Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/37382e3130352e39362e302f32342d3234203d3e20323133363037.roa
File: 37382e3130352e39362e302f32342d3234203d3e20323133363037.roa (raw, json)
Hash identifier: oXwjab2WKoWf3CbOxVL60h2jBj67STQEka5fdXdm5nY=
Subject key identifier: B6:7A:8E:79:99:57:ED:45:5C:6F:4D:F5:F7:92:AD:22:7F:8C:1C:27
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 4432F664CD68C216C545654DA7ADCA1A9714072D
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/37382e3130352e39362e302f32342d3234203d3e20323133363037.roa
Signing time: Wed 25 Mar 2026 02:19:40 +0000
ROA not before: Wed 25 Mar 2026 02:14:40 +0000
ROA not after: Wed 24 Mar 2027 02:19:40 +0000
asID: 213607
IP address blocks: 78.105.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:46:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:32:f6:64:cd:68:c2:16:c5:45:65:4d:a7:ad:ca:1a:97:14:07:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Mar 25 02:14:40 2026 GMT
Not After : Mar 24 02:19:40 2027 GMT
Subject: CN=B67A8E799957ED455C6F4DF5F792AD227F8C1C27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4e:75:15:0d:2e:7b:47:ad:c3:1d:01:6c:88:
e9:28:9e:e3:6f:e9:a8:b5:39:57:aa:51:48:52:a7:
f8:7d:e7:47:4d:ca:06:fb:0a:a1:90:02:77:35:80:
28:c5:33:7d:d4:4d:11:2c:e4:d7:9f:aa:d0:52:7d:
91:a6:3d:2e:5b:7a:5d:a4:5a:85:97:b6:62:3c:bf:
81:a8:24:2b:3d:dc:06:40:3b:e2:a5:02:e1:d6:04:
2b:e7:97:3b:ad:c7:ec:85:2d:17:d4:43:19:79:cd:
64:d6:94:10:dc:f9:36:99:6a:7d:dc:91:fa:c2:55:
0e:c8:d6:45:75:33:f8:a8:3b:55:e2:bd:af:63:ca:
35:a4:df:82:cf:4e:59:c6:b3:3f:e6:bf:ff:2a:c9:
39:b8:ed:26:1b:0a:18:29:55:e9:42:cf:6a:ef:7b:
9f:26:5e:d2:e8:82:28:24:b2:1d:36:ea:32:28:ad:
96:a6:5f:d6:b0:de:45:51:01:8e:d5:82:32:0d:c5:
3d:d6:05:8b:fe:fe:d8:41:9e:d1:5c:c4:d2:a1:06:
02:b0:4a:ed:52:73:23:8f:44:62:14:6c:b8:3e:9d:
0f:63:d8:b2:5f:b2:0e:cb:97:f7:c3:5d:68:6b:3e:
d2:55:49:58:aa:8b:6c:56:4b:8b:a5:a8:0e:c6:5a:
41:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:7A:8E:79:99:57:ED:45:5C:6F:4D:F5:F7:92:AD:22:7F:8C:1C:27
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/37382e3130352e39362e302f32342d3234203d3e20323133363037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.105.96.0/24
Signature Algorithm: sha256WithRSAEncryption
49:36:22:ad:26:79:04:ff:53:f7:9d:6e:e8:7c:a6:3e:aa:24:
08:48:3c:32:21:4c:74:b5:fd:15:bd:5e:86:fc:83:96:3d:37:
d9:f4:d6:d2:98:3b:a1:36:6e:18:11:b8:8f:15:38:8c:75:ef:
ed:2d:10:8a:5a:df:91:00:52:50:02:c5:93:92:ab:c2:6f:e4:
b1:17:b9:aa:65:d8:2a:03:54:7b:87:5e:11:f2:0f:a0:58:d4:
5f:47:88:c0:d8:24:22:65:cf:c9:64:39:2a:8f:a7:dd:83:ed:
f0:19:2f:d0:19:e9:b1:fc:0b:af:29:e3:a3:ba:22:65:40:e7:
e8:1f:48:fc:26:e8:7f:0a:0f:e5:2a:e1:3e:b3:d0:3c:25:35:
87:2e:0a:b2:24:70:1e:87:04:e4:1c:ae:58:cb:b4:00:ce:fe:
0d:96:85:bd:c2:f7:50:06:94:48:13:8e:be:aa:a1:fc:3d:49:
ce:61:e2:22:fd:62:8e:bd:c9:ec:80:f8:9f:60:64:c8:17:db:
f5:ed:19:a5:df:08:87:b8:f8:08:9f:8a:c2:7b:cc:8f:85:ce:
73:36:93:fe:9a:32:07:61:67:37:bb:87:84:55:9d:6a:18:d2:
7c:0c:45:c5:86:40:34:cf:a2:aa:1b:fc:25:ab:18:63:ea:75:
c2:a8:c8:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:01:56 2026 by rpki-client