Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3131362e302f32342d3234203d3e20333935373933.roa
File: 3134352e37392e3131362e302f32342d3234203d3e20333935373933.roa (raw, json)
Hash identifier: nWgTQuDnh4wL9Rm6EfH68Vt/Av0cMuc3LOhnygBdD78=
Subject key identifier: 11:22:DD:8F:5D:25:8D:D6:C8:5B:10:67:9F:4F:7E:FB:2E:10:7D:F9
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 71B9BBC34535B8E239742BE510F2C847A635740D
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3131362e302f32342d3234203d3e20333935373933.roa
Signing time: Tue 05 May 2026 09:47:13 +0000
ROA not before: Tue 05 May 2026 09:42:13 +0000
ROA not after: Tue 04 May 2027 09:47:13 +0000
asID: 395793
IP address blocks: 145.79.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:12:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:b9:bb:c3:45:35:b8:e2:39:74:2b:e5:10:f2:c8:47:a6:35:74:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 5 09:42:13 2026 GMT
Not After : May 4 09:47:13 2027 GMT
Subject: CN=1122DD8F5D258DD6C85B10679F4F7EFB2E107DF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5c:54:ba:cb:7d:c6:9a:40:c6:43:52:d7:95:
09:19:02:d4:07:96:3b:24:3a:8c:cd:ba:af:a2:7a:
96:4a:c1:84:48:07:67:3c:a5:27:16:dc:8a:5b:59:
20:fc:f5:72:c9:0b:e4:52:a7:5a:3b:73:69:ea:82:
4d:56:a8:ff:dd:fd:92:0b:99:d9:27:63:b8:fd:a8:
cf:5c:ce:01:8f:ef:c4:58:a8:4f:90:e8:82:ec:60:
f4:98:f9:08:81:f4:2a:ba:25:df:4e:46:ce:10:df:
43:7a:31:1c:7f:d9:dd:8c:a0:13:02:91:63:58:fc:
e2:bc:63:43:2e:14:f3:be:f6:57:fe:64:6f:10:63:
44:6a:64:24:b7:71:33:03:f5:86:09:bb:0f:c8:f2:
d4:91:7a:17:78:39:7c:68:0a:89:56:f4:44:2f:5c:
18:b7:25:88:ab:ec:1e:ef:aa:0f:53:dc:61:e8:56:
4b:7c:9c:23:7f:5d:74:97:39:0f:dc:b6:39:ea:74:
c7:0d:8d:44:a8:31:b5:d1:6b:75:2d:39:db:b4:0f:
9f:0a:d5:dc:30:f9:6a:a4:e4:6a:a0:ef:dc:52:f8:
a4:71:94:37:2f:89:a3:95:36:16:2c:d4:d0:88:e4:
af:24:49:7f:81:37:7d:22:7f:54:ca:e5:c1:4f:23:
1f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:22:DD:8F:5D:25:8D:D6:C8:5B:10:67:9F:4F:7E:FB:2E:10:7D:F9
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3131362e302f32342d3234203d3e20333935373933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.116.0/24
Signature Algorithm: sha256WithRSAEncryption
21:ff:6e:28:35:da:c8:45:74:ff:68:0a:ea:f2:a5:43:fe:41:
35:eb:54:76:53:f5:4b:6c:09:f1:ea:b8:fb:a8:8d:1e:2f:73:
24:60:b2:f3:7e:eb:57:f7:6f:b1:1d:11:ef:f8:2c:2a:8c:2d:
e6:b6:38:3e:9b:e2:ba:1f:9c:e4:79:7a:57:36:40:ee:4a:fc:
c3:32:75:52:08:dc:40:59:04:31:b8:c8:1f:1c:fb:23:4d:fa:
03:32:72:b3:bd:e0:0b:9f:66:19:fa:1e:ec:62:f4:d8:ce:10:
a3:bd:4b:fe:4d:ac:93:85:10:af:a9:1c:c8:bd:76:3e:6e:ac:
96:e9:3b:a2:20:c3:6b:ae:05:fb:64:ff:ff:a1:c7:9b:62:72:
00:99:4b:57:9e:85:de:0a:c7:75:85:04:0a:30:7d:44:96:f9:
53:75:44:28:5c:90:f7:67:25:d4:21:8c:a1:b6:a0:cb:c6:ee:
e8:6c:d0:f0:67:fe:02:2e:40:e5:7b:fd:41:ba:9a:ce:9d:36:
06:ac:cb:b4:a9:4e:f0:90:04:c2:2e:dc:7f:0f:4f:61:e3:82:
65:3d:22:6e:4b:d0:a9:79:af:47:4d:b4:7c:6a:35:01:b6:a7:
55:da:bf:16:2c:78:5f:32:46:11:16:7f:1f:71:ec:12:45:7c:
5b:30:3a:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:45:12 2026 by rpki-client