Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203633313939.roa
File: 3130392e3131302e3137352e302f32342d3234203d3e203633313939.roa (raw, json)
Hash identifier: z61bXWr9N4qK0fN4rBLvo6TTtijDKRrqL9cVEKIoVKY=
Subject key identifier: 22:10:6D:C4:E2:71:09:AA:66:FF:85:9A:36:C9:65:0C:B2:83:17:A1
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 797C7FFF7879D0B8ED542B5371E43C15558788AA
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203633313939.roa
Signing time: Thu 12 Mar 2026 08:18:31 +0000
ROA not before: Thu 12 Mar 2026 08:13:31 +0000
ROA not after: Thu 11 Mar 2027 08:18:31 +0000
asID: 63199
IP address blocks: 109.110.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:7c:7f:ff:78:79:d0:b8:ed:54:2b:53:71:e4:3c:15:55:87:88:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Mar 12 08:13:31 2026 GMT
Not After : Mar 11 08:18:31 2027 GMT
Subject: CN=22106DC4E27109AA66FF859A36C9650CB28317A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:87:ba:bd:32:af:f7:84:eb:76:9d:13:66:43:
71:4f:1d:bf:9f:b7:d5:78:e7:43:10:8f:06:b2:e7:
04:8d:e7:7c:4d:28:e1:c3:a2:81:f2:5f:e4:2f:9a:
2b:9f:8c:fc:34:fe:a8:a4:b2:b9:6e:f9:54:15:59:
00:f8:08:94:56:91:a2:5e:55:02:07:83:86:14:85:
b4:98:cf:ef:2f:37:b7:0d:8a:0e:31:a1:e4:69:08:
68:a8:10:aa:6f:fd:12:eb:fb:71:1c:66:b0:bb:82:
1b:50:fa:40:34:57:bf:38:d6:93:fe:0f:f7:36:37:
90:8e:93:ed:6b:fa:f8:14:cb:54:e2:d3:e1:87:00:
2e:60:c2:81:f0:38:0d:45:e8:da:ea:6a:13:d3:e4:
a0:d8:ed:36:3b:c4:ea:7e:29:59:8f:60:e9:48:80:
c3:d3:38:3a:68:f6:e4:0c:9c:8f:7c:e4:d4:a1:6e:
d9:61:9f:db:ca:b6:a3:8b:b1:16:75:87:a7:c2:79:
97:e3:11:82:72:62:1a:e2:1c:27:d8:7f:f2:ca:a4:
8e:6d:e8:86:cb:0d:cf:15:ae:d6:68:20:56:29:bc:
11:ca:37:cf:a0:ec:1c:61:70:bf:d7:76:6e:52:bf:
70:7e:aa:81:5e:77:0e:0b:db:cf:84:15:6a:c5:91:
86:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:10:6D:C4:E2:71:09:AA:66:FF:85:9A:36:C9:65:0C:B2:83:17:A1
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203633313939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.175.0/24
Signature Algorithm: sha256WithRSAEncryption
51:c9:d4:bf:62:ee:fb:0f:2b:ae:29:e0:0b:62:fc:81:46:6b:
f1:89:5f:d2:b7:09:09:c7:bb:d0:b8:32:3a:a5:b5:fd:8a:1a:
c3:e0:a8:57:87:43:6f:ce:33:90:63:c6:fa:46:8c:cf:02:a0:
98:22:13:5f:3b:08:1a:8f:c6:d0:f5:0d:9e:ee:b4:26:e5:c7:
90:ad:1e:55:3f:dd:68:e7:f7:51:15:c4:88:2e:4d:7c:59:21:
af:00:d8:57:3d:2a:cf:62:43:16:a0:32:4a:6e:9a:d5:0c:71:
34:d2:cd:81:92:16:c2:44:f7:29:97:5d:9d:ea:b2:4c:5c:2e:
67:38:ce:1e:c1:5b:2e:05:7d:dd:38:8c:38:ec:51:8c:cc:07:
df:e4:73:f3:46:b3:95:17:8f:48:24:45:e2:21:6c:86:2b:ac:
e3:9e:8d:f9:c7:4f:49:5a:55:d6:be:7c:f5:f9:10:15:a2:96:
86:b0:95:39:69:7c:6d:93:bb:c8:5c:ff:76:45:38:c7:a1:e9:
ad:ae:5a:e2:3a:65:4f:64:42:1f:47:6f:47:3f:ba:2d:32:1a:
2b:c5:c4:f5:fa:4c:2b:77:a7:9e:55:31:31:47:93:b9:a2:d4:
23:4f:35:7f:35:f8:2d:64:d7:6a:e7:ad:b9:56:ae:f7:e2:75:
7f:fd:27:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:33:31 2026 by rpki-client