Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3131322e3234342e302f32322d3234203d3e203437353833.roa
File: 38322e3131322e3234342e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: Uu8tELaJ3LukpiER62IDBzs9eSjS8GUyunPHve+mmFw=
Subject key identifier: 6E:56:DB:63:20:82:B5:1E:5A:5C:B4:AA:31:E9:68:D1:15:AE:B3:3A
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 078263CCD66099FF946DFB307D2232A2BB8100BE
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3131322e3234342e302f32322d3234203d3e203437353833.roa
Signing time: Wed 29 Apr 2026 21:23:57 +0000
ROA not before: Wed 29 Apr 2026 21:18:57 +0000
ROA not after: Wed 28 Apr 2027 21:23:57 +0000
asID: 47583
IP address blocks: 82.112.244.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:12:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:82:63:cc:d6:60:99:ff:94:6d:fb:30:7d:22:32:a2:bb:81:00:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Apr 29 21:18:57 2026 GMT
Not After : Apr 28 21:23:57 2027 GMT
Subject: CN=6E56DB632082B51E5A5CB4AA31E968D115AEB33A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ce:71:e3:da:f2:1a:e2:75:0b:f8:a2:a7:86:
fe:27:76:26:52:19:f5:ee:58:c3:4a:25:05:ca:8b:
b7:fc:62:07:86:5c:e6:73:33:97:b1:b7:4f:56:d4:
f6:d1:6b:a6:12:b3:ca:85:bc:9b:0f:ba:40:51:8f:
5f:0f:b6:b3:7e:a1:2c:a2:24:61:8c:77:8f:2b:67:
42:f1:6e:ab:b9:39:a5:8f:34:e0:89:45:5a:c1:c1:
f9:20:d0:c0:68:6c:bf:e5:bc:b5:5b:8e:52:20:ab:
f8:fc:a7:1b:47:9e:f7:a3:c4:dc:f3:57:6d:44:0a:
5c:c2:d8:99:27:5f:36:f3:22:b4:64:73:96:4e:f4:
28:13:ca:1d:19:7d:20:42:eb:4d:3b:1c:f9:95:6a:
3c:e4:c4:10:19:a1:8d:27:08:1f:31:6f:18:cc:81:
17:03:38:98:eb:c4:78:9b:7b:e1:f4:bb:b9:2a:a4:
cc:e7:00:08:d4:54:ff:c4:dc:8e:b4:5c:e4:b0:1f:
c5:28:1c:28:ee:58:fb:cc:5f:a8:53:e3:fa:f1:e5:
44:ff:38:bb:1e:29:1f:65:53:7e:f0:ce:a5:e2:04:
11:69:da:5e:31:f2:6b:88:f1:16:f8:b0:40:b2:3f:
29:ba:4e:3b:50:72:5a:35:41:9f:6b:d7:b5:73:59:
6a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:56:DB:63:20:82:B5:1E:5A:5C:B4:AA:31:E9:68:D1:15:AE:B3:3A
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3131322e3234342e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.112.244.0/22
Signature Algorithm: sha256WithRSAEncryption
13:02:20:c2:c4:a7:83:eb:78:3b:05:76:8b:fd:95:95:20:dd:
8c:de:fb:90:26:a9:cf:49:07:c8:02:fe:d7:64:e9:e8:87:76:
38:13:85:f7:3d:da:03:5a:9e:91:03:61:39:c0:5a:b3:cc:c3:
85:83:da:4d:f9:85:72:76:9c:05:de:14:ec:6e:55:30:b8:2e:
aa:11:75:2f:99:f2:54:6f:8f:85:bc:66:fe:9c:7b:6c:1d:4c:
89:39:66:2f:fa:37:04:17:75:59:7d:38:dd:e6:0b:b2:23:a3:
b1:15:b2:71:d8:69:b4:93:2d:49:6d:9d:3d:ec:5c:be:4a:36:
30:ba:1c:50:00:c9:54:69:d3:82:cd:b4:ec:de:eb:4b:b8:ef:
c5:ec:6b:05:fd:5e:a5:e5:a8:a1:ab:07:f4:ee:df:6b:ef:33:
b5:a6:2e:84:fe:5f:00:f7:29:ad:5b:10:59:40:50:52:b4:92:
11:db:9d:f0:a8:36:8d:e4:83:5b:28:c1:52:2f:ea:10:7b:65:
b9:d8:2a:76:7e:44:6c:25:b2:5c:e6:31:3e:f1:8a:ae:f8:92:
c2:3b:1c:9a:68:72:41:bf:5d:5c:f0:a5:8d:b0:22:79:79:f1:
5a:20:81:a9:5a:33:83:e2:58:5c:fc:00:aa:0b:7c:8c:d6:a0:
23:cb:e9:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:27:35 2026 by rpki-client