Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e2034353933.roa
File: 3130392e3131302e3137352e302f32342d3234203d3e2034353933.roa (raw, json)
Hash identifier: Kb+X6kFfLdaapshtAk0NHDxdP1VSQ+phes6KqWO06uM=
Subject key identifier: A3:F2:D4:BA:11:93:62:08:07:D3:67:A0:51:31:52:91:8A:DE:24:16
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 5C9B8258E09D5E189E435ADC554076444A4173FC
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e2034353933.roa
Signing time: Wed 22 Apr 2026 14:01:57 +0000
ROA not before: Wed 22 Apr 2026 13:56:57 +0000
ROA not after: Wed 21 Apr 2027 14:01:57 +0000
asID: 4593
IP address blocks: 109.110.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:9b:82:58:e0:9d:5e:18:9e:43:5a:dc:55:40:76:44:4a:41:73:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Apr 22 13:56:57 2026 GMT
Not After : Apr 21 14:01:57 2027 GMT
Subject: CN=A3F2D4BA1193620807D367A0513152918ADE2416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ed:bc:15:ea:e0:fa:27:45:b6:d1:81:51:96:
68:10:a3:b4:0c:7d:93:89:67:33:92:97:7d:11:52:
6c:68:a7:9d:e6:92:7f:54:e5:c6:34:ee:56:5c:f7:
7c:a5:58:c6:1a:b1:a8:51:09:73:24:5d:d4:c1:dd:
0b:07:a0:89:b3:fb:b9:1e:89:90:3e:7d:29:1b:ef:
35:41:af:15:10:cf:96:7a:ca:18:14:6b:a8:d2:52:
f8:0a:ef:30:07:9a:a7:be:6d:00:f6:e2:6d:2c:91:
21:6c:3f:46:61:00:2e:75:bd:9e:c5:93:13:0e:a4:
c2:1f:94:9e:43:0f:a2:d9:17:56:65:71:99:f9:dc:
4f:71:82:e5:c9:84:2d:7b:97:21:4c:a6:01:89:71:
19:f8:4c:9d:97:22:ae:8b:d5:bd:f9:e0:23:f2:84:
14:65:f2:49:35:3c:10:c9:02:0e:b6:dc:30:2f:0c:
5e:20:30:ab:03:0f:dd:bb:33:24:7f:6c:b9:28:22:
c4:ff:4c:d7:9e:31:d1:b2:29:7b:7c:c0:94:11:ae:
2f:8f:84:5e:a8:28:aa:10:6c:1c:67:39:89:37:21:
6e:8b:90:71:ae:21:08:44:34:57:f9:a5:b7:15:28:
96:aa:a4:79:8c:f4:18:45:11:e0:8a:c0:ff:8e:f8:
71:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F2:D4:BA:11:93:62:08:07:D3:67:A0:51:31:52:91:8A:DE:24:16
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e2034353933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.175.0/24
Signature Algorithm: sha256WithRSAEncryption
54:c9:02:8c:ab:f5:a1:c5:ac:8e:0f:20:a5:8f:31:1e:92:7e:
a0:b6:74:5c:f9:13:8e:e9:02:24:a4:1b:2a:3f:e0:6d:05:4f:
1a:85:3b:57:18:fc:2a:76:ac:66:07:8f:46:b2:54:19:22:26:
21:cd:e4:3d:5b:2e:03:a4:8e:30:66:84:64:db:14:28:b1:3b:
4a:51:9b:62:06:54:9b:02:d7:90:82:55:e7:05:c8:97:31:6a:
f5:c1:ae:6c:79:4b:ff:ee:ba:82:26:2d:2e:7e:fc:cf:d8:e5:
d8:55:84:3b:f7:e9:65:a1:de:c0:ed:1b:63:81:1d:a6:dc:1a:
a7:02:7e:bb:17:40:0b:f6:71:02:71:0c:91:1e:dc:ef:0d:93:
f0:aa:0d:51:8c:cd:e3:69:61:65:6c:53:48:c3:d5:b7:39:31:
d7:c8:3a:38:e6:74:38:d8:e9:96:93:68:33:ad:d4:ac:e2:5c:
2e:b3:dd:36:2d:26:0f:d9:39:c2:78:d5:f4:38:fa:29:d2:88:
5b:e1:b3:90:0d:83:db:25:d5:a2:c7:79:12:95:68:87:43:5b:
af:e4:d7:78:64:06:85:9d:27:53:87:fd:93:6f:4d:2a:81:4b:
a7:72:42:2a:dc:14:21:be:3c:28:8d:6e:46:eb:58:76:61:a7:
59:29:02:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:36:47 2026 by rpki-client