Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/3138352e3139302e3232382e302f32332d3234203d3e203534323532.roa
File: 3138352e3139302e3232382e302f32332d3234203d3e203534323532.roa (raw, json)
Hash identifier: sZFQBZdBZHG+LxDLkg7xE6HoKkP9FywXWpCF+8QUNCA=
Subject key identifier: AB:37:9A:30:5D:E2:74:47:10:1F:0F:47:84:38:99:6B:14:81:92:8B
Certificate issuer: /CN=78d65d4a22df705beed7b3432fbe48a356597724
Certificate serial: 10FA460E79FA945DDD67C58164A78E1826113AD8
Authority key identifier: 78:D6:5D:4A:22:DF:70:5B:EE:D7:B3:43:2F:BE:48:A3:56:59:77:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/3138352e3139302e3232382e302f32332d3234203d3e203534323532.roa
Signing time: Thu 12 Feb 2026 14:39:26 +0000
ROA not before: Thu 12 Feb 2026 14:34:26 +0000
ROA not after: Thu 11 Feb 2027 14:39:26 +0000
asID: 54252
IP address blocks: 185.190.228.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.crl
rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.mft
rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 22 Feb 2026 06:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:fa:46:0e:79:fa:94:5d:dd:67:c5:81:64:a7:8e:18:26:11:3a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78d65d4a22df705beed7b3432fbe48a356597724
Validity
Not Before: Feb 12 14:34:26 2026 GMT
Not After : Feb 11 14:39:26 2027 GMT
Subject: CN=AB379A305DE27447101F0F478438996B1481928B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bb:29:5a:d3:c5:34:e6:1f:1f:dd:09:f3:79:
9f:c9:2d:96:ff:d1:07:46:8e:22:02:95:83:1f:ed:
f2:e4:a2:2f:96:7d:b5:e0:f4:2b:0b:d1:80:fb:af:
f2:0e:f6:7f:0e:25:21:f8:33:10:2d:f7:0b:96:65:
5d:46:89:61:53:27:f4:ec:b5:de:f7:c4:3a:a7:2b:
d6:82:b9:3e:59:47:ed:95:e0:a5:e1:49:8f:1d:0a:
45:18:3a:76:e1:c6:4e:a4:f5:70:82:cf:be:7b:f4:
d7:32:9a:a5:83:d4:b7:73:5e:26:ef:a4:ea:b7:8c:
28:4b:f4:5e:37:d3:8b:93:b7:15:5b:9c:4e:c5:4d:
40:3b:93:e9:1d:f6:e5:ce:94:28:bf:8b:31:a6:08:
14:88:e4:51:75:31:02:7d:ed:2d:42:3f:84:12:af:
1f:ee:de:95:c0:f7:d2:ff:c7:98:87:76:4f:bd:01:
40:c0:ad:ec:20:e8:61:b0:84:ef:76:22:b0:8e:5d:
c8:ac:43:f4:7b:9b:34:cb:fe:2d:d1:a2:c0:c6:fa:
f4:6b:04:2d:23:f3:4f:7c:23:81:e9:fb:e9:58:8f:
28:21:65:dd:d6:79:21:72:e1:8a:c8:71:7e:27:19:
23:ce:1e:af:d8:de:63:c7:97:ba:64:80:4d:73:6a:
bf:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:37:9A:30:5D:E2:74:47:10:1F:0F:47:84:38:99:6B:14:81:92:8B
X509v3 Authority Key Identifier:
keyid:78:D6:5D:4A:22:DF:70:5B:EE:D7:B3:43:2F:BE:48:A3:56:59:77:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/78D65D4A22DF705BEED7B3432FBE48A356597724.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eNZdSiLfcFvu17NDL75Io1ZZdyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8925ad15-af0b-45cd-b883-1a058fa0eba1/0/3138352e3139302e3232382e302f32332d3234203d3e203534323532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.228.0/23
Signature Algorithm: sha256WithRSAEncryption
d4:36:06:78:04:c2:da:1d:ac:cb:d5:dc:f8:06:58:41:a9:66:
f9:a3:f4:4d:ae:e9:8c:fb:23:e2:84:2b:c7:5f:79:3e:fd:51:
1f:59:f8:58:b1:57:c5:e1:30:7e:ba:66:d5:24:b2:6b:f5:64:
0d:38:d2:d7:86:be:93:5e:c8:24:55:52:58:bd:0c:6c:09:f8:
f4:d4:7e:23:1b:eb:5f:d5:f3:49:f7:60:05:9d:1b:ce:18:6b:
cc:70:ab:37:1f:d7:b1:8b:2d:14:39:a9:c5:c6:e2:14:79:c5:
be:7e:d1:fe:ac:c3:17:33:62:4f:50:75:b7:85:ee:0a:9d:96:
c2:b4:91:09:b3:19:67:6a:7a:62:e6:aa:f3:06:6b:f2:1d:1f:
a7:bb:ed:e3:8d:dd:92:80:4d:97:78:b6:cf:73:25:71:1d:aa:
5d:9a:d7:c6:02:4e:90:c4:e3:50:9f:73:d4:f1:34:e4:55:6e:
11:4f:85:13:0f:66:b0:ef:2a:d1:53:0d:75:85:84:16:fc:c6:
e7:ef:bc:5f:02:0e:a6:24:cf:2d:20:b7:dd:2a:29:f5:1e:c2:
23:97:ce:e2:2f:8b:43:d2:ed:e8:7c:9a:30:e1:df:36:59:77:
73:24:f4:95:c1:86:28:da:50:82:df:04:60:23:a1:59:93:8c:
c2:b7:50:da
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUEPpGDnn6lF3dZ8WBZKeOGCYROtgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzhkNjVkNGEyMmRmNzA1YmVlZDdiMzQzMmZiZTQ4YTM1
NjU5NzcyNDAeFw0yNjAyMTIxNDM0MjZaFw0yNzAyMTExNDM5MjZaMDMxMTAvBgNV
BAMTKEFCMzc5QTMwNURFMjc0NDcxMDFGMEY0Nzg0Mzg5OTZCMTQ4MTkyOEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMuyla08U05h8f3QnzeZ/JLZb/
0QdGjiIClYMf7fLkoi+WfbXg9CsL0YD7r/IO9n8OJSH4MxAt9wuWZV1GiWFTJ/Ts
td73xDqnK9aCuT5ZR+2V4KXhSY8dCkUYOnbhxk6k9XCCz7579NcymqWD1LdzXibv
pOq3jChL9F4304uTtxVbnE7FTUA7k+kd9uXOlCi/izGmCBSI5FF1MQJ97S1CP4QS
rx/u3pXA99L/x5iHdk+9AUDArewg6GGwhO92IrCOXcisQ/R7mzTL/i3RosDG+vRr
BC0j8098I4Hp++lYjyghZd3WeSFy4YrIcX4nGSPOHq/Y3mPHl7pkgE1zar91AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUqzeaMF3idEcQHw9HhDiZaxSBkoswHwYDVR0j
BBgwFoAUeNZdSiLfcFvu17NDL75Io1ZZdyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNWFkMTUtYWYwYi00NWNkLWI4ODMtMWEwNThmYTBl
YmExLzAvNzhENjVENEEyMkRGNzA1QkVFRDdCMzQzMkZCRTQ4QTM1NjU5NzcyNC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VOWmRTaUxmY0Z2dTE3TkRMNzVJbzFa
WmR5US5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNWFkMTUt
YWYwYi00NWNkLWI4ODMtMWEwNThmYTBlYmExLzAvMzEzODM1MmUzMTM5MzAyZTMy
MzIzODJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM1MzQzMjM1MzIucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAG5vuQwDQYJKoZIhvcNAQELBQADggEBANQ2BngEwtodrMvV3PgGWEGpZvmj9E2u
6Yz7I+KEK8dfeT79UR9Z+FixV8XhMH66ZtUksmv1ZA040teGvpNeyCRVUli9DGwJ
+PTUfiMb61/V80n3YAWdG84Ya8xwqzcf17GLLRQ5qcXG4hR5xb5+0f6swxczYk9Q
dbeF7gqdlsK0kQmzGWdqemLmqvMGa/IdH6e77eON3ZKATZd4ts9zJXEdql2a18YC
TpDE41Cfc9TxNORVbhFPhRMPZrDvKtFTDXWFhBb8xufvvF8CDqYkzy0gt90qKfUe
wiOXzuIvi0PS7eh8mjDh3zZZd3Mk9JXBhijaUILfBGAjoVmTjMK3UNo=
-----END CERTIFICATE-----
Generated at Sat Feb 21 16:31:21 2026 by rpki-client