Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138342e302f32332d3234203d3e20333939393535.roa
File: 3138352e3232322e3138342e302f32332d3234203d3e20333939393535.roa (raw, json)
Hash identifier: M15yISwPELeSZqOiNvDuE135EI+zvSG9DhHti29boGE=
Subject key identifier: 9A:BE:C6:0B:26:ED:BC:79:64:13:36:B6:99:1A:68:4D:67:32:A1:34
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 3136221CB488F030DD8753B8FB5605EF1CC77A98
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138342e302f32332d3234203d3e20333939393535.roa
Signing time: Thu 23 Apr 2026 23:20:16 +0000
ROA not before: Thu 23 Apr 2026 23:15:16 +0000
ROA not after: Thu 22 Apr 2027 23:20:16 +0000
asID: 399955
IP address blocks: 185.222.184.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:36:22:1c:b4:88:f0:30:dd:87:53:b8:fb:56:05:ef:1c:c7:7a:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Apr 23 23:15:16 2026 GMT
Not After : Apr 22 23:20:16 2027 GMT
Subject: CN=9ABEC60B26EDBC79641336B6991A684D6732A134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:92:1e:5e:d5:da:91:1e:11:12:9c:cb:3e:24:
07:a0:1f:b9:19:56:d0:b2:dd:62:23:5c:cd:3c:04:
d6:27:76:3f:cc:f5:79:06:e3:ae:ab:4d:67:ed:c6:
f7:e6:0a:42:7a:5a:cc:c1:98:09:93:6b:0b:14:cb:
19:e4:fe:30:b1:18:b0:ef:ce:ff:b0:fc:55:85:cf:
9e:54:21:04:f2:60:0b:d1:b7:db:bc:b8:f7:8d:bd:
9b:75:28:00:01:5d:8a:b3:24:ff:b8:ed:0d:2d:df:
52:e2:96:75:3b:81:37:6e:63:56:e2:62:80:eb:52:
90:e7:8f:82:d3:83:bf:fb:5a:7a:2a:42:e5:b0:eb:
0b:4f:e9:9d:4b:7c:40:00:f3:60:82:7b:57:1c:db:
92:7b:52:08:cd:76:a7:f8:3d:09:bf:60:26:64:ab:
9f:14:30:d5:41:9b:ce:b4:c2:ec:11:43:f4:92:27:
af:fe:ca:92:08:00:9a:92:b8:ac:d2:f8:d3:30:2a:
7a:c5:c2:6f:3e:89:ae:9b:2a:9f:c7:61:2d:fc:a4:
8f:77:e2:1d:e9:aa:0d:38:b4:9d:6c:74:80:4f:14:
1f:3e:d0:99:24:7a:7c:e6:8d:5c:4c:6f:71:3a:e3:
f3:ea:65:91:7a:77:d8:92:02:f7:5d:6c:f1:01:dc:
ef:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:BE:C6:0B:26:ED:BC:79:64:13:36:B6:99:1A:68:4D:67:32:A1:34
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138342e302f32332d3234203d3e20333939393535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.184.0/23
Signature Algorithm: sha256WithRSAEncryption
17:43:cb:0a:c6:de:f9:bb:66:58:5b:b2:d4:d0:df:46:79:00:
62:06:70:4b:00:ad:89:34:56:8e:c5:ec:6f:cd:0d:37:c2:59:
5a:be:50:00:63:4a:48:9d:15:ef:53:18:56:e9:c4:18:1a:0d:
9d:18:50:92:60:83:3a:07:1a:39:18:a5:3e:a5:ae:3c:42:5a:
2f:48:04:a2:d5:2e:1b:0e:2d:a3:e8:74:13:70:78:9a:ce:58:
e2:70:1d:3f:db:68:e5:cc:0e:c2:f1:55:07:6e:fe:ae:bc:72:
43:39:68:1f:5d:45:9a:5f:70:41:2f:c3:3e:b3:03:aa:73:ca:
68:68:50:f7:28:a7:23:a1:29:ac:b8:ec:04:3b:99:ba:59:3c:
82:0d:33:08:55:7e:16:fb:b5:3f:b1:d8:c6:af:41:94:04:a7:
49:83:e7:0e:c3:76:b6:39:7a:c3:28:40:d2:0e:d9:c3:0a:b9:
6e:63:13:a0:21:f5:c6:fb:98:62:f8:12:8a:4d:ac:ed:1b:c0:
48:a5:e4:a9:c1:b8:42:9e:41:96:e1:9e:a2:d5:e8:6c:c9:9a:
73:a3:98:fb:8b:89:97:57:af:01:b2:6f:b7:69:eb:c2:4c:57:
e7:f9:c4:c8:5b:ac:dd:11:39:55:3f:af:dc:e2:4a:e6:56:6c:
d4:f5:e9:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:52:13 2026 by rpki-client