Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa
File: 3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa (raw, json)
Hash identifier: 8mSH68fzB5wQ00CpAsPep3Zk233Bg5Evb8ABDeNtmOg=
Subject key identifier: DD:2B:39:C0:DC:04:2A:29:F1:93:59:E9:9D:48:E4:99:1C:0C:26:91
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 6ECAD0F5D7B6A7CADFDEE2115A5BFD17D6AAC701
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa
Signing time: Mon 16 Mar 2026 06:46:48 +0000
ROA not before: Mon 16 Mar 2026 06:41:48 +0000
ROA not after: Mon 15 Mar 2027 06:46:48 +0000
asID: 42831
IP address blocks: 109.110.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 12:03:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:ca:d0:f5:d7:b6:a7:ca:df:de:e2:11:5a:5b:fd:17:d6:aa:c7:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Mar 16 06:41:48 2026 GMT
Not After : Mar 15 06:46:48 2027 GMT
Subject: CN=DD2B39C0DC042A29F19359E99D48E4991C0C2691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e6:08:e8:98:7a:bf:b6:31:15:e5:29:80:81:
44:0e:84:1e:cc:0a:00:9a:c2:69:9e:41:29:c2:20:
a7:7c:41:6b:54:0f:d0:f9:b3:13:18:49:00:09:82:
a7:a1:fb:08:d7:c7:26:1a:24:8d:69:5a:23:ff:96:
d8:4f:53:00:8b:05:97:d1:8e:8c:c7:54:0e:c8:38:
e8:52:f7:f7:77:d4:93:70:e1:27:e5:91:81:71:41:
cb:f3:58:85:87:d6:9f:ad:39:e4:50:8c:7c:ae:0b:
54:62:0d:81:7a:a0:4a:5e:4e:ae:ed:af:a8:a4:0d:
e3:15:2f:d3:4e:2c:6d:a9:bb:f0:80:75:2b:21:6f:
83:e5:5a:f6:88:4a:a7:23:06:e7:e3:26:03:2d:2b:
2a:b0:aa:0b:fc:d3:86:85:02:e0:ee:8c:06:2a:e8:
e1:c2:a7:d3:5f:9d:f1:50:c8:d7:38:46:30:0a:11:
5a:33:f0:53:27:33:38:a6:41:b1:68:a5:3b:e2:ba:
17:e3:58:f9:f1:33:bc:3c:a3:73:86:f4:6b:fb:e0:
ba:a0:e5:21:77:ee:c8:c6:31:65:ac:38:7f:ff:e1:
5e:aa:cf:78:ec:9c:5a:b9:ea:80:07:eb:09:c2:74:
64:29:1b:1b:c0:a6:51:b1:59:32:9f:90:49:a4:59:
f4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2B:39:C0:DC:04:2A:29:F1:93:59:E9:9D:48:E4:99:1C:0C:26:91
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.169.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:94:3d:16:69:f8:13:9f:52:74:45:4a:30:10:ba:dc:b4:7a:
cf:4a:40:35:90:f2:a8:36:61:c2:cd:91:66:a0:7f:b0:7c:90:
8d:71:62:90:b7:af:89:ef:6e:74:ab:a0:e2:1f:72:dd:45:2f:
61:b6:9e:50:02:31:08:c0:84:61:bb:cd:05:d8:05:ee:4c:41:
67:ae:86:a9:de:13:86:8d:c1:37:14:42:50:f4:4c:90:ee:bd:
50:b0:f4:7e:80:d4:db:63:e2:b0:18:7b:dc:53:7e:0c:44:9b:
ed:bc:51:87:3a:23:9e:2c:9d:64:86:22:83:33:11:7d:8b:63:
07:be:da:eb:2e:7b:18:49:d1:78:ed:f0:0d:0f:ea:96:b6:5d:
38:fd:d0:82:c2:20:a0:21:68:31:dc:2a:75:39:b4:9c:43:9d:
b5:c5:ff:7f:2b:72:7c:08:59:9e:29:f2:fc:18:8d:3c:6f:52:
0c:8c:d6:75:0c:10:17:bd:7a:46:5a:c3:29:b1:2d:86:3c:6a:
77:f8:25:54:70:10:31:cc:b3:84:75:ad:0a:1e:6e:82:43:5d:
1f:a2:c0:f8:39:bd:a8:65:56:d8:7b:0c:2a:d3:75:a9:bb:c9:
ce:24:a3:00:10:33:cc:6b:c3:64:61:0b:a5:ba:1e:62:fa:b4:
2a:52:95:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:40:07 2026 by rpki-client