Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/35312e3134362e3138302e302f32322d3234203d3e2037303239.roa
File: 35312e3134362e3138302e302f32322d3234203d3e2037303239.roa (raw, json)
Hash identifier: MqO1uHAQgPhqi8t76W1PLjXcJ3Y2AMNjSRI4GomXs8E=
Subject key identifier: 49:89:2A:DD:98:0F:88:42:2E:D0:30:F4:34:2E:B0:8E:C8:32:9F:11
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 0630C42AC476E6B2D992019D240C271CEA0228D4
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/35312e3134362e3138302e302f32322d3234203d3e2037303239.roa
Signing time: Fri 13 Mar 2026 23:24:14 +0000
ROA not before: Fri 13 Mar 2026 23:19:14 +0000
ROA not after: Fri 12 Mar 2027 23:24:14 +0000
asID: 7029
IP address blocks: 51.146.180.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:46:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:30:c4:2a:c4:76:e6:b2:d9:92:01:9d:24:0c:27:1c:ea:02:28:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Mar 13 23:19:14 2026 GMT
Not After : Mar 12 23:24:14 2027 GMT
Subject: CN=49892ADD980F88422ED030F4342EB08EC8329F11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:14:e6:a6:25:ff:c8:99:4c:4a:ab:da:11:a2:
ff:ba:29:84:34:07:7c:b6:35:3f:37:8a:6a:0e:41:
66:d4:2e:eb:25:74:ff:86:0c:f5:b9:7b:92:9c:bc:
14:6c:c2:86:cc:6b:3f:52:d3:ac:ef:58:d2:f2:3c:
b5:53:87:c7:b1:cf:25:5c:54:88:94:5d:be:9c:71:
01:c9:44:04:03:77:a5:89:05:d6:21:f9:e3:49:92:
0d:9c:90:22:68:4a:4c:ab:83:db:b9:4d:63:e4:50:
b7:6a:f7:7c:13:e8:e9:fd:89:55:8b:4b:71:b2:46:
5c:a0:17:19:74:85:d0:1d:49:e7:96:73:25:b0:f3:
17:4c:12:eb:77:09:7c:b9:1d:0b:25:df:09:1f:8d:
e8:80:71:cb:a7:dd:ce:bc:53:b1:21:cf:0d:9e:a8:
71:a9:a2:0e:b0:73:63:b1:f1:30:ac:1c:83:bd:d8:
6c:a7:bf:43:c7:ca:3f:b8:75:e2:d5:55:6c:b9:9a:
39:cf:c4:97:cf:3d:07:02:1f:fe:4e:27:d4:ff:26:
7f:0f:2e:7b:14:cf:5e:f1:b2:a1:c2:31:f5:01:da:
ef:e5:e3:15:e6:aa:a2:7e:83:6b:5d:d5:dc:12:04:
52:82:43:e0:80:69:43:85:46:a7:6b:42:29:1f:d4:
f6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:89:2A:DD:98:0F:88:42:2E:D0:30:F4:34:2E:B0:8E:C8:32:9F:11
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/35312e3134362e3138302e302f32322d3234203d3e2037303239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.146.180.0/22
Signature Algorithm: sha256WithRSAEncryption
23:65:3f:47:ee:d7:a9:c6:7f:23:64:72:c3:19:28:34:38:b6:
34:89:1a:5a:e3:58:db:a5:43:6f:7c:38:b9:cd:36:09:82:e3:
dc:c2:e3:44:8b:c1:e9:e4:92:b3:05:ba:60:78:e4:16:74:8b:
ca:52:de:2d:e9:40:55:0d:93:a0:ca:ea:1c:f6:dc:98:82:21:
d2:ec:0d:12:20:6f:2d:da:e9:a6:19:b4:f3:b7:bc:b3:03:b4:
c3:4a:ee:ee:a8:4e:16:ea:c8:50:e2:96:0d:3c:b4:24:46:e0:
43:6b:b7:20:b4:6e:2c:b3:24:e9:08:6e:a4:25:72:06:94:ea:
7d:88:a2:fe:ce:ee:4b:1a:00:53:87:12:6a:2e:bf:83:a9:9d:
3c:ea:e0:4a:27:27:0b:21:00:9b:7a:fc:8a:45:71:ef:92:82:
02:9b:a0:ef:f4:91:9a:9d:2a:d0:21:fc:89:95:99:6e:5a:e1:
0c:9d:e8:79:3b:43:a9:07:c8:53:ef:45:fa:a3:1c:7a:fe:53:
02:6f:e4:76:f0:a6:42:8c:59:45:1d:4f:16:50:d6:a8:d8:04:
f6:26:5b:78:e8:ed:d1:96:31:1a:05:8a:71:8b:f8:22:f0:cc:
b7:de:3b:78:9f:6b:ee:d7:91:13:ca:54:0b:9d:91:b9:44:c2:
59:49:04:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:14:08 2026 by rpki-client