Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3130362e302f32342d3234203d3e20323135373438.roa
File: 3134352e37392e3130362e302f32342d3234203d3e20323135373438.roa (raw, json)
Hash identifier: iWwtj1PZHCbwyDtGHwx5sOXs+MyV1AEG3EeVt2Ihp7k=
Subject key identifier: EA:1A:2E:51:26:77:B2:09:2F:BD:A1:38:23:4A:ED:87:DC:54:05:BB
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1342A8669E6DA65C7FE6B9E8F62D381ABCE67B3C
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3130362e302f32342d3234203d3e20323135373438.roa
Signing time: Tue 10 Mar 2026 07:15:19 +0000
ROA not before: Tue 10 Mar 2026 07:10:19 +0000
ROA not after: Tue 09 Mar 2027 07:15:19 +0000
asID: 215748
IP address blocks: 145.79.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:21:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:42:a8:66:9e:6d:a6:5c:7f:e6:b9:e8:f6:2d:38:1a:bc:e6:7b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 10 07:10:19 2026 GMT
Not After : Mar 9 07:15:19 2027 GMT
Subject: CN=EA1A2E512677B2092FBDA138234AED87DC5405BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:dd:00:d5:14:5e:4b:9d:56:18:d3:3f:11:6c:
36:6e:63:72:c6:24:4a:a1:34:8c:a1:d0:23:14:c2:
f5:52:29:93:64:02:2c:f6:f7:3e:6f:1f:be:29:c2:
f8:04:a4:73:a2:a1:0e:34:57:ac:a1:43:20:f9:06:
a7:a8:77:b5:c2:be:21:be:9e:ac:af:bb:b3:b4:94:
99:95:fe:37:17:7d:a5:98:c2:24:fb:29:aa:56:d1:
26:c7:3f:46:d3:98:57:24:d0:de:5f:9e:09:91:45:
09:28:36:5e:16:21:eb:3d:37:de:f7:21:25:f3:f3:
76:1b:b2:23:0f:0c:b7:34:4d:8f:22:48:3d:a7:98:
dc:bf:84:36:c2:d6:78:31:dd:fa:b1:da:10:ef:43:
3d:5d:77:d6:50:fa:59:00:9e:0f:15:4c:9d:b7:0c:
08:46:d0:97:25:d9:f9:a4:b6:0a:e7:ce:56:a4:27:
a3:3a:39:90:27:80:85:3f:63:6b:4e:1e:3e:74:87:
94:f9:8d:10:8a:1f:04:61:38:b0:3d:9c:2d:97:ab:
bf:09:6e:17:2e:db:ee:ab:55:4f:79:44:65:29:1d:
4c:75:ff:3a:b3:1a:7d:f0:5f:be:d2:e3:6b:5f:81:
c0:63:30:1f:32:6a:3a:b0:22:9c:30:d4:ef:75:a6:
08:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:1A:2E:51:26:77:B2:09:2F:BD:A1:38:23:4A:ED:87:DC:54:05:BB
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3130362e302f32342d3234203d3e20323135373438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.106.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:44:f9:10:94:22:da:cc:4c:d8:e4:47:34:a0:b0:08:2a:a0:
40:71:d6:07:df:e1:72:32:54:a9:7a:11:f8:56:08:15:a4:83:
6d:74:e5:eb:37:41:86:85:5a:07:a4:8d:b3:b3:3f:63:3e:46:
bb:58:4d:ae:1d:f5:c6:57:0c:12:d4:f9:d8:2f:52:c7:b4:95:
4e:db:bb:01:51:54:55:e2:6f:bb:62:f0:4f:fa:2b:30:8b:68:
50:3b:53:49:e3:15:f5:6f:4b:04:34:79:c1:6e:54:dd:5f:64:
70:03:60:f4:31:60:6e:88:da:69:68:5f:b9:d4:1d:45:c5:17:
9d:f0:21:17:ea:f5:59:fe:c6:48:62:c9:b8:0c:42:c5:49:89:
9a:9f:08:dd:b6:b2:3b:61:6c:e0:9e:4b:ea:3f:b8:01:97:17:
1f:e5:47:a8:8d:be:10:c1:12:e3:b2:35:1b:ab:15:3a:22:06:
4a:57:17:d3:b0:35:bc:18:85:9a:ea:ff:e9:3b:c3:f4:ab:b9:
44:4d:1e:49:2f:d6:47:03:38:79:22:81:48:40:ec:52:e6:73:
0a:2a:1d:36:de:61:93:91:df:97:c8:4d:14:28:ea:03:3d:7a:
38:67:6d:4c:1d:dc:10:28:14:d5:d2:5f:5e:e6:a2:14:c9:5e:
4b:f7:35:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:44:32 2026 by rpki-client