Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
File: 38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa (raw, json)
Hash identifier: /1LA/E0ax4YFPiVUKa2fLHkaE5B2wTZki5MzYC9FUwM=
Subject key identifier: F8:67:F7:1C:9A:5E:E4:87:EF:79:51:C5:CD:50:09:3F:20:2B:E7:98
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 62C563BCD4F4728D9B1E2EC275D2E119C83C479B
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
Signing time: Sun 10 May 2026 12:47:11 +0000
ROA not before: Sun 10 May 2026 12:42:11 +0000
ROA not after: Sun 09 May 2027 12:47:11 +0000
asID: 199415
IP address blocks: 83.150.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 16:55:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:c5:63:bc:d4:f4:72:8d:9b:1e:2e:c2:75:d2:e1:19:c8:3c:47:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: May 10 12:42:11 2026 GMT
Not After : May 9 12:47:11 2027 GMT
Subject: CN=F867F71C9A5EE487EF7951C5CD50093F202BE798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:33:a2:3e:14:c6:d3:09:0a:dc:31:8c:d5:54:
be:15:60:4d:29:e6:18:f4:df:b3:84:0e:dc:fd:5a:
27:01:57:bc:67:83:31:e5:3d:97:18:d8:0a:e5:5b:
2c:96:c1:e2:e0:b8:71:8e:98:c1:e8:8d:9a:25:d5:
58:eb:32:cf:c8:66:d5:66:89:19:b2:5b:0e:d6:3f:
fa:66:39:48:c0:f9:98:98:7f:56:8e:e8:e7:ec:65:
99:ea:4c:3b:06:b4:b5:6d:07:04:da:06:41:78:eb:
b2:2e:54:ec:97:31:ea:9d:96:6a:dd:3d:84:d0:de:
5a:3a:b8:7e:58:1b:c5:a5:af:a6:1e:62:20:be:78:
88:17:2b:24:82:60:bc:da:14:17:20:e0:17:7e:04:
94:73:b2:0e:fa:04:40:a8:67:2c:fe:57:f4:4c:0e:
fb:15:6b:40:cd:5e:9e:f3:2c:f3:b5:e2:cb:ee:f0:
e9:49:36:41:c8:f5:ed:c3:9d:43:60:d9:e8:af:7f:
90:82:1b:47:0b:58:ed:4a:67:b7:b3:7e:28:35:fa:
b7:e1:bc:d9:f0:d9:ef:82:01:90:c5:e6:bf:67:ee:
70:9b:41:94:55:8a:66:53:ee:58:34:38:25:7a:4e:
0a:bd:dc:38:92:28:e7:8f:f6:c9:93:1a:6e:ca:aa:
63:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:67:F7:1C:9A:5E:E4:87:EF:79:51:C5:CD:50:09:3F:20:2B:E7:98
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.218.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:2d:dc:37:45:52:2a:b5:d1:f4:c7:4c:f6:04:cb:29:84:52:
86:89:d2:07:02:82:6f:e4:12:fd:28:f9:e9:47:f1:bb:73:5c:
2d:50:98:29:16:41:06:d4:bc:76:9f:21:93:f5:0c:b3:7f:99:
4e:6a:d8:48:21:72:61:85:75:50:74:8e:87:ca:08:79:f4:a7:
8b:53:b4:78:46:45:60:10:f3:bd:99:a3:fa:5c:31:97:a5:a8:
88:83:60:70:f0:66:3c:58:4a:6a:66:b4:1e:ce:3a:50:ed:37:
a1:dc:8a:36:5f:5c:10:6b:26:a7:ee:38:ce:07:ae:df:a0:44:
c1:d4:d3:8e:dc:e3:6d:40:f1:2d:5a:24:f3:23:b7:69:b6:de:
4e:e5:4b:b0:25:a8:08:36:9b:0b:f0:c4:88:82:a9:3e:a4:62:
90:3b:f8:8c:e7:d3:50:49:24:f6:8b:23:78:fe:e0:8a:4a:1a:
b3:4f:a0:a7:11:4f:d1:72:b9:fa:ea:c3:c5:d9:8d:58:fc:9e:
ac:30:bf:92:98:5f:4a:ad:64:70:ee:e3:55:59:ce:b3:13:92:
25:19:2b:55:30:85:22:b0:b4:2e:9e:38:c9:a8:1f:01:ce:ba:
b3:68:ef:31:28:64:93:19:ad:a4:00:8d:82:71:d6:4e:08:1e:
61:78:00:d6
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUYsVjvNT0co2bHi7CddLhGcg8R5swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWU1MTc5YmIxNzU3MDY4ZDcwMjg1MTBmZWViMTE3N2Fh
N2NjODgxODAeFw0yNjA1MTAxMjQyMTFaFw0yNzA1MDkxMjQ3MTFaMDMxMTAvBgNV
BAMTKEY4NjdGNzFDOUE1RUU0ODdFRjc5NTFDNUNENTAwOTNGMjAyQkU3OTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9M6I+FMbTCQrcMYzVVL4VYE0p
5hj037OEDtz9WicBV7xngzHlPZcY2ArlWyyWweLguHGOmMHojZol1VjrMs/IZtVm
iRmyWw7WP/pmOUjA+ZiYf1aO6OfsZZnqTDsGtLVtBwTaBkF467IuVOyXMeqdlmrd
PYTQ3lo6uH5YG8Wlr6YeYiC+eIgXKySCYLzaFBcg4Bd+BJRzsg76BECoZyz+V/RM
DvsVa0DNXp7zLPO14svu8OlJNkHI9e3DnUNg2eivf5CCG0cLWO1KZ7ezfig1+rfh
vNnw2e+CAZDF5r9n7nCbQZRVimZT7lg0OCV6Tgq93DiSKOeP9smTGm7KqmNbAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU+Gf3HJpe5IfveVHFzVAJPyAr55gwHwYDVR0j
BBgwFoAUXlF5uxdXBo1wKFEP7rEXeqfMiBgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODNlNDc1N2YtZDM3Zi00ZmQ2LWE2OWItZDc0YmRkNmI4
N2RjLzAvNUU1MTc5QkIxNzU3MDY4RDcwMjg1MTBGRUVCMTE3N0FBN0NDODgxOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hsRjV1eGRYQm8xd0tGRVA3ckVYZXFm
TWlCZy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODNlNDc1N2Yt
ZDM3Zi00ZmQ2LWE2OWItZDc0YmRkNmI4N2RjLzAvMzgzMzJlMzEzNTMwMmUzMjMx
MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM5MzkzNDMxMzUucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABTltowDQYJKoZIhvcNAQELBQADggEBAKst3DdFUiq10fTHTPYEyymEUoaJ0gcC
gm/kEv0o+elH8btzXC1QmCkWQQbUvHafIZP1DLN/mU5q2EghcmGFdVB0jofKCHn0
p4tTtHhGRWAQ872Zo/pcMZelqIiDYHDwZjxYSmpmtB7OOlDtN6HcijZfXBBrJqfu
OM4Hrt+gRMHU047c421A8S1aJPMjt2m23k7lS7AlqAg2mwvwxIiCqT6kYpA7+Izn
01BJJPaLI3j+4IpKGrNPoKcRT9Fyufrqw8XZjVj8nqwwv5KYX0qtZHDu41VZzrMT
kiUZK1UwhSKwtC6eOMmoHwHOurNo7zEoZJMZraQAjYJx1k4IHmF4ANY=
-----END CERTIFICATE-----
Generated at Wed May 13 07:08:57 2026 by rpki-client