Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33392e302f32342d3234203d3e20323132333834.roa
File: 34352e3134302e33392e302f32342d3234203d3e20323132333834.roa (raw, json)
Hash identifier: Esl6ulWYD18TsVsX1ACUNU7ssOutotmIieLYjxGWe6k=
Subject key identifier: 63:0C:B6:B3:D2:C7:41:53:50:68:8B:1C:8A:9B:18:E1:D2:45:9B:7E
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 173F767A48F5D64823398D3ABF7B38211095A369
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33392e302f32342d3234203d3e20323132333834.roa
Signing time: Thu 19 Mar 2026 10:46:48 +0000
ROA not before: Thu 19 Mar 2026 10:41:48 +0000
ROA not after: Thu 18 Mar 2027 10:46:48 +0000
asID: 212384
IP address blocks: 45.140.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:26:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:3f:76:7a:48:f5:d6:48:23:39:8d:3a:bf:7b:38:21:10:95:a3:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Mar 19 10:41:48 2026 GMT
Not After : Mar 18 10:46:48 2027 GMT
Subject: CN=630CB6B3D2C7415350688B1C8A9B18E1D2459B7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f7:1e:11:19:3f:11:ae:3b:e4:16:a7:37:8d:
8b:54:82:c3:d0:b3:d6:9d:1b:36:a5:8e:f3:28:63:
5f:8d:d0:e7:38:2f:b5:13:03:52:7b:57:0c:3b:0c:
fc:0e:bd:7b:02:d3:7f:e4:a0:f6:e6:97:76:0f:42:
fe:8b:e0:54:7b:7b:64:52:03:2f:49:a0:ab:1d:a3:
93:fc:f9:c1:be:08:8c:12:2d:94:ef:43:5c:81:77:
dc:2a:93:14:99:f3:60:4d:9b:36:70:6c:20:42:7a:
b3:1b:3f:0e:00:87:94:bb:ed:95:ef:8e:40:13:ba:
01:2c:78:60:94:66:22:c4:b9:fe:e1:83:35:61:d6:
7c:3c:ec:9b:ed:89:ab:75:2b:cc:7f:c1:89:fb:af:
43:3b:76:3e:3b:1a:90:68:bb:48:31:1f:dc:9e:91:
15:b1:57:ff:12:5c:91:60:ba:c7:88:8e:53:e8:1d:
fe:75:47:27:a1:23:78:0f:57:d4:a8:a2:c1:11:e7:
21:3e:15:2a:1d:55:27:58:8a:ef:8b:19:cf:e7:58:
03:79:f0:b1:8b:b1:b2:7d:2b:43:10:57:02:c8:e0:
a4:e9:cb:91:42:be:2f:61:76:33:55:9c:a7:33:08:
56:af:70:a1:c5:3f:64:5c:94:d9:19:f4:84:46:91:
f1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0C:B6:B3:D2:C7:41:53:50:68:8B:1C:8A:9B:18:E1:D2:45:9B:7E
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33392e302f32342d3234203d3e20323132333834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.39.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:e4:ea:09:25:53:74:19:2f:81:ad:fd:34:2d:9f:ac:20:29:
59:6b:31:57:bf:1d:73:81:e0:26:6b:8e:e9:68:5f:ea:5d:44:
de:93:a8:f5:eb:da:19:29:85:55:46:84:6a:50:4a:2e:ee:7f:
78:5a:22:11:c2:dc:3e:83:ac:90:cd:10:90:6f:cb:fb:1a:e8:
1a:79:15:05:be:76:85:0a:e0:b9:03:92:b3:ef:2b:3c:7c:02:
6c:e6:56:15:5a:b2:c8:89:fc:ed:ac:68:ea:9b:55:ff:b7:5a:
4c:49:95:cd:27:d4:09:bd:0b:35:b1:e4:89:d9:ef:35:7d:7f:
8d:4e:04:7b:7a:e7:27:dc:e9:43:51:21:9a:90:9e:f2:88:82:
03:e0:59:6d:b0:f0:26:27:89:66:d1:30:a0:eb:c9:53:59:49:
d2:b8:b1:b1:41:7f:d1:83:eb:b2:d1:e0:16:c7:e2:c7:23:24:
25:8e:40:ad:6c:fe:45:8c:73:14:db:35:71:1f:e1:6c:b8:2f:
c5:00:20:c4:b1:61:71:9e:23:d9:b7:db:be:0b:ec:2b:27:cc:
63:30:c0:1a:10:3d:12:a6:ed:bc:db:f2:f4:d4:08:07:5a:eb:
6b:ab:08:41:e6:4c:b5:43:17:0e:0f:62:8b:ae:e2:48:72:33:
77:fc:53:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:56:33 2026 by rpki-client