Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231322e39372e36392e302f32342d3234203d3e20323132323338.roa
File: 3231322e39372e36392e302f32342d3234203d3e20323132323338.roa (raw, json)
Hash identifier: g1LRNrlyPi1rohngz0odSY3IElSxAl6kKBAhvkbePOM=
Subject key identifier: EA:CE:77:30:48:8A:B9:54:F3:F3:1E:96:D6:0E:75:EC:6F:20:66:61
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 11F697E0E620A315457E6D360E0BB4070E859873
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231322e39372e36392e302f32342d3234203d3e20323132323338.roa
Signing time: Thu 04 Jun 2026 20:24:57 +0000
ROA not before: Thu 04 Jun 2026 20:19:57 +0000
ROA not after: Thu 03 Jun 2027 20:24:57 +0000
asID: 212238
IP address blocks: 212.97.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 23:42:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:f6:97:e0:e6:20:a3:15:45:7e:6d:36:0e:0b:b4:07:0e:85:98:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 4 20:19:57 2026 GMT
Not After : Jun 3 20:24:57 2027 GMT
Subject: CN=EACE7730488AB954F3F31E96D60E75EC6F206661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:91:99:39:fa:5d:17:90:41:b2:ad:b8:55:b6:
14:0d:3a:8a:98:eb:f2:9a:26:01:b4:b6:68:a1:d1:
2a:36:21:b4:74:33:74:ef:83:f1:be:5a:c4:ed:64:
94:56:24:f0:9e:f4:0b:12:57:69:0a:08:a6:99:47:
84:d3:81:84:90:87:3a:e2:e5:88:9f:a9:19:6f:a4:
21:ec:b9:b3:cf:2f:5e:09:86:fa:53:81:06:84:5f:
da:60:67:75:10:8e:ed:89:19:60:08:80:f0:37:a1:
66:66:c9:be:b5:48:71:f1:ff:97:fe:d9:cb:89:c2:
c2:af:49:cd:73:79:24:89:03:6a:ad:e9:1d:d1:67:
69:9f:83:ad:51:0d:30:fe:b5:e5:10:2a:db:23:4b:
66:fb:38:eb:ac:7d:16:8f:29:6a:61:9a:35:30:aa:
67:3d:e1:6c:6f:de:c4:4d:c1:7c:e1:bb:8f:2b:0a:
80:d5:80:3e:e8:6c:4f:db:87:10:cf:a5:48:b7:c4:
12:f0:ae:a3:41:3b:a0:04:41:f5:7e:42:75:4e:37:
32:98:ab:c7:1f:9e:c7:c0:af:a1:f4:32:f9:8a:41:
d0:3b:c4:a0:cb:3d:bb:76:1d:ba:b4:ae:eb:49:17:
af:6a:2f:7a:c8:17:57:e9:9c:85:fb:5a:58:39:ea:
4f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:CE:77:30:48:8A:B9:54:F3:F3:1E:96:D6:0E:75:EC:6F:20:66:61
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3231322e39372e36392e302f32342d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.97.69.0/24
Signature Algorithm: sha256WithRSAEncryption
08:d0:92:e2:4d:17:0c:73:58:6e:25:20:48:c0:b2:f5:cf:a5:
24:e0:68:59:97:89:93:8b:3c:e9:d5:a8:e7:3d:94:b5:13:70:
98:f2:00:f6:6e:eb:29:00:d8:69:e5:52:ec:0d:af:71:99:ac:
0c:8b:f9:fc:1c:3a:8b:43:fb:43:3d:62:2c:ad:eb:15:80:9e:
52:fc:f4:38:88:76:38:89:1f:f3:95:f4:dd:b9:96:09:3c:87:
2f:a1:1f:51:3c:a5:ce:85:ab:fd:d3:3b:e0:9e:a7:a2:1c:4c:
9c:7d:44:8a:05:dc:1d:62:c1:c4:d9:67:3e:0f:ae:31:5d:84:
4f:24:bd:b9:36:ca:b6:0c:5c:6a:b4:6e:2a:4a:d4:36:7b:91:
cb:7f:f9:ba:0a:70:99:45:dc:39:0f:0b:57:d3:14:fc:ca:b8:
f7:46:3a:3c:75:55:df:9a:21:6a:c0:28:5c:c3:da:88:2f:20:
44:c6:a6:54:e2:9f:f1:fa:53:c2:0b:a3:aa:3e:2a:6b:17:92:
19:f7:0c:67:84:e6:69:a3:bb:18:1f:a9:ea:e7:f5:c2:22:7f:
cf:14:f0:dc:27:21:e4:b7:50:0c:ae:a1:8f:aa:af:fb:18:f3:
f0:76:c6:04:e0:ff:6d:8f:09:8b:9e:6f:10:3a:bb:96:d6:5c:
44:9e:a3:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:02:04 2026 by rpki-client