Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/35312e3139342e35372e302f32342d3234203d3e2036303739.roa
File: 35312e3139342e35372e302f32342d3234203d3e2036303739.roa (raw, json)
Hash identifier: 0kc8cHvizQg0PDgUbePUQXTTVE0iZ4ArgeCrO4WVYkU=
Subject key identifier: EB:1D:4B:28:E6:69:1B:93:93:2A:58:03:C2:35:1F:CD:61:47:CA:DF
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 5143FE138F4CB9231864987C6A60242874F6EA72
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/35312e3139342e35372e302f32342d3234203d3e2036303739.roa
Signing time: Wed 25 Mar 2026 07:48:30 +0000
ROA not before: Wed 25 Mar 2026 07:43:30 +0000
ROA not after: Wed 24 Mar 2027 07:48:30 +0000
asID: 6079
IP address blocks: 51.194.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:43:fe:13:8f:4c:b9:23:18:64:98:7c:6a:60:24:28:74:f6:ea:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Mar 25 07:43:30 2026 GMT
Not After : Mar 24 07:48:30 2027 GMT
Subject: CN=EB1D4B28E6691B93932A5803C2351FCD6147CADF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3e:e4:53:d8:90:78:11:cf:f1:c1:dd:4a:19:
01:43:f5:92:9b:2a:75:18:df:d5:1a:99:46:a8:77:
11:25:82:c8:27:87:36:e0:6e:cd:73:a3:3d:b3:04:
7a:29:ea:cf:a7:a2:9a:1c:92:76:be:3d:ce:87:d6:
23:f2:ba:68:42:c2:82:da:39:61:6d:5d:dd:7b:04:
4d:a4:cb:9a:51:b2:02:c6:8b:3a:42:50:6e:39:8e:
c2:99:94:45:66:be:01:b0:09:95:ce:cd:16:53:bb:
bd:68:61:03:88:49:5a:02:cf:a7:15:f6:b7:98:26:
2b:2b:56:21:c8:8d:0f:47:9c:9c:88:51:a3:13:b4:
39:1c:93:d2:06:80:31:61:1e:26:94:3d:b9:4c:92:
d8:b1:d7:71:11:e6:2f:d9:4d:a2:30:87:93:76:90:
fa:2d:9d:91:85:51:05:bb:a4:b5:c1:8a:fa:3e:3c:
74:93:52:44:24:de:e6:49:43:6b:22:73:b5:54:d2:
40:68:f5:ce:24:a5:e0:fe:c2:98:ff:59:bf:c3:84:
66:cb:df:7d:ac:8d:45:f7:c8:d9:d2:95:35:4c:2d:
9f:b8:1f:0c:86:1e:ba:5e:3f:45:1f:61:26:d5:d3:
0f:0e:14:0b:a7:d8:4c:2c:5a:58:6d:88:3b:1b:e3:
56:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:1D:4B:28:E6:69:1B:93:93:2A:58:03:C2:35:1F:CD:61:47:CA:DF
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/35312e3139342e35372e302f32342d3234203d3e2036303739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.194.57.0/24
Signature Algorithm: sha256WithRSAEncryption
76:20:30:81:b8:d3:4f:73:87:de:39:98:55:25:ee:48:c3:41:
97:aa:30:db:37:97:cc:fc:47:8e:8a:63:df:87:27:ec:8b:27:
f9:e2:78:ae:7d:51:67:48:a8:e7:66:98:cb:72:30:ff:a0:7a:
0a:6a:5a:07:b3:5e:11:26:53:0e:bb:59:fe:c9:91:8f:15:c8:
c9:9e:93:88:76:14:36:cc:05:75:96:e7:e8:82:fe:5b:19:c3:
28:cd:4c:d8:0b:a7:2e:28:7d:31:24:07:11:96:f8:1b:ee:38:
e8:c7:ca:0d:09:9b:37:fd:38:38:ad:4d:e1:05:68:8f:8c:1d:
37:7a:af:b7:a9:d0:3b:31:06:61:f4:f1:5c:ff:a3:75:50:4b:
2f:6e:34:b2:e5:ff:33:a3:7d:2f:02:63:cb:6d:18:c0:ff:44:
22:aa:75:9d:58:3e:58:e8:35:a8:5e:d2:e7:46:85:ef:b9:b7:
85:7f:a7:97:0d:a3:0b:51:e6:11:8b:1a:4e:e7:76:df:7f:04:
f0:88:cf:aa:ef:6c:53:0b:79:76:6f:15:a6:68:b0:ca:70:24:
08:b7:17:7b:50:ad:8e:2f:94:b4:31:0a:61:db:43:3c:f0:d4:
4b:d2:f6:8c:3c:84:e2:26:e3:4e:3c:33:d1:53:8e:ef:27:f5:
cd:7c:30:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:22:52 2026 by rpki-client