Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS29262.roa
File: AS29262.roa (raw, json)
Hash identifier: fq4ZRM7LYZAwQXVcOXk9VcHIg7jccNa1rhkI9u74jh8=
Subject key identifier: 6C:6C:E0:54:02:16:C7:27:19:7F:44:79:5E:30:F4:D3:B0:FE:B5:90
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 5468789C42E4E450BD4A5CB1B3F8AE093C1A0D4A
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS29262.roa
Signing time: Mon 11 May 2026 16:10:47 +0000
ROA not before: Mon 11 May 2026 16:05:47 +0000
ROA not after: Mon 10 May 2027 16:10:47 +0000
asID: 29262
IP address blocks: 2a02:f240::/29 maxlen: 29
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:68:78:9c:42:e4:e4:50:bd:4a:5c:b1:b3:f8:ae:09:3c:1a:0d:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: May 11 16:05:47 2026 GMT
Not After : May 10 16:10:47 2027 GMT
Subject: CN=6C6CE0540216C727197F44795E30F4D3B0FEB590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5e:41:70:89:29:44:74:40:4b:5e:40:9f:75:
26:84:3c:bd:fb:15:3a:f3:ee:f6:5b:3f:98:6a:52:
74:d3:38:d1:1a:2a:64:9f:31:8e:4c:db:a8:6e:1f:
3b:04:66:45:c7:23:0b:b2:d7:33:3c:55:5c:28:c4:
5e:f8:08:2c:4e:8b:50:fc:74:51:aa:5c:32:53:fd:
a1:d9:55:84:00:46:01:ee:1f:29:f7:a6:f7:4b:73:
84:c6:30:28:80:13:e3:d6:8c:a0:74:7f:fd:9d:e6:
60:b3:ff:dd:00:2a:69:95:8e:d7:59:99:81:bb:f1:
61:0c:ae:bc:fa:68:d0:b5:0c:1b:b4:9b:6e:2a:06:
8c:c3:47:33:4f:12:d8:c0:10:d4:2c:a5:4f:8e:5d:
c2:a5:45:91:65:f7:45:b1:5a:fb:60:cc:38:8b:4a:
ce:73:10:07:5b:3e:ff:58:c2:b9:6e:aa:7f:b0:7f:
ae:b0:a9:fc:0b:a5:18:a1:81:45:bd:53:30:2a:b7:
84:c8:f0:d4:7a:0b:dc:89:97:f7:08:97:d3:d0:30:
3b:b4:07:f3:c0:18:36:a7:5f:ea:73:97:08:ef:0c:
04:37:d1:dc:e1:39:1c:b1:2d:63:24:40:0b:51:14:
e8:39:46:6f:b3:7d:92:50:22:76:0a:46:96:63:9b:
f7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:6C:E0:54:02:16:C7:27:19:7F:44:79:5E:30:F4:D3:B0:FE:B5:90
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS29262.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:f240::/29
Signature Algorithm: sha256WithRSAEncryption
15:99:65:9c:3c:28:b1:39:a6:de:ae:1a:44:0f:d9:4b:52:bd:
6c:76:0e:2c:cf:69:88:08:d9:17:c0:bb:1a:12:66:b4:5c:55:
54:b9:8e:99:81:b2:d9:f3:cf:b1:b1:ab:db:f3:f8:18:0f:63:
82:08:28:7d:c2:07:d3:b4:50:d9:47:52:c7:4a:3b:b5:11:94:
ff:ed:fc:17:19:f8:eb:be:04:b5:90:39:b0:ee:aa:8d:6f:ac:
b4:48:d9:80:00:1c:2e:a1:50:60:b9:c3:68:52:9e:80:0a:9e:
8c:0a:6e:68:27:bd:d7:2c:81:d4:44:e4:f0:05:5b:8a:fd:93:
14:e3:3c:d4:10:c7:91:1e:cb:c3:88:57:50:a6:53:bf:21:80:
10:28:fc:8c:2f:16:ee:b3:67:62:01:88:cd:e8:20:7a:ad:36:
7f:12:04:80:6b:26:e9:f5:4c:7e:2d:8b:ff:7c:b4:fc:8b:ba:
d8:04:a4:5e:6d:66:40:da:5f:1e:ac:61:06:82:b7:d1:17:56:
fe:2d:56:42:d0:53:07:c6:4f:c6:60:cd:89:b7:af:bf:10:3b:
cb:33:69:9d:eb:44:8e:16:dc:ec:a0:72:ee:47:aa:6f:9f:9d:
15:a8:c0:d1:0c:c1:9e:61:98:88:79:da:cf:4d:61:e3:ce:44:
dd:e2:90:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:31:43 2026 by rpki-client