Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33372e302f32342d3234203d3e20323638363234.roa
File: 34352e3134302e33372e302f32342d3234203d3e20323638363234.roa (raw, json)
Hash identifier: vQUyftefjL6i5dozCp9sc9uxGMaQuzN4Dd7LhfPpuCM=
Subject key identifier: 0C:53:53:26:4C:17:F6:D6:19:57:BF:AC:E1:B9:73:52:2C:7E:60:1B
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 476DF01A274A8C22E8C04814576C831CB3374865
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33372e302f32342d3234203d3e20323638363234.roa
Signing time: Wed 25 Mar 2026 17:46:54 +0000
ROA not before: Wed 25 Mar 2026 17:41:54 +0000
ROA not after: Wed 24 Mar 2027 17:46:54 +0000
asID: 268624
IP address blocks: 45.140.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:6d:f0:1a:27:4a:8c:22:e8:c0:48:14:57:6c:83:1c:b3:37:48:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Mar 25 17:41:54 2026 GMT
Not After : Mar 24 17:46:54 2027 GMT
Subject: CN=0C5353264C17F6D61957BFACE1B973522C7E601B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e8:8f:f5:2a:a8:75:c5:8b:45:7e:ee:1d:4a:
2e:6e:18:46:ef:c3:32:f5:53:ed:e6:44:f2:3f:d6:
5d:26:c1:c4:42:a1:9a:75:32:75:25:64:e2:df:e3:
59:4b:98:53:2f:fc:04:b3:f5:7b:35:f9:95:ae:fa:
11:9d:c9:dd:40:c1:73:dc:32:ec:7b:db:2b:60:60:
73:63:88:17:13:0a:49:7c:03:75:af:5d:6e:0f:c9:
94:2c:9b:b5:76:a8:38:93:9a:85:50:1d:67:57:c9:
2f:92:36:90:0e:a4:61:f8:7c:13:88:5d:f6:fa:9f:
89:5d:ed:7a:d5:b8:c9:44:27:81:92:63:69:68:85:
c8:17:b3:ea:53:01:fe:4e:1f:a9:d7:24:94:bf:4d:
e4:57:eb:20:78:96:28:05:5a:ab:62:59:32:98:e1:
d1:e7:aa:2a:8b:4e:19:12:e5:f8:ad:8c:c4:03:5d:
1e:f3:bd:70:53:80:c3:01:99:18:dc:e4:34:b3:5f:
1f:84:b5:d7:dc:d5:e5:c8:18:32:df:fa:a4:99:6e:
7c:76:56:f6:92:a6:7a:8f:22:51:ca:f6:d1:14:87:
fa:38:12:f8:d4:be:01:ea:2b:64:83:12:84:93:b2:
81:f1:5d:43:e5:77:ae:e8:f4:65:6b:20:a7:31:1d:
ea:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:53:53:26:4C:17:F6:D6:19:57:BF:AC:E1:B9:73:52:2C:7E:60:1B
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33372e302f32342d3234203d3e20323638363234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.37.0/24
Signature Algorithm: sha256WithRSAEncryption
66:d5:3e:4f:fa:e8:e7:58:f9:32:de:bd:f9:cc:c7:55:38:2c:
d3:90:fb:02:ff:a7:60:bd:40:a4:21:22:4c:70:22:34:e5:f5:
ba:28:49:7e:14:f8:a1:0b:dd:90:49:60:d3:bf:68:3f:ed:3c:
b3:be:c9:6b:e9:0d:88:76:74:bf:20:0c:dd:50:07:d8:29:0a:
6f:85:62:78:b9:a6:fe:7e:3c:e2:be:bf:97:23:8b:7a:53:4b:
9b:a8:d2:c7:bf:84:39:e9:dc:f0:3f:3b:b1:21:1d:f1:e4:98:
18:32:f0:ef:ca:ce:d3:ee:56:76:af:d7:c2:e6:e1:7f:7d:10:
3e:ac:03:c4:27:54:73:ee:0a:48:76:55:50:96:63:0a:5d:e5:
1d:70:62:20:1b:8b:e6:a5:9b:15:fd:e3:60:1d:20:91:7c:e7:
51:4b:ba:84:30:ac:4a:d9:60:7c:b6:80:c3:e3:32:34:1d:4b:
ce:d6:90:6b:61:fe:e1:10:f5:d5:e5:43:9e:76:6b:d8:33:d0:
fa:d5:8c:96:a0:3f:8d:d6:fb:31:d2:ab:d4:38:cc:4d:da:c5:
f9:0f:3b:d2:65:f4:1e:67:67:77:ed:11:b1:50:9d:55:d6:1c:
c9:c8:b9:46:3c:1b:08:f4:a4:5e:af:10:2d:df:25:3d:7e:0b:
2f:5a:0b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 23:20:49 2026 by rpki-client