Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e37332e302f32342d3234203d3e20323134313433.roa
File: 3134352e37392e37332e302f32342d3234203d3e20323134313433.roa (raw, json)
Hash identifier: RBIDmLw4WP7vKPWzm4L34gJHIh1OUc12L+Zw+BqqgAM=
Subject key identifier: 31:E2:05:AC:53:59:02:A4:E3:C5:C8:5D:8F:46:B8:8A:04:B2:85:3A
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 755BB9F9B02EB2ACEBF5DFA9E9F291DBEAD872C4
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e37332e302f32342d3234203d3e20323134313433.roa
Signing time: Thu 04 Jun 2026 20:24:55 +0000
ROA not before: Thu 04 Jun 2026 20:19:55 +0000
ROA not after: Thu 03 Jun 2027 20:24:55 +0000
asID: 214143
IP address blocks: 145.79.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 23:42:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:5b:b9:f9:b0:2e:b2:ac:eb:f5:df:a9:e9:f2:91:db:ea:d8:72:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 4 20:19:55 2026 GMT
Not After : Jun 3 20:24:55 2027 GMT
Subject: CN=31E205AC535902A4E3C5C85D8F46B88A04B2853A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:72:dc:5d:b6:ea:6e:7d:5c:2d:4f:1d:12:ff:
fd:52:7a:2c:20:8d:87:6e:d6:34:4f:ac:da:ed:11:
2c:ab:16:4c:a4:d1:de:8b:f9:4c:fa:f7:72:1b:d1:
fb:30:c5:63:da:6f:a0:33:31:a4:40:17:fd:ea:bb:
a2:96:f5:4f:ef:29:88:b8:8f:c5:55:9b:45:c6:19:
50:34:71:66:d7:3d:02:ef:9f:24:d5:37:34:d8:33:
f7:b0:cc:5c:90:03:c7:92:9f:18:04:7f:bc:d7:ce:
e5:f8:fc:fd:f6:96:52:87:37:09:39:5d:53:57:ea:
59:11:0e:6a:48:27:ec:c2:7d:fd:df:4f:61:9b:20:
5d:23:ee:27:b4:8c:20:c2:35:6b:fe:21:e5:88:e4:
0d:4b:6a:73:1c:0d:c8:75:bc:9a:5d:9a:cb:fc:c0:
96:bf:36:a5:7f:d1:4e:d7:23:eb:67:f5:e7:03:c6:
56:29:7e:9a:23:2f:19:86:a6:aa:eb:9a:e5:40:08:
78:8d:e8:8d:89:dd:1d:be:f3:5b:91:b6:14:99:05:
e3:ba:4c:c5:a5:92:1e:32:c7:f0:af:86:a0:36:31:
dd:69:3b:0c:09:ec:df:f4:c0:d5:18:fa:b0:55:fb:
91:32:87:57:8f:0f:60:f7:94:66:05:d7:16:f0:71:
d4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E2:05:AC:53:59:02:A4:E3:C5:C8:5D:8F:46:B8:8A:04:B2:85:3A
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e37332e302f32342d3234203d3e20323134313433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.73.0/24
Signature Algorithm: sha256WithRSAEncryption
50:19:64:c1:12:e7:02:5c:e6:42:fa:dc:59:c4:c1:25:ed:26:
67:39:2c:52:04:bb:cf:22:8b:d4:40:6d:c0:03:f0:f9:a7:02:
06:2d:a4:60:21:4a:e6:f1:f7:f6:13:97:0c:c8:64:4e:b7:ad:
ca:4d:cd:3b:ac:36:5e:d7:dc:9c:dc:57:82:8f:32:c1:35:28:
f2:03:bb:e7:d1:9a:8c:15:76:e0:90:20:5c:7e:5a:c3:68:bf:
3c:45:b8:68:77:3a:a1:8c:4f:d1:23:7d:9f:f8:6f:93:90:5a:
5d:e8:bb:63:9e:cb:30:d8:2c:bf:41:32:47:53:d2:a5:ac:2b:
e3:d0:f5:10:b6:c7:fc:a0:67:e4:2e:05:e3:63:ef:10:8e:51:
09:da:c1:2f:48:37:6d:35:8d:19:10:c6:61:11:c3:ab:3f:70:
63:b6:34:06:93:61:d8:c1:43:cb:5a:fd:46:ea:a5:a1:30:ca:
52:67:a5:01:3f:cc:62:b4:fa:8f:98:99:56:5b:76:4d:5f:5c:
37:a8:76:80:0a:8d:5f:96:30:30:a0:c0:7d:a5:ce:0c:3b:71:
63:7d:71:5d:dc:0c:1b:7c:8c:2b:69:80:1c:1e:5d:63:b5:9a:
78:96:9d:81:cd:61:44:69:76:86:fb:b1:73:6b:78:e5:18:75:
06:79:ce:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:05:14 2026 by rpki-client