Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e36342e302f32342d3234203d3e20343031373833.roa
File: 3134352e37392e36342e302f32342d3234203d3e20343031373833.roa (raw, json)
Hash identifier: t78Gv6iz/CMqlN7WGwHMaJxOQf6LLrkYlmBjqy2iGzo=
Subject key identifier: 63:56:8D:71:85:9A:11:4D:42:BE:6E:F6:28:91:E5:A0:40:0E:EE:2F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 121726414D10AB2AC268B027E3EBBF3D0F95D516
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e36342e302f32342d3234203d3e20343031373833.roa
Signing time: Thu 04 Jun 2026 20:24:56 +0000
ROA not before: Thu 04 Jun 2026 20:19:56 +0000
ROA not after: Thu 03 Jun 2027 20:24:56 +0000
asID: 401783
IP address blocks: 145.79.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 23:42:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:17:26:41:4d:10:ab:2a:c2:68:b0:27:e3:eb:bf:3d:0f:95:d5:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 4 20:19:56 2026 GMT
Not After : Jun 3 20:24:56 2027 GMT
Subject: CN=63568D71859A114D42BE6EF62891E5A0400EEE2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7d:f9:72:c8:f2:cf:e4:55:cc:e1:27:c9:ee:
73:e8:7a:48:2c:b4:07:ac:28:8e:c4:90:8e:fc:36:
be:27:e7:0a:92:ca:8e:e6:2d:77:e8:91:2e:6b:ec:
61:cc:8f:1e:09:03:4f:9c:ad:8d:44:d6:15:47:6b:
4f:a5:b8:a0:2f:d2:fa:ff:92:33:29:6c:6c:c9:a8:
a4:e4:50:d4:4e:ec:be:e0:fd:1b:ed:aa:a0:5a:64:
a1:d6:48:24:42:02:96:67:b0:63:05:97:37:c8:b7:
00:b8:e1:56:fe:f4:ce:f7:d2:77:d7:da:7e:2e:89:
fc:7e:9d:ee:b0:d5:54:bf:e7:3c:a6:67:ba:c6:79:
e5:31:74:f4:aa:e4:e9:93:83:04:3b:bf:36:9a:95:
2f:48:c2:46:89:c8:71:33:f2:3d:6e:41:16:6b:b7:
0b:49:0e:67:5a:d7:fe:70:f9:fc:93:2e:d3:36:72:
9d:ec:da:b4:56:ff:1c:37:55:1b:b0:51:8c:c7:bf:
66:b0:42:55:91:24:c5:7a:19:e5:7f:c7:d8:90:df:
63:d1:88:fe:ff:27:c5:12:6b:3f:d9:df:89:a4:50:
c2:b3:4e:c1:de:0c:c1:ab:49:c2:4b:da:e1:fe:72:
3c:81:7d:6c:94:8c:ce:47:95:96:34:e5:48:5b:9b:
b8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:56:8D:71:85:9A:11:4D:42:BE:6E:F6:28:91:E5:A0:40:0E:EE:2F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e36342e302f32342d3234203d3e20343031373833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.64.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:d0:4f:cf:67:99:28:53:41:2d:d8:86:88:86:2a:df:d5:a6:
8d:bf:8f:07:09:a2:4d:7a:a1:8b:3a:5b:7b:56:fb:c7:91:78:
e0:04:33:b7:9d:1e:ea:50:3d:94:29:01:17:6f:59:8a:78:76:
1e:2a:f8:b3:b9:a4:00:f7:2c:e4:f7:2c:33:1d:88:52:33:e7:
47:8d:30:0b:68:93:13:d8:a5:0d:3d:f2:5f:d0:4a:c8:9d:3a:
3e:71:5f:29:13:54:20:ff:f1:c3:ec:db:2e:94:74:45:d3:4b:
08:90:36:16:12:71:3c:48:80:d3:01:75:cd:75:db:b3:11:ba:
45:23:33:ac:f4:ed:89:fa:d5:9e:cb:c0:de:e7:99:d6:0b:a2:
ae:70:1b:54:b7:00:6a:54:e9:3b:3d:46:81:9f:92:79:85:cc:
ca:66:68:c8:a7:a1:be:a9:04:c8:f4:9d:d6:21:c3:ca:bf:aa:
bb:dc:c0:1a:81:b4:81:d2:b6:ac:b1:49:82:db:79:bf:f7:35:
b2:d0:68:e6:c7:0f:0f:79:75:9f:31:f9:21:9b:0d:3b:b1:80:
44:c5:2f:be:f4:fe:58:4b:1a:8e:ea:bd:5c:f8:84:89:c9:22:
f4:81:ce:42:a4:9d:f5:4b:13:8a:8c:43:01:29:c4:e3:48:a9:
e6:22:5e:82
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUEhcmQU0QqyrCaLAn4+u/PQ+V1RYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNjA2MDQyMDE5NTZaFw0yNzA2MDMyMDI0NTZaMDMxMTAvBgNV
BAMTKDYzNTY4RDcxODU5QTExNEQ0MkJFNkVGNjI4OTFFNUEwNDAwRUVFMkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmfflyyPLP5FXM4SfJ7nPoekgs
tAesKI7EkI78Nr4n5wqSyo7mLXfokS5r7GHMjx4JA0+crY1E1hVHa0+luKAv0vr/
kjMpbGzJqKTkUNRO7L7g/RvtqqBaZKHWSCRCApZnsGMFlzfItwC44Vb+9M730nfX
2n4uifx+ne6w1VS/5zymZ7rGeeUxdPSq5OmTgwQ7vzaalS9IwkaJyHEz8j1uQRZr
twtJDmda1/5w+fyTLtM2cp3s2rRW/xw3VRuwUYzHv2awQlWRJMV6GeV/x9iQ32PR
iP7/J8USaz/Z34mkUMKzTsHeDMGrScJL2uH+cjyBfWyUjM5HlZY05Uhbm7ihAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUY1aNcYWaEU1Cvm72KJHloEAO7i8wHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNDM1MmUzNzM5MmUzNjM0
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzMDMxMzczODMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
kU9AMA0GCSqGSIb3DQEBCwUAA4IBAQAc0E/PZ5koU0Et2IaIhirf1aaNv48HCaJN
eqGLOlt7VvvHkXjgBDO3nR7qUD2UKQEXb1mKeHYeKvizuaQA9yzk9ywzHYhSM+dH
jTALaJMT2KUNPfJf0ErInTo+cV8pE1Qg//HD7NsulHRF00sIkDYWEnE8SIDTAXXN
dduzEbpFIzOs9O2J+tWey8De55nWC6KucBtUtwBqVOk7PUaBn5J5hczKZmjIp6G+
qQTI9J3WIcPKv6q73MAagbSB0rassUmC23m/9zWy0Gjmxw8PeXWfMfkhmw07sYBE
xS++9P5YSxqO6r1c+ISJySL0gc5CpJ31SxOKjEMBKcTjSKnmIl6C
-----END CERTIFICATE-----
Generated at Sat Jun 13 10:07:54 2026 by rpki-client