Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139322e3134352e38322e302f32342d3234203d3e203439373033.roa
File: 3139322e3134352e38322e302f32342d3234203d3e203439373033.roa (raw, json)
Hash identifier: rc9CIOvXRk10xoyD9a62VAa2nRMP0xK21bAwC2eWtuI=
Subject key identifier: 73:F9:56:68:26:BD:27:99:64:F5:32:27:52:EF:D4:BA:CD:8B:D6:AC
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 61193CE63F2817A787BD13A78409CF8C78507BC3
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139322e3134352e38322e302f32342d3234203d3e203439373033.roa
Signing time: Sat 14 Mar 2026 08:23:25 +0000
ROA not before: Sat 14 Mar 2026 08:18:25 +0000
ROA not after: Sat 13 Mar 2027 08:23:25 +0000
asID: 49703
IP address blocks: 192.145.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:19:3c:e6:3f:28:17:a7:87:bd:13:a7:84:09:cf:8c:78:50:7b:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 14 08:18:25 2026 GMT
Not After : Mar 13 08:23:25 2027 GMT
Subject: CN=73F9566826BD279964F5322752EFD4BACD8BD6AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f8:89:1a:a1:f7:c7:11:f1:9b:cd:29:58:e3:
da:71:bd:b1:6c:14:57:eb:3e:18:e5:20:d4:24:e7:
a4:12:ec:cb:95:e4:f2:a4:3a:2e:28:de:00:d8:65:
72:f1:43:9f:27:51:1a:7c:39:e9:71:38:cd:f1:20:
34:67:72:c5:9d:c2:a1:d8:6f:72:48:ca:94:d5:7e:
e2:a7:73:3a:b1:40:2c:53:13:1e:9e:62:63:0d:be:
53:c1:83:f5:2e:3c:39:d4:ca:11:27:04:dd:00:1b:
75:a9:16:f5:4a:4f:60:6a:a7:a3:0d:c6:ed:a1:ff:
6b:b9:d3:48:58:11:a9:5a:9c:bf:e9:18:3f:72:14:
00:ae:77:86:b7:fe:98:63:e1:f7:56:8e:d1:9e:10:
e1:29:b1:67:23:36:90:d4:e4:bb:e8:08:07:49:a4:
a6:0f:47:f6:ad:90:13:6c:16:f7:4d:10:88:b1:a6:
cb:80:45:19:38:bb:f8:28:52:e6:95:83:6d:f7:04:
2c:4c:93:c6:f0:54:29:49:fb:f8:07:9a:fd:31:24:
27:d9:36:07:2b:4d:eb:0a:9e:7c:f7:c5:e1:76:66:
61:15:91:73:98:54:2f:b6:97:cd:e0:d8:08:81:e1:
16:18:6a:df:e6:b5:e8:ea:a1:a5:1d:55:e0:3d:95:
16:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F9:56:68:26:BD:27:99:64:F5:32:27:52:EF:D4:BA:CD:8B:D6:AC
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139322e3134352e38322e302f32342d3234203d3e203439373033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.82.0/24
Signature Algorithm: sha256WithRSAEncryption
53:c1:cd:e9:45:3a:16:fd:45:ba:94:8f:e1:71:97:2f:b8:ef:
7f:db:5f:6e:e4:d1:06:35:ee:10:f6:40:45:25:b9:bc:83:5e:
f1:01:2f:bc:2d:cf:26:a4:31:65:1c:63:9e:5c:de:a5:e8:6f:
d1:04:9f:8e:e1:95:91:70:42:fe:60:47:19:af:77:4d:42:dd:
89:8e:f8:90:a1:e4:1c:15:30:f9:08:1b:61:5d:29:ea:3f:83:
b0:6f:6e:2e:1e:c5:fe:29:93:a1:72:1c:4e:76:61:d4:da:82:
a8:ad:13:d1:81:d3:91:98:fe:7a:dc:db:75:12:05:fb:be:ce:
68:b4:51:25:ea:fc:89:bf:b1:5e:aa:0f:26:0d:88:c3:75:6d:
8c:67:f5:e3:cd:99:5d:f8:af:82:11:13:c0:45:40:d4:cb:ea:
26:8d:60:3a:3a:2f:10:56:3b:a4:76:a3:dd:83:46:e8:6a:e5:
9c:98:b1:dd:14:86:f1:dd:51:dd:0c:65:48:af:b9:df:d5:5b:
b7:5e:d5:9a:49:cb:7a:63:18:88:6e:3a:96:70:5d:78:02:44:
1f:a4:41:a1:63:10:1e:bb:ba:cf:d5:d2:62:1c:e5:12:3a:08:
8f:9e:aa:a1:25:d9:6f:cd:9c:b0:44:eb:b5:b2:78:83:80:d9:
99:a9:cb:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:02:50 2026 by rpki-client