Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3138342e302f32342d3234203d3e20313938303837.roa
File: 3134352e37392e3138342e302f32342d3234203d3e20313938303837.roa (raw, json)
Hash identifier: +LU6mbMO0nNDvp1Or0tA0TmhIIz2Q1mIQF1d+ob79Lw=
Subject key identifier: C4:32:0F:C2:3E:BD:4E:37:5B:7C:07:CD:4E:04:65:F9:56:4F:09:75
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 269E8CEE768B1D8CBFA4C67FFAFA3605A7AF4CD2
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3138342e302f32342d3234203d3e20313938303837.roa
Signing time: Fri 03 Apr 2026 12:08:39 +0000
ROA not before: Fri 03 Apr 2026 12:03:39 +0000
ROA not after: Fri 02 Apr 2027 12:08:39 +0000
asID: 198087
IP address blocks: 145.79.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:9e:8c:ee:76:8b:1d:8c:bf:a4:c6:7f:fa:fa:36:05:a7:af:4c:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Apr 3 12:03:39 2026 GMT
Not After : Apr 2 12:08:39 2027 GMT
Subject: CN=C4320FC23EBD4E375B7C07CD4E0465F9564F0975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:75:08:07:5c:47:5d:e7:7f:09:14:b7:97:f3:
67:6e:18:52:50:e3:78:21:ac:44:08:17:96:b2:8d:
2e:3a:e4:b1:31:4a:ca:7e:9f:46:4e:bb:d6:74:1a:
4a:f8:7b:9b:d5:34:c7:6f:2f:e0:80:6a:a9:41:c7:
46:37:a5:2d:d6:b5:62:f9:22:84:9a:1a:cd:06:f2:
c5:48:ff:85:6c:c8:ee:be:d5:32:60:17:e0:2c:dd:
cc:1e:e0:a0:07:0a:10:a4:73:82:58:33:e9:07:a7:
89:0c:fe:33:f5:90:e5:4c:08:48:95:0c:f3:28:8c:
12:ed:47:8d:cf:00:5c:86:be:1c:3b:b1:cf:fd:66:
91:6d:2d:1d:f6:0c:f6:3c:6b:19:7e:66:bc:e4:55:
8c:04:61:57:e2:e2:69:13:2a:d5:71:b0:96:ba:06:
60:ff:b6:b4:26:e9:bb:52:3c:1e:91:3b:f2:cf:9a:
1a:fc:8f:a9:e4:76:18:40:30:ec:c4:9d:5b:1b:dd:
d8:93:51:67:4a:3d:87:b5:41:05:35:4b:b7:df:9f:
96:46:b3:e7:aa:c0:c3:19:82:90:ce:0a:f1:45:3c:
d1:ed:b0:e6:47:2f:74:0a:f4:23:aa:c2:da:4a:f9:
88:9a:17:71:6c:87:ea:dc:aa:0c:df:da:f7:fa:5b:
fc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:32:0F:C2:3E:BD:4E:37:5B:7C:07:CD:4E:04:65:F9:56:4F:09:75
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3138342e302f32342d3234203d3e20313938303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.184.0/24
Signature Algorithm: sha256WithRSAEncryption
68:c3:e3:2d:bb:7f:62:8f:4d:c4:78:d3:1a:f2:78:ae:f7:05:
40:a8:08:d1:11:2b:57:7a:9f:88:6f:7c:64:72:c1:c6:41:eb:
36:59:52:0a:a3:ed:d9:ad:a5:69:37:04:15:66:ef:1a:8b:98:
2e:72:22:e3:66:cd:0b:be:25:c4:6f:16:51:05:52:17:68:8e:
c0:88:fb:0e:64:d6:9c:3f:c6:33:ee:51:bf:10:0a:0f:d4:c7:
84:eb:05:2d:fc:cd:6b:ba:23:c6:74:87:b5:4e:75:a3:a2:5f:
4b:60:37:2d:1a:b3:5e:a7:e5:e6:01:3c:8e:b8:88:65:80:03:
ac:36:5d:2c:3a:2b:81:d1:bf:ad:36:bd:e0:da:c6:17:b7:6c:
03:f0:89:db:73:6f:c9:c7:b6:e6:6c:12:5d:63:6a:df:77:a1:
5d:98:6f:95:40:2d:e8:75:00:de:cd:cb:37:c3:63:8f:e4:e3:
71:2a:67:83:05:c5:46:e8:18:86:fc:fb:d5:d5:d6:86:65:53:
82:48:03:aa:23:19:9e:6e:3a:14:c0:f8:f4:fb:5d:8e:05:c1:
c8:60:bc:eb:de:08:9f:8e:95:b3:2b:22:c5:b7:4f:0d:1b:f1:
16:3a:0a:fc:7e:8d:f6:e4:52:9d:5a:0a:f3:7d:10:09:30:ff:
bd:8b:34:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:06:03 2026 by rpki-client