Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37332e302f32342d3234203d3e20313431393638.roa
File: 3137382e3234382e37332e302f32342d3234203d3e20313431393638.roa (raw, json)
Hash identifier: 7xtsmIrFnzH8qIFMhr9PIJTBifAuGHXQXdM1XzYoP7s=
Subject key identifier: E3:8F:9C:6F:C9:F3:1E:30:48:0F:D4:58:E3:AD:A1:EF:D6:74:10:3A
Certificate issuer: /CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Certificate serial: 0416213CB4A648132C7BE6FEBD2F82817760497F
Authority key identifier: BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37332e302f32342d3234203d3e20313431393638.roa
Signing time: Thu 07 May 2026 13:47:11 +0000
ROA not before: Thu 07 May 2026 13:42:11 +0000
ROA not after: Thu 06 May 2027 13:47:11 +0000
asID: 141968
IP address blocks: 178.248.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.mft
rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:16:21:3c:b4:a6:48:13:2c:7b:e6:fe:bd:2f:82:81:77:60:49:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be0bb78869cdb2ad0c971a6a858a30213eaec47d
Validity
Not Before: May 7 13:42:11 2026 GMT
Not After : May 6 13:47:11 2027 GMT
Subject: CN=E38F9C6FC9F31E30480FD458E3ADA1EFD674103A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fd:30:61:12:d1:e0:b1:a2:ac:7f:38:cf:97:
dc:da:72:c5:c4:73:3f:21:d0:38:d4:95:e5:69:44:
7f:ba:7f:c8:81:85:ca:92:81:a8:85:5e:61:d9:7a:
50:42:9a:1c:a2:e8:0e:22:c1:d9:08:3b:2f:cd:0b:
dc:88:bd:ba:4d:9e:57:1e:81:9f:bf:ce:32:33:c7:
04:b5:03:78:d5:57:81:b1:74:ab:bb:5a:95:44:13:
09:45:d7:04:2d:b1:a0:19:42:89:31:14:87:72:69:
5b:c8:3c:db:77:39:e4:c6:bc:6f:79:a8:ea:82:7a:
5d:4b:f3:09:4c:eb:e5:93:88:ba:bd:dd:d0:28:23:
6d:8e:13:f2:7f:77:16:4a:ac:93:7c:20:8b:1a:0e:
b0:8f:12:ec:04:c4:9d:7a:7e:ef:92:16:9f:a2:0b:
ec:3e:ee:df:f9:ca:c5:d5:67:c5:c9:78:d1:02:95:
44:59:5f:3e:8d:40:01:41:52:f5:b7:cb:cf:db:f3:
0d:36:5b:15:71:af:bd:9e:b6:ac:11:0b:c2:68:c7:
a7:33:26:4b:09:8d:06:dc:0c:0d:f2:31:42:22:91:
20:f3:ff:f7:c2:2c:e8:6a:06:f5:0b:db:7a:d8:b7:
1a:03:85:13:8b:00:11:9c:76:a8:d0:37:04:56:ff:
b3:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8F:9C:6F:C9:F3:1E:30:48:0F:D4:58:E3:AD:A1:EF:D6:74:10:3A
X509v3 Authority Key Identifier:
keyid:BE:0B:B7:88:69:CD:B2:AD:0C:97:1A:6A:85:8A:30:21:3E:AE:C4:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/BE0BB78869CDB2AD0C971A6A858A30213EAEC47D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vgu3iGnNsq0MlxpqhYowIT6uxH0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac143387-f013-4922-838e-e18864be1e4a/0/3137382e3234382e37332e302f32342d3234203d3e20313431393638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.73.0/24
Signature Algorithm: sha256WithRSAEncryption
57:17:f6:c9:9b:04:de:43:2d:b7:e3:3c:ee:9b:ba:59:07:c9:
86:17:ca:6e:81:ed:d4:c2:da:47:32:11:81:60:68:f9:fb:4e:
99:9e:90:a5:d6:60:a1:7d:cf:05:74:7f:b2:6e:ba:64:73:c5:
b6:2a:7e:4e:d0:fa:54:05:51:db:dc:7a:1f:b7:39:5b:a1:ea:
86:0a:89:02:e3:32:7c:45:0a:1a:88:94:46:84:63:eb:a8:f5:
58:3d:c1:3a:2a:04:a5:2c:61:6d:2e:c8:37:81:d9:bf:f7:c8:
31:53:e5:b8:c7:66:9e:cf:77:bc:a7:7f:7b:4a:73:ef:4a:7f:
ac:8d:54:25:90:00:27:2c:82:68:22:56:c5:ae:74:29:ac:ff:
cd:35:37:6d:fd:be:0f:09:5d:25:1c:13:3e:eb:3f:27:f1:ae:
87:ea:44:b8:8b:d5:14:73:c4:36:1c:2b:e0:59:da:26:2a:a3:
b9:a1:cd:f7:ed:f9:dd:30:24:c9:cc:72:c7:55:af:e0:2b:0f:
57:7a:73:2a:b8:20:bf:ac:ee:e6:64:8b:2a:44:d5:02:15:78:
51:7a:d1:9c:f8:de:50:e2:51:bb:89:bc:61:bd:e1:b1:2f:7a:
ac:9b:44:fd:e4:48:25:5c:13:11:a3:db:f1:ef:07:bf:c4:5d:
c2:73:d4:1e
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUBBYhPLSmSBMse+b+vS+CgXdgSX8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmUwYmI3ODg2OWNkYjJhZDBjOTcxYTZhODU4YTMwMjEz
ZWFlYzQ3ZDAeFw0yNjA1MDcxMzQyMTFaFw0yNzA1MDYxMzQ3MTFaMDMxMTAvBgNV
BAMTKEUzOEY5QzZGQzlGMzFFMzA0ODBGRDQ1OEUzQURBMUVGRDY3NDEwM0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2/TBhEtHgsaKsfzjPl9zacsXE
cz8h0DjUleVpRH+6f8iBhcqSgaiFXmHZelBCmhyi6A4iwdkIOy/NC9yIvbpNnlce
gZ+/zjIzxwS1A3jVV4GxdKu7WpVEEwlF1wQtsaAZQokxFIdyaVvIPNt3OeTGvG95
qOqCel1L8wlM6+WTiLq93dAoI22OE/J/dxZKrJN8IIsaDrCPEuwExJ16fu+SFp+i
C+w+7t/5ysXVZ8XJeNEClURZXz6NQAFBUvW3y8/b8w02WxVxr72etqwRC8Jox6cz
JksJjQbcDA3yMUIikSDz//fCLOhqBvUL23rYtxoDhROLABGcdqjQNwRW/7NLAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU44+cb8nzHjBID9RY462h79Z0EDowHwYDVR0j
BBgwFoAUvgu3iGnNsq0MlxpqhYowIT6uxH0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWMxNDMzODctZjAxMy00OTIyLTgzOGUtZTE4ODY0YmUx
ZTRhLzAvQkUwQkI3ODg2OUNEQjJBRDBDOTcxQTZBODU4QTMwMjEzRUFFQzQ3RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ZndTNpR25Oc3EwTWx4cHFoWW93SVQ2
dXhIMC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWMxNDMzODct
ZjAxMy00OTIyLTgzOGUtZTE4ODY0YmUxZTRhLzAvMzEzNzM4MmUzMjM0MzgyZTM3
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM2Mzgucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACy+EkwDQYJKoZIhvcNAQELBQADggEBAFcX9smbBN5DLbfjPO6bulkHyYYXym6B
7dTC2kcyEYFgaPn7TpmekKXWYKF9zwV0f7JuumRzxbYqfk7Q+lQFUdvceh+3OVuh
6oYKiQLjMnxFChqIlEaEY+uo9Vg9wToqBKUsYW0uyDeB2b/3yDFT5bjHZp7Pd7yn
f3tKc+9Kf6yNVCWQACcsgmgiVsWudCms/801N239vg8JXSUcEz7rPyfxrofqRLiL
1RRzxDYcK+BZ2iYqo7mhzfft+d0wJMnMcsdVr+ArD1d6cyq4IL+s7uZkiypE1QIV
eFF60Zz43lDiUbuJvGG94bEveqybRP3kSCVcExGj2/HvB7/EXcJz1B4=
-----END CERTIFICATE-----
Generated at Wed May 13 15:52:52 2026 by rpki-client