Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/3130332e34392e3133302e302f32342d3234203d3e20343032323135.roa
File: 3130332e34392e3133302e302f32342d3234203d3e20343032323135.roa (raw, json)
Hash identifier: aW/xLBg9ua0jKdsNmygUuLXK90nq3PbwHys9f9FQ3kc=
Subject key identifier: F0:8A:A1:EC:06:0C:47:F8:1F:72:13:B4:CD:A8:25:49:6A:42:67:AE
Certificate issuer: /CN=c770f43358b97ba0aa9bdc62bbd511e90aeab29d
Certificate serial: 3B036A6A15931A94DCF65B801C411656C2923AFA
Authority key identifier: C7:70:F4:33:58:B9:7B:A0:AA:9B:DC:62:BB:D5:11:E9:0A:EA:B2:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x3D0M1i5e6Cqm9xiu9UR6Qrqsp0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/3130332e34392e3133302e302f32342d3234203d3e20343032323135.roa
Signing time: Mon 04 May 2026 15:07:34 +0000
ROA not before: Mon 04 May 2026 15:02:34 +0000
ROA not after: Mon 03 May 2027 15:07:34 +0000
asID: 402215
IP address blocks: 103.49.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/C770F43358B97BA0AA9BDC62BBD511E90AEAB29D.crl
rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/C770F43358B97BA0AA9BDC62BBD511E90AEAB29D.mft
rsync://rpki.ripe.net/repository/DEFAULT/x3D0M1i5e6Cqm9xiu9UR6Qrqsp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:03:6a:6a:15:93:1a:94:dc:f6:5b:80:1c:41:16:56:c2:92:3a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c770f43358b97ba0aa9bdc62bbd511e90aeab29d
Validity
Not Before: May 4 15:02:34 2026 GMT
Not After : May 3 15:07:34 2027 GMT
Subject: CN=F08AA1EC060C47F81F7213B4CDA825496A4267AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3a:7e:72:14:79:c6:c4:b5:85:5d:08:59:a7:
ac:63:f0:2c:c1:d2:05:fa:85:81:94:18:6d:e3:45:
f9:6d:a2:4c:ec:84:b3:c9:ef:42:02:68:80:f8:2d:
1e:81:9e:be:fb:ea:e7:88:90:7a:a5:d0:f4:64:6e:
4a:ae:b2:63:57:5f:e9:2f:38:d0:b1:7d:51:30:63:
5c:e6:08:b7:5b:e3:1c:74:18:07:d6:b2:8a:ef:0d:
71:33:5a:bd:3f:09:15:60:ea:82:bd:a2:af:39:83:
3a:d5:d6:c0:d2:5e:e4:7e:99:8b:0e:d3:92:fd:ef:
11:c0:23:dd:22:8b:ae:0b:57:4e:56:77:f8:c8:7a:
41:16:e1:47:0d:bb:92:a1:81:e7:69:ef:f8:8b:7f:
32:aa:39:19:76:ef:59:ef:b4:0d:8f:18:7c:55:8b:
7d:a8:83:55:19:03:3b:20:fe:93:24:cb:82:d6:93:
12:28:84:d5:bf:64:85:c8:96:4e:fb:b3:b1:33:61:
7e:89:aa:02:23:4d:45:f3:4e:e7:09:6f:7c:b8:d0:
41:0c:56:b5:90:a7:79:80:9c:2e:5f:c5:c7:ff:30:
22:39:53:15:39:0e:e3:de:d5:3b:8c:61:8a:6a:47:
1c:50:69:96:d5:0c:bf:f8:4d:3d:bb:92:c1:3a:a6:
29:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8A:A1:EC:06:0C:47:F8:1F:72:13:B4:CD:A8:25:49:6A:42:67:AE
X509v3 Authority Key Identifier:
keyid:C7:70:F4:33:58:B9:7B:A0:AA:9B:DC:62:BB:D5:11:E9:0A:EA:B2:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/C770F43358B97BA0AA9BDC62BBD511E90AEAB29D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x3D0M1i5e6Cqm9xiu9UR6Qrqsp0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/eafebdb4-6f0b-404b-98e2-a26be94a6620/0/3130332e34392e3133302e302f32342d3234203d3e20343032323135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.49.130.0/24
Signature Algorithm: sha256WithRSAEncryption
75:d3:77:ef:91:ba:7d:1d:c6:80:e3:21:d2:e0:23:e3:57:ca:
3d:cd:39:6a:82:81:ef:85:22:49:8b:50:96:6e:66:d4:52:c5:
74:06:93:2e:d6:b6:fb:b2:ad:6c:b6:f5:36:13:2d:50:b4:88:
c6:b4:a8:4e:93:80:3b:62:a5:ad:f3:63:d8:1c:71:d2:22:94:
1f:ab:26:b0:15:1c:2b:6b:5c:bd:3c:a5:f8:02:49:26:5e:a4:
90:52:20:74:26:86:4c:36:20:b8:ad:2d:c1:3c:bd:e3:05:de:
a1:3f:8e:6c:ea:81:b2:d1:d5:88:65:fa:62:a7:7f:5a:ab:b6:
c4:ec:ac:ba:3e:a2:9b:bc:dc:6e:5b:76:3f:96:e6:70:ad:e1:
a6:45:0c:b2:d2:8d:79:60:b0:9b:2e:9c:b9:33:ab:55:00:0a:
8d:62:cb:6a:fd:81:3a:e5:cf:57:d5:82:e9:dd:cc:ac:14:5c:
bf:c0:7b:69:6b:7b:a2:f4:9d:2f:41:e0:c2:f9:34:b4:27:a3:
bc:a0:d6:ee:f3:dd:e3:6b:2f:a7:91:86:ad:da:b7:e2:21:26:
ee:41:46:8f:8b:7e:99:de:93:c8:75:d7:62:97:3e:5c:c3:d9:
a4:f0:70:31:ef:a9:ea:5f:59:17:3d:1d:71:65:3d:56:a7:c2:
c2:80:de:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:11:08 2026 by rpki-client