Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32372e302f32342d3234203d3e20323132323338.roa
File: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (raw, json)
Hash identifier: hl0LwIkWgXiEYZpFaX3uPN7EPrDq4mPps9alNUssHF4=
Subject key identifier: 51:04:E7:20:98:B4:A8:66:C9:34:8D:D3:8D:99:55:25:AD:59:6B:1D
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 4D7146F961D5FE95145E41EF92E881A6B4CD9F83
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32372e302f32342d3234203d3e20323132323338.roa
Signing time: Mon 23 Mar 2026 09:46:51 +0000
ROA not before: Mon 23 Mar 2026 09:41:51 +0000
ROA not after: Mon 22 Mar 2027 09:46:51 +0000
asID: 212238
IP address blocks: 46.183.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:71:46:f9:61:d5:fe:95:14:5e:41:ef:92:e8:81:a6:b4:cd:9f:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: Mar 23 09:41:51 2026 GMT
Not After : Mar 22 09:46:51 2027 GMT
Subject: CN=5104E72098B4A866C9348DD38D995525AD596B1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c7:df:74:6e:68:ed:bf:d2:76:8c:ea:fe:24:
7c:6a:b8:eb:e8:11:f8:af:e7:c8:a2:0f:41:da:99:
d5:5a:e3:f6:29:23:3a:0d:20:76:52:92:ea:81:85:
c7:82:8d:b0:d9:8f:b7:ff:16:25:30:9b:56:41:c1:
32:ba:4a:b4:d6:9b:1f:64:0f:ce:20:0e:67:e5:6d:
95:ec:47:f1:02:33:e0:51:60:17:93:2d:aa:f0:fc:
21:1d:9a:09:76:23:4b:55:be:fc:9f:c3:aa:8d:f5:
7e:a5:e7:a7:f0:17:dc:cf:b5:6e:1a:4a:12:13:9a:
3b:ce:8b:34:ba:01:06:60:6a:8b:08:65:cd:cb:e3:
fa:7d:94:84:cc:89:ba:6d:7d:c6:90:e0:4c:07:dc:
67:89:29:b9:7c:74:64:b1:c3:7f:40:a2:66:9e:d3:
41:9e:74:62:66:83:3d:42:48:df:9a:4a:84:cc:e2:
d4:23:10:6d:dc:59:3a:6d:09:34:4d:3c:2f:23:48:
5c:4b:17:39:8c:24:de:4a:8f:60:19:28:35:78:32:
ea:5e:90:c7:f0:0e:1e:b9:f7:a5:9b:8a:7e:10:52:
29:98:99:be:f7:a2:a3:be:60:a3:5a:54:99:f8:d5:
27:a3:bf:f2:7f:36:b6:89:46:ed:ef:32:3e:99:e9:
49:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:04:E7:20:98:B4:A8:66:C9:34:8D:D3:8D:99:55:25:AD:59:6B:1D
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32372e302f32342d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.27.0/24
Signature Algorithm: sha256WithRSAEncryption
53:4f:45:a0:d6:2c:b0:2a:32:d0:fd:40:73:88:29:ce:c8:12:
47:58:e1:dd:14:26:f2:cc:32:0e:5b:f6:06:af:77:76:80:60:
fd:51:bf:5e:8e:90:9c:89:a9:17:4e:e6:fe:e3:ba:8b:a9:89:
f5:97:a6:f5:38:37:26:f7:5a:25:08:27:39:3a:3e:66:ab:7d:
2d:8a:32:69:53:ad:fc:8d:a3:b9:fa:2c:8e:26:7b:5c:66:71:
37:74:25:2c:53:26:37:16:b1:9d:9c:0e:68:fb:d1:08:aa:5e:
bc:aa:77:f4:d6:c4:fc:cb:5f:17:44:f2:75:85:b4:6c:6c:ac:
38:fd:b3:47:6c:76:01:50:23:82:2a:fd:58:ba:cc:a8:2b:d0:
96:6a:fe:e5:72:5a:85:5c:54:18:a9:79:84:b1:80:0e:23:fb:
e9:57:b9:3e:20:a0:7a:56:ff:b1:05:b9:32:79:f9:13:47:87:
f3:9a:c0:4f:6b:fe:e7:53:c8:47:a0:4c:55:db:81:66:c4:62:
e3:55:b9:9a:e5:0b:33:39:4f:2d:8e:81:73:03:a3:ba:9c:a7:
65:df:23:1d:73:43:e5:ce:15:c0:c6:35:09:9f:5a:14:c9:3d:
c3:a6:bb:f5:97:53:c1:78:95:de:76:50:03:91:fa:30:48:5c:
ee:ae:8d:3d
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUTXFG+WHV/pUUXkHvkuiBprTNn4MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj
YzY3N2IwMDAeFw0yNjAzMjMwOTQxNTFaFw0yNzAzMjIwOTQ2NTFaMDMxMTAvBgNV
BAMTKDUxMDRFNzIwOThCNEE4NjZDOTM0OEREMzhEOTk1NTI1QUQ1OTZCMUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCx990bmjtv9J2jOr+JHxquOvo
Efiv58iiD0HamdVa4/YpIzoNIHZSkuqBhceCjbDZj7f/FiUwm1ZBwTK6SrTWmx9k
D84gDmflbZXsR/ECM+BRYBeTLarw/CEdmgl2I0tVvvyfw6qN9X6l56fwF9zPtW4a
ShITmjvOizS6AQZgaosIZc3L4/p9lITMibptfcaQ4EwH3GeJKbl8dGSxw39Aomae
00GedGJmgz1CSN+aSoTM4tQjEG3cWTptCTRNPC8jSFxLFzmMJN5Kj2AZKDV4Mupe
kMfwDh6596Wbin4QUimYmb73oqO+YKNaVJn41Sejv/J/NraJRu3vMj6Z6UkzAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUUQTnIJi0qGbJNI3TjZlVJa1Zax0wHwYDVR0j
BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0
Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4
bmV3QS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAt
NmQxZS00YWU0LTkxNzctZDkzOGU5ODA0Mzk1LzAvMzQzNjJlMzEzODMzMmUzMjM3
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTMyMzIzMzM4LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
LrcbMA0GCSqGSIb3DQEBCwUAA4IBAQBTT0Wg1iywKjLQ/UBziCnOyBJHWOHdFCby
zDIOW/YGr3d2gGD9Ub9ejpCciakXTub+47qLqYn1l6b1ODcm91olCCc5Oj5mq30t
ijJpU638jaO5+iyOJntcZnE3dCUsUyY3FrGdnA5o+9EIql68qnf01sT8y18XRPJ1
hbRsbKw4/bNHbHYBUCOCKv1YusyoK9CWav7lclqFXFQYqXmEsYAOI/vpV7k+IKB6
Vv+xBbkyefkTR4fzmsBPa/7nU8hHoExV24FmxGLjVbma5QszOU8tjoFzA6O6nKdl
3yMdc0PlzhXAxjUJn1oUyT3Dprv1l1PBeJXedlADkfowSFzuro09
-----END CERTIFICATE-----
Generated at Thu Mar 26 17:38:48 2026 by rpki-client