Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234352e3235352e302f32342d3234203d3e20323132323338.roa
File: 3138352e3234352e3235352e302f32342d3234203d3e20323132323338.roa (raw, json)
Hash identifier: Xfmp0lckwIa8vAjRwYkkFVeJRrXT3Cw5ZwDrYB0As/A=
Subject key identifier: 5E:C0:EE:AF:04:ED:D4:B8:79:9D:7E:A7:43:59:F7:00:AC:30:8E:3E
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 4E72EB32BFFEAB73E8D0FEAD710361A4A4C3F7D5
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234352e3235352e302f32342d3234203d3e20323132323338.roa
Signing time: Thu 04 Jun 2026 20:24:58 +0000
ROA not before: Thu 04 Jun 2026 20:19:58 +0000
ROA not after: Thu 03 Jun 2027 20:24:58 +0000
asID: 212238
IP address blocks: 185.245.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 20:26:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:72:eb:32:bf:fe:ab:73:e8:d0:fe:ad:71:03:61:a4:a4:c3:f7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jun 4 20:19:58 2026 GMT
Not After : Jun 3 20:24:58 2027 GMT
Subject: CN=5EC0EEAF04EDD4B8799D7EA74359F700AC308E3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f1:e7:7d:2f:b5:b3:48:c7:1a:26:e0:64:f4:
e8:61:55:0c:2d:c1:cb:73:7a:3d:2e:d4:3a:64:91:
56:5a:90:95:89:54:01:7e:84:2b:87:0e:f5:9e:41:
a3:f4:92:b6:a9:f3:b6:4f:e7:48:f1:e6:b5:c2:05:
98:47:47:55:9e:e9:33:d9:cd:f8:17:c2:0d:22:4a:
21:58:d1:35:f1:29:9e:43:73:2b:dd:87:97:6d:a1:
db:bc:68:fc:23:98:ed:0c:1c:a6:0b:d6:6e:86:cb:
f4:5e:43:12:87:ae:6f:6a:99:c8:3e:9e:e5:e0:37:
24:62:b7:23:8c:1a:4c:f7:58:32:f8:ad:8f:a7:e6:
50:fb:09:74:ef:fc:21:1d:5a:43:c3:97:10:67:f8:
b1:f8:30:0a:da:60:a7:2f:7d:68:5c:3e:70:f5:2c:
7b:e1:03:49:84:5f:ff:06:6b:a9:86:b0:cc:ae:65:
db:44:c4:0f:2b:d2:f1:a0:1f:11:ac:18:93:f4:36:
da:da:82:2c:d8:90:79:b2:fc:ec:dd:93:a8:fe:f0:
2f:16:c3:dd:24:d3:e0:19:1c:70:ac:50:1e:a4:4d:
dc:f8:70:3e:0d:ba:38:4a:17:4a:63:46:06:87:95:
70:5a:ff:71:9b:c7:35:f8:c2:f4:9c:12:08:6b:6f:
b0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C0:EE:AF:04:ED:D4:B8:79:9D:7E:A7:43:59:F7:00:AC:30:8E:3E
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3234352e3235352e302f32342d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.255.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:14:9c:9b:86:a2:93:86:c5:31:ee:36:37:d7:3e:5a:03:b5:
40:08:dd:c3:d7:d5:d5:4e:f8:fe:92:4c:6e:a1:5d:a2:28:c9:
9d:13:6f:c7:31:39:63:40:ba:d4:9e:dc:f8:ce:52:07:7e:89:
9a:eb:fd:7c:f1:ba:2b:0d:e5:d8:02:a2:9c:20:ab:da:f0:20:
7a:88:39:9f:4b:4e:35:5f:ac:39:0d:7b:d5:63:1e:32:cb:d5:
cc:ab:f0:3a:08:ee:e5:d1:8b:09:c6:11:6c:65:0f:3e:11:08:
40:15:eb:88:07:0a:ea:19:b7:23:6f:d2:a6:33:93:56:18:95:
04:21:9e:b0:bb:de:95:8f:be:0a:af:36:9c:3f:fc:5d:72:fa:
1f:92:86:e7:3d:d4:5c:45:23:12:92:f9:65:62:fe:26:77:42:
97:1a:87:82:6d:da:11:55:7c:18:1b:d6:55:63:bd:64:a2:e3:
12:aa:aa:a5:57:c5:c7:2d:1b:98:44:8d:1f:fb:b8:55:3b:f7:
ea:ba:48:da:38:b4:84:d0:82:c4:f7:9d:31:ce:7a:90:c9:44:
07:c0:46:88:8f:96:02:2f:73:d5:f9:e1:f6:d9:6f:e6:77:e5:
26:67:c2:27:77:00:1a:97:fa:d0:a1:e9:8b:5d:76:e9:c7:7e:
f2:7f:95:8f
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUTnLrMr/+q3Po0P6tcQNhpKTD99UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj
MjMxM2EzYTAeFw0yNjA2MDQyMDE5NThaFw0yNzA2MDMyMDI0NThaMDMxMTAvBgNV
BAMTKDVFQzBFRUFGMDRFREQ0Qjg3OTlEN0VBNzQzNTlGNzAwQUMzMDhFM0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC38ed9L7WzSMcaJuBk9OhhVQwt
wctzej0u1DpkkVZakJWJVAF+hCuHDvWeQaP0krap87ZP50jx5rXCBZhHR1We6TPZ
zfgXwg0iSiFY0TXxKZ5Dcyvdh5dtodu8aPwjmO0MHKYL1m6Gy/ReQxKHrm9qmcg+
nuXgNyRityOMGkz3WDL4rY+n5lD7CXTv/CEdWkPDlxBn+LH4MAraYKcvfWhcPnD1
LHvhA0mEX/8Ga6mGsMyuZdtExA8r0vGgHxGsGJP0NtragizYkHmy/Ozdk6j+8C8W
w90k0+AZHHCsUB6kTdz4cD4NujhKF0pjRgaHlXBa/3GbxzX4wvScEghrb7B3AgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUXsDurwTt1Lh5nX6nQ1n3AKwwjj4wHwYDVR0j
BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J
eE9qby5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMjM0MzUyZTMy
MzUzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzEzMjMyMzMzOC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALn1/zANBgkqhkiG9w0BAQsFAAOCAQEArhScm4aik4bFMe42N9c+WgO1QAjd
w9fV1U74/pJMbqFdoijJnRNvxzE5Y0C61J7c+M5SB36Jmuv9fPG6Kw3l2AKinCCr
2vAgeog5n0tONV+sOQ171WMeMsvVzKvwOgju5dGLCcYRbGUPPhEIQBXriAcK6hm3
I2/SpjOTVhiVBCGesLvelY++Cq82nD/8XXL6H5KG5z3UXEUjEpL5ZWL+JndClxqH
gm3aEVV8GBvWVWO9ZKLjEqqqpVfFxy0bmESNH/u4VTv36rpI2ji0hNCCxPedMc56
kMlEB8BGiI+WAi9z1fnh9tlv5nflJmfCJ3cAGpf60KHpi1126cd+8n+Vjw==
-----END CERTIFICATE-----
Generated at Sat Jun 13 07:29:10 2026 by rpki-client