Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32352e302f32342d3234203d3e20323132323338.roa
File: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (raw, json)
Hash identifier: P1+0nsQvOjxz4uhyz/dzfXbHlZHNA/BWK3bhubdLlKg=
Subject key identifier: 9F:3A:D7:E1:13:66:D3:8A:0C:17:4C:1B:55:CA:9D:11:16:BF:63:C7
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 2291C107075B6FC3EDA4D7E4CE0814E9D2CB36DA
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32352e302f32342d3234203d3e20323132323338.roa
Signing time: Mon 23 Mar 2026 09:46:51 +0000
ROA not before: Mon 23 Mar 2026 09:41:51 +0000
ROA not after: Mon 22 Mar 2027 09:46:51 +0000
asID: 212238
IP address blocks: 46.183.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:07:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:91:c1:07:07:5b:6f:c3:ed:a4:d7:e4:ce:08:14:e9:d2:cb:36:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: Mar 23 09:41:51 2026 GMT
Not After : Mar 22 09:46:51 2027 GMT
Subject: CN=9F3AD7E11366D38A0C174C1B55CA9D1116BF63C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:04:aa:ce:25:3a:7f:dd:5f:25:23:b6:77:58:
3b:5e:11:1d:b3:26:40:06:b9:6c:1c:52:5c:ed:a6:
6c:50:e5:93:66:bb:c8:1f:14:08:4d:3a:ce:ee:81:
e3:00:51:99:a8:08:ca:ef:55:59:4e:de:cf:b4:ef:
30:c0:72:e7:61:ec:48:29:e6:02:99:a0:46:28:f1:
fb:83:07:07:50:3b:67:a0:49:c0:a5:cd:cf:29:4f:
9f:04:ae:26:f2:1f:fd:32:92:6e:f8:ab:e6:b5:57:
59:a2:cd:f9:2c:2d:9a:1c:a5:5d:0a:81:9b:39:ee:
db:49:6b:f6:e5:65:04:c3:99:6a:49:82:59:6c:2d:
4a:5d:44:9a:10:db:bc:b6:0a:b3:7c:75:60:65:cf:
be:95:8f:36:f6:7a:c5:72:0f:af:4c:dd:62:f7:59:
dc:72:97:7e:57:17:a0:63:85:b1:44:85:0f:50:98:
8a:75:52:bc:94:17:dd:3d:25:49:94:2d:c4:d2:b6:
36:0a:53:95:df:84:08:58:80:33:f0:20:a7:18:57:
c1:f0:32:19:b7:a1:6f:02:e0:9a:0b:41:b5:cb:78:
bb:8e:98:0e:16:fa:8f:00:b7:9d:94:31:56:40:7c:
6e:a0:44:9b:02:fd:f0:c5:c5:af:c1:71:2e:d8:cd:
0b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:3A:D7:E1:13:66:D3:8A:0C:17:4C:1B:55:CA:9D:11:16:BF:63:C7
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32352e302f32342d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.25.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:ff:99:05:ed:4c:8c:db:62:8e:4c:6e:a8:61:45:cc:df:33:
db:fd:98:fb:3e:68:a5:5d:c1:3d:d7:ea:ec:c9:dc:e2:99:f8:
13:63:79:d7:e5:3c:07:14:d8:0b:e4:0e:61:e3:04:ab:ac:a2:
7e:a2:6d:73:8f:b9:01:50:b4:b3:63:42:03:35:3b:5f:09:69:
3a:e9:c1:08:fe:53:f1:fa:f8:27:e4:78:f8:dd:f9:f6:3c:06:
56:7e:25:aa:60:9b:fb:04:66:4e:45:42:26:52:2e:ab:66:dc:
61:2d:f6:2b:0f:ae:ff:c0:ce:80:5c:1a:7d:d4:1b:86:d6:50:
87:9a:c8:3d:13:47:c9:91:52:99:34:b9:8a:92:ee:6a:3b:73:
16:93:49:ba:43:d3:78:d7:5b:fb:c1:29:f3:7e:e3:52:56:a6:
0f:24:6a:c4:53:e5:da:0d:5e:4a:fb:a9:be:d4:57:57:09:c9:
17:e1:5d:ba:e2:c4:e5:e0:d7:d5:db:25:d3:bb:f7:b7:59:13:
07:2e:fa:70:69:2a:41:07:bb:e2:16:8d:b4:90:47:56:b5:6a:
68:c6:b3:33:06:89:45:ea:31:9b:65:de:a7:4c:d8:0d:9e:a5:
ee:77:87:48:8b:e5:f5:b1:59:ab:fc:f8:a4:08:a4:86:21:f5:
64:3e:93:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:31:34 2026 by rpki-client