Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3138322e302f32342d3234203d3e20323131343135.roa
File: 39352e3231342e3138322e302f32342d3234203d3e20323131343135.roa (raw, json)
Hash identifier: S4ddw73hDoSEhNKtyBEjIhztHOdB0qUYUD8sWKdWm3o=
Subject key identifier: FF:01:5F:74:F5:62:01:9B:FC:67:AE:AD:21:EE:AD:8C:76:F3:78:C9
Certificate issuer: /CN=92f49de8684f1287f4f6cb185d5cf7de80c90b94
Certificate serial: 788A531421CEB3714E01420A12F95FBD4CDDF4E8
Authority key identifier: 92:F4:9D:E8:68:4F:12:87:F4:F6:CB:18:5D:5C:F7:DE:80:C9:0B:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3138322e302f32342d3234203d3e20323131343135.roa
Signing time: Tue 24 Mar 2026 07:46:53 +0000
ROA not before: Tue 24 Mar 2026 07:41:53 +0000
ROA not after: Tue 23 Mar 2027 07:46:53 +0000
asID: 211415
IP address blocks: 95.214.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.crl
rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.mft
rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:8a:53:14:21:ce:b3:71:4e:01:42:0a:12:f9:5f:bd:4c:dd:f4:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f49de8684f1287f4f6cb185d5cf7de80c90b94
Validity
Not Before: Mar 24 07:41:53 2026 GMT
Not After : Mar 23 07:46:53 2027 GMT
Subject: CN=FF015F74F562019BFC67AEAD21EEAD8C76F378C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:8e:0f:2d:2b:07:e9:d6:89:68:ec:13:80:a7:
d7:fd:9e:fb:8d:c9:d9:bc:54:ee:49:26:05:0d:d8:
9e:cc:65:07:61:0e:36:b0:34:de:c0:d2:e4:f6:1c:
3b:31:c2:7e:53:89:b9:40:6e:9d:81:fd:f6:23:d1:
2c:01:7a:a2:69:ed:af:85:64:1a:b2:43:99:d8:e1:
07:59:a6:7a:c2:4b:01:13:3f:d8:f9:e9:5c:4c:8d:
06:1d:66:a2:13:d1:1e:a7:63:b8:91:96:7d:bd:5d:
6c:57:d9:58:56:1c:73:b3:b2:a1:7b:dc:18:fd:94:
7c:95:ec:21:f6:c1:7f:47:08:d2:28:c0:3f:d7:3e:
8e:06:12:17:da:ee:5a:8d:32:0c:b9:a8:71:48:77:
e4:fa:26:65:a8:af:27:b4:bb:f3:f6:1a:93:58:a9:
65:db:7c:21:72:39:06:ec:f3:7b:6f:21:78:dd:34:
53:64:56:aa:a5:17:47:c7:5c:d6:45:a4:84:f1:1e:
0c:ac:7d:26:2b:77:5d:c7:08:4c:f4:85:92:07:9a:
0f:08:d8:78:51:0c:d7:79:b3:88:f3:2f:72:32:ac:
ec:29:13:85:bb:58:93:1b:6b:db:07:69:00:a1:be:
fc:7e:11:f4:1f:f9:ef:31:7e:c6:28:01:51:52:2f:
73:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:01:5F:74:F5:62:01:9B:FC:67:AE:AD:21:EE:AD:8C:76:F3:78:C9
X509v3 Authority Key Identifier:
keyid:92:F4:9D:E8:68:4F:12:87:F4:F6:CB:18:5D:5C:F7:DE:80:C9:0B:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3138322e302f32342d3234203d3e20323131343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.182.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:5c:36:1d:16:71:1a:6a:27:27:a1:61:99:89:40:ae:29:81:
da:6d:eb:f7:15:b6:eb:b5:c5:27:ba:91:a6:ed:b0:6c:0d:7c:
54:c3:31:4c:8e:0d:13:9c:31:23:4a:de:6e:4f:ae:e2:58:b8:
29:07:92:d4:08:b9:c1:21:09:37:1b:38:da:ca:a9:6e:72:1f:
07:f7:37:86:20:40:cd:75:70:23:f1:c1:d6:b4:f6:d1:81:69:
20:99:eb:4e:3f:b5:f3:de:a9:75:6e:4a:f6:b2:dc:54:f7:66:
65:e6:96:96:a8:f9:19:52:1b:32:24:71:92:65:35:d0:87:bb:
2e:3e:e5:0e:44:67:07:a5:c6:91:8c:ca:42:aa:1a:9b:2d:ea:
3a:c3:a3:76:ae:ae:53:21:60:d6:c1:fd:32:05:62:46:d3:3f:
e6:9e:c6:98:f5:8d:f8:27:1f:7e:a9:e2:1b:44:b4:94:e6:a2:
a1:a7:f4:9c:61:0d:a3:98:1d:22:d6:a7:dc:dd:9c:dd:7e:31:
d8:0b:d3:d9:c4:6b:62:2c:9c:9f:8b:e9:fc:e3:9d:d2:96:8a:
63:0b:28:4e:97:10:23:ce:e2:8c:6d:a4:a9:78:91:b6:a6:31:
2f:f0:4d:96:e5:fc:08:f5:81:c6:a8:e1:16:34:2c:b8:02:f9:
c4:2e:b5:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:26:25 2026 by rpki-client