Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e39322e302f32342d3234203d3e20323135373438.roa
File: 3134352e37392e39322e302f32342d3234203d3e20323135373438.roa (raw, json)
Hash identifier: 9kQYSTY31iTkR+kYjD6HYrh/amHYz6jUYqMM55+Hfm4=
Subject key identifier: 31:51:F0:B2:61:9C:4B:8B:FF:14:D3:B3:22:97:AA:2E:76:9B:42:9C
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7F14C7D37FF38D99C20C36DA83FB828AFF3AB632
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e39322e302f32342d3234203d3e20323135373438.roa
Signing time: Tue 10 Mar 2026 07:16:54 +0000
ROA not before: Tue 10 Mar 2026 07:11:54 +0000
ROA not after: Tue 09 Mar 2027 07:16:54 +0000
asID: 215748
IP address blocks: 145.79.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:21:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:14:c7:d3:7f:f3:8d:99:c2:0c:36:da:83:fb:82:8a:ff:3a:b6:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 10 07:11:54 2026 GMT
Not After : Mar 9 07:16:54 2027 GMT
Subject: CN=3151F0B2619C4B8BFF14D3B32297AA2E769B429C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7f:b2:2f:c1:0e:c0:55:6a:a1:87:b3:46:29:
c5:38:2f:97:c5:71:8c:54:bf:32:1f:99:a6:84:5f:
73:a6:fa:70:ca:9c:7c:e8:ad:fd:a7:d8:63:07:46:
54:38:2e:39:cd:9d:6c:89:45:1f:38:9d:bb:84:ea:
89:4d:b6:05:c5:4d:f2:31:bc:3f:8a:cf:01:59:9c:
9c:86:a4:27:b3:b4:e5:d1:05:c1:e4:17:d5:cb:79:
59:45:db:c4:70:6c:8c:2b:5e:16:eb:f0:bf:0d:be:
c4:c7:82:a0:96:58:d4:89:e7:ff:57:79:cd:88:18:
ba:2f:2d:44:af:08:59:92:fa:97:30:d8:c7:6b:b5:
51:91:ad:db:63:1c:46:0d:f0:7e:51:5a:e1:e4:d8:
8c:07:ca:9c:7f:07:db:a0:5c:5f:af:bf:78:ce:18:
d2:28:ce:e3:dc:96:03:3b:ae:b5:17:e4:32:ee:53:
ff:7b:82:97:1d:8e:5d:7a:d0:33:31:37:b0:5c:d3:
ca:35:c9:35:c5:76:5d:26:cd:cd:5a:23:25:10:b1:
03:72:11:a9:93:1e:b7:fa:b0:9e:6b:20:61:29:ac:
29:0a:d9:3e:fc:49:74:a4:41:f7:4d:0c:c9:df:8b:
80:a2:72:0e:9d:c3:30:5d:e4:84:4f:64:2c:e3:b1:
11:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:51:F0:B2:61:9C:4B:8B:FF:14:D3:B3:22:97:AA:2E:76:9B:42:9C
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e39322e302f32342d3234203d3e20323135373438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.92.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:71:47:7a:02:6f:19:01:d9:36:cd:3d:98:a8:f6:e8:a0:63:
da:d7:bd:62:7b:9b:5a:73:fb:77:74:5e:00:5f:f0:28:80:68:
ba:42:b8:50:03:59:01:4b:73:3d:da:d6:d7:ea:eb:de:2c:92:
fc:c7:67:5a:60:8b:8b:ba:a1:a6:31:7b:d5:0f:d4:f4:bc:46:
b5:7d:45:be:88:4c:28:be:4d:03:94:b5:54:a1:3c:e6:0c:2e:
6f:58:1c:e2:cf:a5:c8:0a:5e:2d:dc:3a:9e:76:ea:71:aa:59:
06:55:b1:c9:00:88:cb:67:0f:47:22:8d:d4:e9:ce:6f:69:02:
92:df:02:7b:35:e3:d7:a7:c9:dc:73:8a:5c:94:cf:3f:ce:e7:
d4:a0:33:99:83:7e:bf:9d:06:b3:d7:0e:c8:db:b1:5a:8d:77:
84:fb:e6:27:63:00:14:30:c4:86:af:4e:5a:05:46:12:8a:c5:
d2:8a:8c:68:9f:5b:bd:6b:bd:a1:27:88:e4:e7:0f:89:e1:9c:
6d:c4:e0:c0:cb:e9:70:3a:30:00:3b:ba:3e:92:9f:bb:1f:6f:
e5:73:3d:53:51:08:33:bf:b6:1e:63:55:e7:44:2d:40:45:da:
bf:74:18:c7:c7:4d:84:db:50:67:43:75:46:ea:bb:a2:02:6c:
4b:a2:20:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:44:33 2026 by rpki-client