Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e3135302e3133392e302f32342d3234203d3e20383334.roa
File: 3138352e3135302e3133392e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: Q5ipEGwexIOevhBrWRyPpmsWmxIoPVDGZcDXfS/F6So=
Subject key identifier: A1:F0:93:F3:2F:0D:83:1C:16:CF:59:6A:20:CE:05:24:08:58:C8:E8
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 4A3E874E840028D3BD628FB4D1B6999D4C330B99
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e3135302e3133392e302f32342d3234203d3e20383334.roa
Signing time: Thu 07 May 2026 08:13:03 +0000
ROA not before: Thu 07 May 2026 08:08:03 +0000
ROA not after: Thu 06 May 2027 08:13:03 +0000
asID: 834
IP address blocks: 185.150.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:3e:87:4e:84:00:28:d3:bd:62:8f:b4:d1:b6:99:9d:4c:33:0b:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: May 7 08:08:03 2026 GMT
Not After : May 6 08:13:03 2027 GMT
Subject: CN=A1F093F32F0D831C16CF596A20CE05240858C8E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2f:7b:ea:15:8e:8d:ed:5d:82:c2:f9:cd:27:
9c:d6:79:61:77:ef:c0:47:f5:51:e3:d8:7e:27:c3:
c5:31:50:15:69:6e:0c:b5:8f:a1:f7:82:64:28:14:
65:42:bf:6b:67:33:29:3b:f3:2c:20:19:cb:fe:73:
1e:15:14:3f:d0:88:33:dc:27:b8:e1:76:53:1d:26:
36:65:eb:ba:ac:a1:5d:53:06:22:4f:04:2c:30:31:
32:da:e4:66:cb:53:2b:09:f0:80:a2:b7:d0:82:57:
95:b5:e8:3d:2c:c3:f1:ff:5d:ae:57:ac:8e:a6:89:
73:90:87:18:f3:b6:47:7b:45:a0:91:8e:5d:dc:a9:
c6:21:ae:9c:2f:56:33:d1:e8:83:d3:9f:db:38:ae:
1b:b5:8c:18:29:a4:86:e2:30:11:b6:ed:a0:09:60:
99:1a:d6:9a:d2:52:98:0c:b4:73:12:34:25:17:59:
a2:d5:c8:35:a5:cf:4d:f1:97:a6:58:a9:7d:51:00:
98:9c:38:d1:e7:7e:0f:6d:53:7b:ee:1f:f8:1a:ee:
a8:bb:4f:63:a5:e2:03:b7:5a:fb:b7:ae:88:90:79:
49:13:fd:40:29:e5:37:34:96:64:49:9d:c8:b6:56:
2f:77:cd:09:e9:50:cc:78:ae:c1:d1:3e:7e:5f:d5:
83:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F0:93:F3:2F:0D:83:1C:16:CF:59:6A:20:CE:05:24:08:58:C8:E8
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e3135302e3133392e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.139.0/24
Signature Algorithm: sha256WithRSAEncryption
63:9d:7e:aa:54:13:3e:84:df:77:23:c6:ba:3d:91:51:be:61:
83:cd:a5:2c:07:d5:9f:0d:27:d4:d6:08:80:a6:8e:90:a2:b9:
7a:90:ca:44:c6:22:9a:0a:74:cc:f5:2f:74:05:22:ed:16:9f:
78:28:fa:06:99:c0:dd:60:c4:32:77:a2:ca:0a:8b:e5:5b:62:
88:70:ce:d5:e4:83:cf:10:e7:12:ad:31:5c:8f:c3:79:66:f2:
f1:de:e4:59:6b:0c:b0:f4:a7:ac:1e:58:fb:53:93:fb:f2:4a:
22:f4:52:d9:ad:34:18:e3:38:9c:f7:d9:92:aa:e7:71:c5:0c:
86:c7:5a:5c:74:38:b6:60:67:47:e3:0c:52:0d:e1:87:eb:0f:
48:bd:5e:ed:b7:34:ea:42:fe:ff:1e:cb:eb:03:2f:98:b7:70:
40:93:c5:ac:29:07:7b:f5:ee:f1:13:31:8c:87:89:c4:75:40:
c5:7f:68:7c:04:be:90:94:b3:47:e6:ec:51:79:a9:87:36:e8:
aa:16:5f:a2:16:b3:3b:ce:25:01:65:28:2c:51:7a:7f:8a:9f:
dd:ac:b3:b3:60:08:80:59:cb:aa:9e:13:93:91:57:05:14:25:
7b:a7:8b:ca:f5:61:17:ee:c5:b1:3f:4b:de:cf:71:c2:0e:46:
5f:28:c0:5f
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUSj6HToQAKNO9Yo+00baZnUwzC5kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDQ4YWY2NjViZjhiMTg2YjcwMjIwNzU5ZDI2YzU3OGY0
MGI1ZjNlMzAeFw0yNjA1MDcwODA4MDNaFw0yNzA1MDYwODEzMDNaMDMxMTAvBgNV
BAMTKEExRjA5M0YzMkYwRDgzMUMxNkNGNTk2QTIwQ0UwNTI0MDg1OEM4RTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChL3vqFY6N7V2CwvnNJ5zWeWF3
78BH9VHj2H4nw8UxUBVpbgy1j6H3gmQoFGVCv2tnMyk78ywgGcv+cx4VFD/QiDPc
J7jhdlMdJjZl67qsoV1TBiJPBCwwMTLa5GbLUysJ8ICit9CCV5W16D0sw/H/Xa5X
rI6miXOQhxjztkd7RaCRjl3cqcYhrpwvVjPR6IPTn9s4rhu1jBgppIbiMBG27aAJ
YJka1prSUpgMtHMSNCUXWaLVyDWlz03xl6ZYqX1RAJicONHnfg9tU3vuH/ga7qi7
T2Ol4gO3Wvu3roiQeUkT/UAp5Tc0lmRJnci2Vi93zQnpUMx4rsHRPn5f1YNnAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUofCT8y8NgxwWz1lqIM4FJAhYyOgwHwYDVR0j
BBgwFoAUBIr2Zb+LGGtwIgdZ0mxXj0C18+MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODJhOWJmNWItMzljMS00MDUwLWIwNzMtNDgwNzViODYx
ZDg3LzAvMDQ4QUY2NjVCRjhCMTg2QjcwMjIwNzU5RDI2QzU3OEY0MEI1RjNFMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0JJcjJaYi1MR0d0d0lnZFowbXhYajBD
MTgtTS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODJhOWJmNWIt
MzljMS00MDUwLWIwNzMtNDgwNzViODYxZDg3LzAvMzEzODM1MmUzMTM1MzAyZTMx
MzMzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmW
izANBgkqhkiG9w0BAQsFAAOCAQEAY51+qlQTPoTfdyPGuj2RUb5hg82lLAfVnw0n
1NYIgKaOkKK5epDKRMYimgp0zPUvdAUi7RafeCj6BpnA3WDEMneiygqL5VtiiHDO
1eSDzxDnEq0xXI/DeWby8d7kWWsMsPSnrB5Y+1OT+/JKIvRS2a00GOM4nPfZkqrn
ccUMhsdaXHQ4tmBnR+MMUg3hh+sPSL1e7bc06kL+/x7L6wMvmLdwQJPFrCkHe/Xu
8RMxjIeJxHVAxX9ofAS+kJSzR+bsUXmphzboqhZfohazO84lAWUoLFF6f4qf3ayz
s2AIgFnLqp4Tk5FXBRQle6eLyvVhF+7FsT9L3s9xwg5GXyjAXw==
-----END CERTIFICATE-----
Generated at Wed May 13 09:19:03 2026 by rpki-client