E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6c:21:44:48:20:e3:c6:96:84:92:d2:17:ba:
24:30:a1:4d:49:46:a3:4a:07:01:12:18:fc:4d:10:
37:c8:50:e3:ab:27:5f:a8:22:a0:20:bb:b2:1e:ed:
4f:70:ba:c2:b4:9b:c5:5d:9d:7f:f2:6e:a9:b1:b3:
df:1e:6c:91:88:86:5a:11:78:25:04:25:d7:26:09:
0f:d6:46:3d:41:79:57:26:de:a4:53:ad:03:6f:16:
19:0a:9a:db:e3:1c:96:2d:b7:0f:65:65:a8:84:55:
a3:f5:a8:bf:ff:74:23:7e:b7:09:55:80:ee:7e:b0:
cc:2c:d4:72:68:b7:ba:9f:5b:ed:94:39:19:32:92:
76:13:11:fb:de:48:25:d1:9c:40:e8:36:7d:09:1d:
a4:94:97:02:e4:0f:37:84:08:86:8c:0f:fc:1a:e6:
d1:23:44:54:81:f6:5a:d5:a7:3b:04:99:0a:27:5f:
bd:cf:7a:e9:8a:96:ef:51:2f:f5:92:8d:a3:bb:46:
60:e6:25:51:74:ee:a1:9c:f2:ee:ac:c8:67:7a:fe:
3a:8c:89:65:50:bb:64:f5:e1:88:91:fa:60:11:fa:
5d:1a:fc:3d:83:fc:f7:41:ec:05:58:20:32:4e:13:
ee:ee:b6:42:ac:3c:ad:de:57:e9:43:fb:54:a4:75:
39:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:A7:7C:ED:2B:30:9C:64:01:AE:1C:F0:F3:49:13:3A:B9:0D:E8:E3
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3132382e302f32342d3234203d3e20343032323135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.128.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:4c:c0:e8:1f:8a:5d:6a:2d:94:7c:e6:7d:3b:a9:32:96:ce:
4a:cc:71:71:f0:8e:97:60:15:bb:9d:56:89:b2:27:e9:b6:9f:
62:0c:0e:db:11:53:40:02:a3:a0:e3:f3:4e:0d:6f:92:82:94:
d5:b1:24:15:b5:bd:1d:64:34:e4:91:e1:53:13:68:e1:24:a0:
7b:2e:d9:2f:fd:a6:54:9a:69:17:cf:e0:3a:89:11:15:20:cf:
c3:9c:6d:ec:60:35:dc:81:0b:1e:cd:47:2f:63:7e:98:20:a9:
8e:5d:cf:c6:3a:b3:58:bf:1d:4e:28:1c:1b:9e:fd:fc:97:a2:
1c:a4:d1:d8:04:6f:02:6f:36:b2:b6:4b:86:39:cb:b7:9e:0d:
5e:81:c5:53:0a:10:5e:31:34:cd:6a:87:32:45:ca:57:9d:9a:
d2:38:21:c9:1a:08:ec:c0:fe:f7:d9:ad:b5:e1:14:06:07:b4:
85:06:3d:d1:06:3b:1c:db:d6:c6:d8:46:b1:36:2a:19:fe:d3:
d9:2d:71:49:10:35:3a:7d:ce:f5:c7:91:de:e8:7d:b2:58:d1:
30:ec:ab:d0:d9:56:51:49:52:95:ec:65:af:53:92:12:d4:77:
ae:7a:9e:c9:99:92:a8:cc:c2:77:bd:25:ca:c5:80:61:c1:31:
dd:f7:95:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:42:33 2026 by rpki-client