Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138342e302f32332d3234203d3e2036303739.roa
File: 3138352e3232322e3138342e302f32332d3234203d3e2036303739.roa (raw, json)
Hash identifier: +c+VLRVeyk0lI1z6lBbP6i5cMcMku06kNdl+2FL5KaM=
Subject key identifier: FB:53:FF:1C:D4:9F:D7:48:D8:DB:6F:58:3C:92:26:26:39:0E:BE:D0
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 7FB790AF9702F6F9C343A46B21A4272705F1BF58
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138342e302f32332d3234203d3e2036303739.roa
Signing time: Fri 24 Apr 2026 11:54:14 +0000
ROA not before: Fri 24 Apr 2026 11:49:14 +0000
ROA not after: Fri 23 Apr 2027 11:54:14 +0000
asID: 6079
IP address blocks: 185.222.184.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:b7:90:af:97:02:f6:f9:c3:43:a4:6b:21:a4:27:27:05:f1:bf:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Apr 24 11:49:14 2026 GMT
Not After : Apr 23 11:54:14 2027 GMT
Subject: CN=FB53FF1CD49FD748D8DB6F583C922626390EBED0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a7:93:ea:be:95:2a:35:aa:77:12:81:18:92:
05:3c:1c:ea:45:fa:a3:00:6f:95:ca:08:3e:f2:40:
a9:25:be:08:55:03:fa:1c:b5:6b:b4:fb:87:95:c4:
ba:aa:ee:78:6b:fa:52:84:22:cf:3f:ac:e4:0b:52:
1a:72:6d:f1:12:6e:07:b4:c7:2e:60:10:5f:44:17:
14:d5:e1:3e:7d:30:19:95:09:a2:61:2e:f1:1d:f2:
5d:b2:e2:be:b8:71:ea:be:99:58:7c:69:e8:6c:62:
d7:29:b6:92:6e:a1:24:dc:f7:78:86:58:cc:f3:75:
5c:71:fb:cb:52:8b:86:15:c9:6a:a8:a5:74:6e:70:
90:01:6b:63:35:7a:11:2b:c9:68:f7:83:2b:ce:a9:
0c:09:b5:8b:1a:e5:d8:c1:0b:6d:e0:57:90:6b:1f:
aa:2b:8d:d7:01:74:e4:5d:0d:05:22:ac:bc:bb:3a:
6d:e2:7b:e4:76:2f:a9:fa:47:76:0d:8f:66:9c:6c:
3a:08:d0:59:2c:95:7f:ab:01:55:a3:cc:74:ba:6d:
00:3f:b2:d3:63:eb:41:1e:81:34:67:99:40:66:8f:
10:4c:c4:d3:80:f0:63:1d:a7:d7:10:84:c8:ae:9c:
ae:81:bc:96:7e:37:ec:5a:92:cc:bb:6c:5f:02:1d:
a3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:53:FF:1C:D4:9F:D7:48:D8:DB:6F:58:3C:92:26:26:39:0E:BE:D0
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138342e302f32332d3234203d3e2036303739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.184.0/23
Signature Algorithm: sha256WithRSAEncryption
02:97:77:47:0f:f7:cd:b8:e0:6a:e2:42:58:7b:1e:20:1b:0b:
aa:54:8f:ba:e2:90:8c:b0:eb:f5:c1:fd:3e:e2:85:4d:11:a4:
7d:e9:cc:6d:7f:8c:79:77:e1:64:f7:dc:37:f2:1b:bc:21:9b:
ca:0f:d4:c9:0f:4f:c5:5c:8a:5f:92:d5:d0:7d:10:d7:0f:39:
c7:06:2e:bd:e1:e7:62:b6:7e:c9:90:f9:1e:db:01:8c:2f:55:
60:84:b3:ae:a9:af:86:99:64:2f:12:d1:52:ea:d3:73:e5:e5:
e1:6c:63:8d:33:5b:bb:8a:9f:66:19:fa:ef:b7:9c:5b:96:7d:
1d:c2:18:dc:c9:1f:a4:74:a5:2a:90:92:66:b8:16:60:ad:8f:
3e:e1:db:18:37:6d:b5:66:97:a3:16:73:45:81:cb:5b:89:8d:
29:4b:89:f4:31:d9:f2:c4:5e:8d:1c:b5:aa:d4:c1:0b:55:d9:
de:61:fa:cc:d8:25:df:ab:5d:40:90:f9:70:c1:cf:fb:8a:ce:
23:3b:43:94:88:36:5a:ee:e0:a0:6b:70:ba:02:b0:c5:04:43:
c7:fa:6f:ec:91:96:f6:0c:61:bf:e8:ae:cd:65:79:b4:89:98:
69:08:49:e2:da:93:33:a6:30:23:a6:2a:3a:4b:c8:ac:ce:48:
c4:63:5f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:55:59 2026 by rpki-client