Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c2023c53-184b-484b-b676-598f64d88f22/0/39312e3233332e31302e302f32342d3234203d3e20323033303930.roa
File: 39312e3233332e31302e302f32342d3234203d3e20323033303930.roa (raw, json)
Hash identifier: Hycf4m/uyCvgrukKOL6GH1XDUuHN90sQFhGZMCD/fVQ=
Subject key identifier: 7E:9F:76:AD:85:7E:06:8A:1E:4E:6C:1D:EB:42:8B:AF:A7:2D:E2:21
Certificate issuer: /CN=199cdd14c27fbf6b005a0ada004d53cbcb9667ff
Certificate serial: 6A4DD9F61B8E57569794E76EF666BB17441286C8
Authority key identifier: 19:9C:DD:14:C2:7F:BF:6B:00:5A:0A:DA:00:4D:53:CB:CB:96:67:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GZzdFMJ_v2sAWgraAE1Ty8uWZ_8.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c2023c53-184b-484b-b676-598f64d88f22/0/39312e3233332e31302e302f32342d3234203d3e20323033303930.roa
Signing time: Tue 31 Mar 2026 07:39:19 +0000
ROA not before: Tue 31 Mar 2026 07:34:19 +0000
ROA not after: Tue 30 Mar 2027 07:39:19 +0000
asID: 203090
IP address blocks: 91.233.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c2023c53-184b-484b-b676-598f64d88f22/0/199CDD14C27FBF6B005A0ADA004D53CBCB9667FF.crl
rsync://rsync.paas.rpki.ripe.net/repository/c2023c53-184b-484b-b676-598f64d88f22/0/199CDD14C27FBF6B005A0ADA004D53CBCB9667FF.mft
rsync://rpki.ripe.net/repository/DEFAULT/GZzdFMJ_v2sAWgraAE1Ty8uWZ_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 Apr 2026 09:49:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:4d:d9:f6:1b:8e:57:56:97:94:e7:6e:f6:66:bb:17:44:12:86:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=199cdd14c27fbf6b005a0ada004d53cbcb9667ff
Validity
Not Before: Mar 31 07:34:19 2026 GMT
Not After : Mar 30 07:39:19 2027 GMT
Subject: CN=7E9F76AD857E068A1E4E6C1DEB428BAFA72DE221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:15:a1:4a:eb:05:0e:db:92:54:af:e1:2d:9b:
9f:40:b9:5c:cc:03:a3:af:c6:57:fb:0a:27:5b:58:
1c:ab:4f:15:91:e4:84:d0:ea:9a:84:ef:94:c8:97:
37:4b:7c:3e:ff:77:9f:ef:80:15:e3:98:99:b3:a0:
38:01:96:09:c5:aa:a9:f3:51:53:13:6a:19:98:99:
af:fc:bc:f2:0d:22:24:7a:3a:f1:ce:19:f4:6c:ef:
0c:1f:5e:bb:23:2c:ea:31:41:01:93:3d:61:79:9b:
ed:f5:a5:37:c4:a7:27:aa:0b:4d:b9:7c:76:93:60:
20:41:0b:7f:78:26:b6:14:48:7e:b3:ab:5e:e0:73:
d5:8c:f3:fb:01:61:cd:6a:2e:a3:f4:95:f6:94:e9:
75:79:c8:16:34:f8:e5:b6:9b:10:81:70:8a:0c:02:
10:40:78:b7:68:07:c6:81:c2:a8:f6:0a:c1:c9:58:
67:f6:44:26:1f:2a:ed:6a:77:0b:cb:27:52:2e:85:
04:f6:e0:b8:32:e8:64:b4:fb:b0:37:a2:d6:63:a5:
c8:9d:d4:37:97:eb:bf:b4:06:6d:f8:cf:2f:84:e8:
db:65:a3:f4:64:34:ed:b0:3d:7c:34:4d:cb:32:d0:
ae:52:f5:2a:f8:20:e2:38:c3:7c:7a:07:21:c5:7c:
c9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:9F:76:AD:85:7E:06:8A:1E:4E:6C:1D:EB:42:8B:AF:A7:2D:E2:21
X509v3 Authority Key Identifier:
keyid:19:9C:DD:14:C2:7F:BF:6B:00:5A:0A:DA:00:4D:53:CB:CB:96:67:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c2023c53-184b-484b-b676-598f64d88f22/0/199CDD14C27FBF6B005A0ADA004D53CBCB9667FF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GZzdFMJ_v2sAWgraAE1Ty8uWZ_8.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c2023c53-184b-484b-b676-598f64d88f22/0/39312e3233332e31302e302f32342d3234203d3e20323033303930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.10.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:68:73:47:9a:cd:dc:aa:84:fa:9f:5c:91:b1:2b:97:5b:4c:
6c:c7:e7:8a:a7:3e:9d:83:aa:fd:9e:ec:30:d3:96:5e:14:2b:
0f:66:53:5b:68:bd:5f:e0:78:26:9e:4b:88:bf:2c:21:f8:44:
44:7a:c4:02:ec:69:07:10:2b:f4:f5:bd:90:27:93:79:ad:df:
fe:e7:11:04:5f:93:9a:a8:b9:b0:cb:53:6d:e1:9f:d4:b4:0e:
00:d3:07:fa:c1:04:94:89:96:37:31:38:cd:14:cb:b8:f5:bb:
c7:47:fa:c1:84:08:37:7f:db:88:39:4d:2a:72:88:42:f3:77:
2d:38:f0:18:63:96:a8:07:25:35:4f:c1:de:17:e2:d4:f3:62:
6b:14:78:f7:ea:cf:56:4a:cc:6e:fe:63:42:07:bd:33:72:2a:
8e:d3:4a:4f:5e:74:d7:f8:7c:c4:cb:a1:de:ea:87:24:75:58:
2f:0f:bc:29:60:42:06:ba:ae:c3:a3:77:d8:4f:42:0c:1c:89:
0f:fc:2c:d1:34:c9:b0:f3:b6:43:c7:96:df:08:57:06:b5:ea:
25:ea:9a:e8:84:af:39:85:3a:45:6b:89:4c:fd:25:ef:81:b4:
27:1b:bf:92:a2:2d:2e:d8:7b:1a:fb:b8:28:7a:27:9b:29:cf:
68:ba:ca:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 7 22:27:30 2026 by rpki-client