Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/3138352e38332e3230332e302f32342d3234203d3e203432383331.roa
File: 3138352e38332e3230332e302f32342d3234203d3e203432383331.roa (raw, json)
Hash identifier: vE3mZbEyNBpJHwwfpUN+3jh9akDeqxovCVRFowCkJcU=
Subject key identifier: F9:86:DF:5F:0C:EB:7E:6F:C3:10:39:DD:AD:D9:91:EC:FF:7A:F8:7A
Certificate issuer: /CN=7374bc6d025135bed9539779a03fdd64abeba11f
Certificate serial: 18F4B6CFFE04AD5B021DDA59608E72644D1DEEFD
Authority key identifier: 73:74:BC:6D:02:51:35:BE:D9:53:97:79:A0:3F:DD:64:AB:EB:A1:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c3S8bQJRNb7ZU5d5oD_dZKvroR8.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/3138352e38332e3230332e302f32342d3234203d3e203432383331.roa
Signing time: Thu 26 Mar 2026 09:00:56 +0000
ROA not before: Thu 26 Mar 2026 08:55:56 +0000
ROA not after: Thu 25 Mar 2027 09:00:56 +0000
asID: 42831
IP address blocks: 185.83.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/7374BC6D025135BED9539779A03FDD64ABEBA11F.crl
rsync://rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/7374BC6D025135BED9539779A03FDD64ABEBA11F.mft
rsync://rpki.ripe.net/repository/DEFAULT/c3S8bQJRNb7ZU5d5oD_dZKvroR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 12:59:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:f4:b6:cf:fe:04:ad:5b:02:1d:da:59:60:8e:72:64:4d:1d:ee:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7374bc6d025135bed9539779a03fdd64abeba11f
Validity
Not Before: Mar 26 08:55:56 2026 GMT
Not After : Mar 25 09:00:56 2027 GMT
Subject: CN=F986DF5F0CEB7E6FC31039DDADD991ECFF7AF87A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:80:a1:32:b6:6c:5e:c0:e5:6c:23:78:44:3c:
c1:27:68:14:bc:d1:be:e6:47:0f:7a:19:1c:1c:f6:
ae:01:b6:2a:e3:5c:25:68:41:3c:03:21:c8:fd:13:
5b:1f:55:2a:0e:1b:56:f9:5c:a7:01:7d:5b:46:5f:
0a:6a:7b:6d:d3:76:e5:22:5e:85:f8:cd:b7:2a:44:
4f:33:95:3e:97:00:a5:35:83:c5:a1:6a:3a:48:d0:
5a:fd:3d:52:73:9b:db:84:4d:00:ce:6a:e3:50:05:
51:d0:68:1c:90:41:29:aa:10:47:2a:e8:8a:61:73:
1d:9a:db:a3:e5:de:ce:08:97:3d:bd:df:ba:04:7f:
94:7f:66:40:74:f9:06:43:1b:26:1d:20:9d:5c:0e:
23:2c:12:f2:e7:fc:b4:06:fa:4a:62:98:fb:99:1e:
d1:c5:9b:20:48:75:44:e0:bc:53:90:26:81:bd:af:
0d:17:5a:b5:cb:08:22:70:12:d6:97:47:00:28:f0:
c8:c4:37:65:91:6d:68:04:97:5e:57:20:86:78:b4:
a9:ac:1b:e2:0c:fa:c4:5a:86:68:f2:c2:24:19:b0:
3c:6c:36:e0:98:12:67:0f:0e:2a:cb:92:9b:be:f1:
08:22:97:8c:65:65:a0:d1:23:7b:0e:5f:05:01:20:
db:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:86:DF:5F:0C:EB:7E:6F:C3:10:39:DD:AD:D9:91:EC:FF:7A:F8:7A
X509v3 Authority Key Identifier:
keyid:73:74:BC:6D:02:51:35:BE:D9:53:97:79:A0:3F:DD:64:AB:EB:A1:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/7374BC6D025135BED9539779A03FDD64ABEBA11F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3S8bQJRNb7ZU5d5oD_dZKvroR8.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e42585f7-bc1b-4970-bd34-dbfd2b2147d2/0/3138352e38332e3230332e302f32342d3234203d3e203432383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.203.0/24
Signature Algorithm: sha256WithRSAEncryption
49:41:62:0a:db:e5:d3:91:e4:e0:22:2c:ce:c6:7d:f9:71:69:
f4:da:64:1e:4a:8d:7c:88:3e:6b:98:67:bb:b3:48:d1:c5:51:
d8:5a:ea:ba:cb:42:13:ca:61:4e:c0:c2:b5:5e:cf:d1:42:40:
6f:f9:0c:3d:c1:21:52:54:7d:e1:8c:7b:db:cd:4d:7a:6a:11:
19:f6:e0:25:24:c5:49:97:68:d8:a6:b7:78:e2:30:da:5a:1f:
b0:de:cd:d4:7d:1f:c5:d7:45:da:2c:c1:28:d2:0a:dc:a8:48:
f5:a7:73:97:0f:aa:56:a1:5b:ed:17:7c:75:e0:38:6e:35:93:
61:eb:72:3a:1a:6a:e4:72:c4:ca:67:23:0c:58:6f:43:6c:12:
94:32:20:8f:55:80:f5:10:38:8a:a4:44:9e:f8:c6:5d:aa:e4:
8d:db:04:2a:cd:4d:7e:a6:7a:1b:bd:69:38:08:fa:fa:f5:f4:
32:cd:09:8e:c6:44:63:92:f3:9a:17:f4:7e:2d:08:ca:73:38:
38:7f:48:d7:2c:0d:9f:ed:4e:9f:1f:41:97:a1:22:2d:95:b4:
88:a6:6e:30:cb:49:68:f5:19:75:37:05:5f:7a:fb:3d:b9:43:
ad:8f:cc:90:90:2c:31:07:45:a8:55:26:c3:81:bb:df:e0:d6:
e8:c8:c0:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 02:10:20 2026 by rpki-client