Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e36392e302f32342d3234203d3e20323134313433.roa
File: 3134352e37392e36392e302f32342d3234203d3e20323134313433.roa (raw, json)
Hash identifier: eyhD2u8U5msv2zXUtb4roKycf1LAdpzqyOpO5oXZwEE=
Subject key identifier: 1B:6D:FB:8E:9E:80:5E:A8:F8:F2:4F:86:04:11:1B:8C:04:06:6B:8A
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 350B666CDF5D4FB2878805CB4247290A3C3703D2
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e36392e302f32342d3234203d3e20323134313433.roa
Signing time: Thu 04 Jun 2026 20:24:57 +0000
ROA not before: Thu 04 Jun 2026 20:19:57 +0000
ROA not after: Thu 03 Jun 2027 20:24:57 +0000
asID: 214143
IP address blocks: 145.79.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 23:42:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:0b:66:6c:df:5d:4f:b2:87:88:05:cb:42:47:29:0a:3c:37:03:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 4 20:19:57 2026 GMT
Not After : Jun 3 20:24:57 2027 GMT
Subject: CN=1B6DFB8E9E805EA8F8F24F8604111B8C04066B8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a5:2f:c7:4a:0d:7b:3b:1d:3b:11:05:b0:93:
4e:cf:8e:d1:d3:e3:6e:38:e5:15:02:1c:ca:66:88:
61:b7:2a:4b:41:41:55:8f:e5:db:17:ed:e7:1c:fd:
bc:98:5b:44:4a:19:44:03:c7:91:95:bb:92:5d:d4:
eb:0c:fd:fa:32:10:19:0e:f8:27:c3:c5:62:ba:c0:
4a:7c:16:b5:ff:5b:60:0e:a9:80:fa:85:9e:a9:84:
43:bc:8d:ed:52:39:28:4e:a3:19:1b:ae:4c:8f:f4:
0d:78:52:69:5d:36:19:1a:77:00:d9:45:96:0e:aa:
65:e8:ea:d7:88:f3:c2:51:9a:d0:53:d7:a3:2c:e3:
bf:5b:46:c8:87:d0:eb:c9:e6:90:f4:2c:9a:d2:48:
34:6e:d7:8a:44:47:4d:b0:59:8e:c5:81:81:49:50:
87:3e:c1:d6:58:22:c6:29:7d:bb:c1:40:5d:25:a5:
bb:76:3c:cf:95:dc:48:bd:07:83:b3:c1:20:38:7b:
60:75:52:ff:b5:19:20:f6:04:7f:46:07:07:20:37:
92:d5:bb:3a:e9:97:1b:c5:d6:66:b6:c7:b5:41:db:
29:45:ce:3a:43:b4:db:9c:3c:28:d7:1a:b3:b1:29:
9f:8d:da:98:48:c4:74:43:f7:55:49:ee:da:7b:79:
36:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:6D:FB:8E:9E:80:5E:A8:F8:F2:4F:86:04:11:1B:8C:04:06:6B:8A
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e36392e302f32342d3234203d3e20323134313433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.69.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d9:5f:39:b5:bc:31:f7:83:67:08:ef:0b:c6:17:38:1f:0d:
2c:22:aa:9d:40:ae:d2:1f:fc:32:6a:59:26:84:30:21:d8:09:
95:ca:a8:4b:8d:30:5c:b2:e1:d0:f0:e3:4b:e1:43:f8:36:83:
7b:14:a9:f6:4e:64:20:71:0c:1f:46:c5:bb:c6:48:0d:2a:aa:
7a:d2:fe:52:99:c8:f0:a9:69:85:d9:75:7b:b8:81:1a:54:7c:
8c:f7:f9:1c:51:7e:5d:ec:cb:05:16:0f:10:6e:9c:af:44:78:
cb:cc:f2:f0:fd:7e:f0:7c:6a:32:69:75:78:48:0e:33:0f:02:
c3:7a:aa:f5:d9:a7:4c:b1:2a:60:f3:36:c4:10:13:f7:c2:b3:
d0:85:a1:12:8b:63:c3:32:2c:9e:1f:6b:94:8b:a4:da:f5:4f:
2a:1f:ff:92:73:14:c8:fc:c3:d2:d6:31:98:c0:dc:38:b2:eb:
2c:9a:ea:e4:a8:12:de:df:74:9b:0e:70:ad:ae:f8:e0:85:2f:
03:a2:13:8c:75:8e:35:5c:0d:4c:31:16:4d:41:c1:99:4d:54:
85:f9:bf:9b:a1:99:3d:e5:9a:01:75:9a:81:51:9a:63:58:13:
bc:94:3d:18:aa:30:e3:3b:fe:4b:df:6c:75:9f:71:31:3b:6b:
2f:83:26:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:48:01 2026 by rpki-client