Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234332e302f32342d3234203d3e20313337323335.roa
File: 34352e3134352e3234332e302f32342d3234203d3e20313337323335.roa (raw, json)
Hash identifier: 7BiOwrAZwqxIs6DowRftpIHqOiJycxbBHamV+aS/yB8=
Subject key identifier: 83:F7:BB:9F:A2:98:0F:85:FB:3A:CF:AE:A6:CD:96:99:36:75:12:EE
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 2C34EBD1C15A7FE101428FB5D98E4E4A5294EB58
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234332e302f32342d3234203d3e20313337323335.roa
Signing time: Thu 23 Apr 2026 09:47:05 +0000
ROA not before: Thu 23 Apr 2026 09:42:05 +0000
ROA not after: Thu 22 Apr 2027 09:47:05 +0000
asID: 137235
IP address blocks: 45.145.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 11:54:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:34:eb:d1:c1:5a:7f:e1:01:42:8f:b5:d9:8e:4e:4a:52:94:eb:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Apr 23 09:42:05 2026 GMT
Not After : Apr 22 09:47:05 2027 GMT
Subject: CN=83F7BB9FA2980F85FB3ACFAEA6CD9699367512EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b3:82:ae:d9:b9:09:12:96:84:d5:26:3e:a6:
4b:56:3d:b6:42:37:be:18:e4:d6:d7:d8:a3:76:b6:
ab:78:61:9e:73:89:57:81:9d:e5:76:72:66:c3:e8:
36:e1:19:75:6c:4c:1a:bd:03:04:9f:20:ee:b4:45:
f2:ea:3b:d4:af:86:2a:c4:72:3a:49:74:0f:72:35:
98:ef:55:8f:4a:87:ba:69:05:bd:40:54:1c:b2:f4:
a5:59:41:fc:c4:6a:9d:72:75:e7:04:8e:fd:ff:54:
36:7d:fa:73:36:4f:c9:b9:7d:4c:d9:25:b8:3e:33:
19:aa:b8:b5:1b:23:a4:3c:46:6a:4e:03:22:22:dc:
ac:3f:9f:53:16:fc:42:c6:ef:26:73:b3:22:93:04:
8a:4e:d4:cf:bb:df:7b:55:4c:e0:3a:ec:12:07:be:
86:7f:63:9e:b0:4b:fe:a8:2f:6e:06:6b:ba:58:3c:
14:19:40:69:01:75:d3:58:1c:f8:56:49:f3:59:fb:
76:a1:39:ee:53:44:ce:54:85:ce:fc:f0:f1:70:da:
23:3d:2b:30:90:17:5f:0f:88:63:23:d4:af:a9:ef:
e7:ff:22:99:c7:ad:99:4a:7b:a8:7c:b6:c4:d9:39:
d7:58:4b:bc:a0:40:52:94:6f:84:e1:c7:1f:6c:89:
06:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:F7:BB:9F:A2:98:0F:85:FB:3A:CF:AE:A6:CD:96:99:36:75:12:EE
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234332e302f32342d3234203d3e20313337323335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.243.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:1b:47:4f:54:33:36:7b:41:c8:7e:33:8c:ca:e4:bb:4f:61:
7d:47:d8:79:56:2d:66:4b:72:fd:27:10:05:1c:5b:a0:d6:03:
6e:3d:db:2a:df:d2:f3:cf:dd:37:df:8f:db:7e:1d:2b:f8:79:
80:b8:5a:0e:d3:fd:d0:35:1c:34:9b:69:c1:f6:0d:04:63:d9:
b5:84:3e:88:32:f9:f9:33:16:df:f5:fd:a1:74:9d:17:1f:4f:
db:af:2c:46:fb:d8:8c:d9:46:c3:36:97:fa:b4:8a:e6:9c:a9:
74:e6:ad:89:90:3f:2e:24:a8:c1:f9:9b:bc:e4:7d:6d:e5:6e:
4d:32:a8:c3:87:33:bf:34:ef:4e:39:71:86:c8:d8:02:7d:b9:
07:44:03:fb:32:ae:78:d4:88:12:56:17:12:8f:3e:8f:5d:00:
dd:df:ad:b5:89:8c:02:c3:3e:90:0c:28:f7:5c:26:5b:e2:35:
84:8b:f4:ea:78:11:df:3d:c2:5f:e3:53:ac:3a:01:00:fd:b9:
b7:e9:e5:7d:cc:b9:bb:f6:bf:c0:e3:0e:9f:e9:9a:20:f3:04:
8d:c4:d8:94:30:d5:8f:9b:a8:b6:6f:12:b6:01:32:6d:d6:e3:
64:58:e2:c4:7c:6f:dc:2b:4a:71:53:d0:91:07:0a:33:f9:73:
26:c8:4e:ac
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIULDTr0cFaf+EBQo+12Y5OSlKU61gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODMwZTA2NDE5ZmM0NmEyODAyZjZmMDNiNzEzNjhhYzdi
YWFmNjRjZTAeFw0yNjA0MjMwOTQyMDVaFw0yNzA0MjIwOTQ3MDVaMDMxMTAvBgNV
BAMTKDgzRjdCQjlGQTI5ODBGODVGQjNBQ0ZBRUE2Q0Q5Njk5MzY3NTEyRUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6s4Ku2bkJEpaE1SY+pktWPbZC
N74Y5NbX2KN2tqt4YZ5ziVeBneV2cmbD6DbhGXVsTBq9AwSfIO60RfLqO9SvhirE
cjpJdA9yNZjvVY9Kh7ppBb1AVByy9KVZQfzEap1ydecEjv3/VDZ9+nM2T8m5fUzZ
Jbg+MxmquLUbI6Q8RmpOAyIi3Kw/n1MW/ELG7yZzsyKTBIpO1M+733tVTOA67BIH
voZ/Y56wS/6oL24Ga7pYPBQZQGkBddNYHPhWSfNZ+3ahOe5TRM5Uhc788PFw2iM9
KzCQF18PiGMj1K+p7+f/IpnHrZlKe6h8tsTZOddYS7ygQFKUb4Thxx9siQbjAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUg/e7n6KYD4X7Os+ups2WmTZ1Eu4wHwYDVR0j
BBgwFoAUgw4GQZ/EaigC9vA7cTaKx7qvZM4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOGUwZDZhNGQtYmE2Ny00OTc5LThkMTItMGVkNDc0OGZj
ODZlLzAvODMwRTA2NDE5RkM0NkEyODAyRjZGMDNCNzEzNjhBQzdCQUFGNjRDRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2d3NEdRWl9FYWlnQzl2QTdjVGFLeDdx
dlpNNC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGUwZDZhNGQt
YmE2Ny00OTc5LThkMTItMGVkNDc0OGZjODZlLzAvMzQzNTJlMzEzNDM1MmUzMjM0
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMjMzMzUucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAAtkfMwDQYJKoZIhvcNAQELBQADggEBAC8bR09UMzZ7Qch+M4zK5LtPYX1H2HlW
LWZLcv0nEAUcW6DWA2492yrf0vPP3Tffj9t+HSv4eYC4Wg7T/dA1HDSbacH2DQRj
2bWEPogy+fkzFt/1/aF0nRcfT9uvLEb72IzZRsM2l/q0iuacqXTmrYmQPy4kqMH5
m7zkfW3lbk0yqMOHM7807045cYbI2AJ9uQdEA/syrnjUiBJWFxKPPo9dAN3frbWJ
jALDPpAMKPdcJlviNYSL9Op4Ed89wl/jU6w6AQD9ubfp5X3Mubv2v8DjDp/pmiDz
BI3E2JQw1Y+bqLZvErYBMm3W42RY4sR8b9wrSnFT0JEHCjP5cybITqw=
-----END CERTIFICATE-----
Generated at Wed May 13 03:54:15 2026 by rpki-client