Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/3138352e38332e3230322e302f32342d3234203d3e203331383938.roa
File: 3138352e38332e3230322e302f32342d3234203d3e203331383938.roa (raw, json)
Hash identifier: jFSFPb6zDrffv3eJmdaT8EHgxi7FvRRWbYa1PK3fJo4=
Subject key identifier: 36:53:99:BA:C0:6A:F9:55:B6:CC:B3:C2:BA:E9:D7:95:63:55:39:56
Certificate issuer: /CN=7374bc6d025135bed9539779a03fdd64abeba11f
Certificate serial: 4B2E66D78776D704A6784601B133E9CDB360E5B2
Authority key identifier: 73:74:BC:6D:02:51:35:BE:D9:53:97:79:A0:3F:DD:64:AB:EB:A1:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c3S8bQJRNb7ZU5d5oD_dZKvroR8.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/3138352e38332e3230322e302f32342d3234203d3e203331383938.roa
Signing time: Thu 26 Mar 2026 09:00:56 +0000
ROA not before: Thu 26 Mar 2026 08:55:56 +0000
ROA not after: Thu 25 Mar 2027 09:00:56 +0000
asID: 31898
IP address blocks: 185.83.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/7374BC6D025135BED9539779A03FDD64ABEBA11F.crl
rsync://rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/7374BC6D025135BED9539779A03FDD64ABEBA11F.mft
rsync://rpki.ripe.net/repository/DEFAULT/c3S8bQJRNb7ZU5d5oD_dZKvroR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 12:59:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:2e:66:d7:87:76:d7:04:a6:78:46:01:b1:33:e9:cd:b3:60:e5:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7374bc6d025135bed9539779a03fdd64abeba11f
Validity
Not Before: Mar 26 08:55:56 2026 GMT
Not After : Mar 25 09:00:56 2027 GMT
Subject: CN=365399BAC06AF955B6CCB3C2BAE9D79563553956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6f:36:c7:a0:89:28:18:92:f4:cd:9b:09:8c:
5a:6d:19:be:58:5a:14:1b:4c:a9:fc:e1:87:9a:27:
67:2c:8b:b9:5c:0a:c7:de:9f:a4:ed:29:ca:8a:96:
d4:21:f7:ef:2b:bb:a9:24:32:d9:c6:49:a0:11:99:
a4:08:f2:a8:cf:cc:31:37:a7:97:61:e4:c2:3d:b2:
20:30:97:12:6b:9f:a7:a9:5b:b2:64:d7:8e:6d:cc:
84:b3:15:82:d3:6b:85:60:90:56:03:2d:9d:fc:42:
f2:36:04:bd:9b:b2:20:7d:79:13:eb:16:a3:cc:87:
b6:ca:16:92:5d:8d:0e:09:d8:45:67:86:2b:91:66:
ba:3b:a2:a7:75:b3:b4:ed:3a:cb:b5:29:7c:52:ca:
01:3c:21:f4:44:b4:b1:7c:36:f9:84:f2:9b:02:d9:
27:b5:fa:d3:bf:84:8a:8a:64:36:78:f9:94:a6:95:
cf:a6:47:52:05:19:20:d6:1b:17:50:c0:ad:ee:18:
12:e4:03:87:26:2c:7f:c6:39:19:c1:92:61:77:bb:
33:cf:37:b4:2a:92:bf:b1:f8:01:7f:1a:6b:e2:17:
11:af:47:50:b5:e6:21:1b:79:43:85:a1:a1:b8:b1:
71:2d:68:31:d7:a2:a1:b5:e5:45:07:e0:54:b7:aa:
87:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:53:99:BA:C0:6A:F9:55:B6:CC:B3:C2:BA:E9:D7:95:63:55:39:56
X509v3 Authority Key Identifier:
keyid:73:74:BC:6D:02:51:35:BE:D9:53:97:79:A0:3F:DD:64:AB:EB:A1:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/7374BC6D025135BED9539779A03FDD64ABEBA11F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3S8bQJRNb7ZU5d5oD_dZKvroR8.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/3138352e38332e3230322e302f32342d3234203d3e203331383938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.202.0/24
Signature Algorithm: sha256WithRSAEncryption
86:48:2d:0a:05:76:eb:da:a4:f0:af:9a:b8:ee:6a:98:74:99:
a4:87:91:26:6f:10:e5:90:96:31:58:e3:c5:cd:3f:3d:dd:c8:
b8:38:c9:05:7a:7b:d8:fa:ff:62:c6:86:50:31:54:d9:88:e9:
55:2a:2e:aa:14:ad:d5:97:4b:b0:13:cb:92:b4:64:0e:19:71:
bf:8c:03:88:46:73:b0:18:6c:3a:e1:02:94:09:0b:7f:9c:b1:
3c:8c:1e:52:24:a6:f9:64:46:81:04:b2:22:ef:83:ee:44:21:
93:49:15:b2:ef:39:8e:cf:b6:35:7a:b7:8d:26:2e:93:bb:be:
53:b8:f6:3f:3e:94:33:9a:f4:56:8c:8e:48:dd:ad:85:2d:b5:
10:66:ba:48:9b:1b:71:d5:24:f0:12:34:29:37:bd:06:69:48:
cc:c4:6d:76:d2:d9:70:0c:da:3a:c1:3c:e4:ed:40:47:a6:52:
41:7b:c8:f5:bc:7d:b5:55:0a:49:20:20:64:03:b0:96:f3:ac:
6f:64:55:53:96:bd:c9:00:4f:cf:de:63:49:a0:e2:74:ff:59:
61:c0:60:3d:d8:09:10:20:75:75:1a:2b:d1:65:72:69:f3:a7:
48:db:d1:c2:cb:c2:f4:64:7d:cb:a6:8e:fa:89:d5:fe:60:4b:
31:62:7f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:33:44 2026 by rpki-client