Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/352e3232362e3138392e302f32342d3234203d3e20323134343332.roa
File: 352e3232362e3138392e302f32342d3234203d3e20323134343332.roa (raw, json)
Hash identifier: K8tasVMZPC8XCnfASfPGHgydq7gyNfePU1OJ6FJ9+yw=
Subject key identifier: 0B:3D:81:FE:27:18:CB:4C:CB:BC:A0:BB:70:41:79:BF:34:AB:EB:89
Certificate issuer: /CN=f768ff6e681858c0ec19f3a93fa1792cd16ceed3
Certificate serial: 70C433CE07331BA2A7CAD0993266669F5707462C
Authority key identifier: F7:68:FF:6E:68:18:58:C0:EC:19:F3:A9:3F:A1:79:2C:D1:6C:EE:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/352e3232362e3138392e302f32342d3234203d3e20323134343332.roa
Signing time: Sun 24 May 2026 16:23:41 +0000
ROA not before: Sun 24 May 2026 16:18:41 +0000
ROA not after: Sun 23 May 2027 16:23:41 +0000
asID: 214432
IP address blocks: 5.226.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.crl
rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.mft
rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:c4:33:ce:07:33:1b:a2:a7:ca:d0:99:32:66:66:9f:57:07:46:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f768ff6e681858c0ec19f3a93fa1792cd16ceed3
Validity
Not Before: May 24 16:18:41 2026 GMT
Not After : May 23 16:23:41 2027 GMT
Subject: CN=0B3D81FE2718CB4CCBBCA0BB704179BF34ABEB89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b9:00:44:f4:77:80:81:56:0a:7b:0b:59:6b:
a5:87:2c:47:85:71:dd:be:3e:d0:2d:17:d2:62:2a:
90:b2:04:37:48:2c:a1:11:15:82:8a:61:dd:c6:fc:
57:fd:34:7a:68:2d:5c:92:18:bb:f6:36:20:6d:a4:
c0:37:91:2a:28:d3:38:28:fa:e0:63:c7:9e:bc:8a:
fc:98:b7:bf:84:24:12:a3:65:a3:b6:48:c1:fc:43:
76:14:7c:9f:d8:96:1e:f0:e6:81:af:a7:0d:8e:13:
d4:c6:5a:6b:86:b2:2f:cb:a8:51:db:f0:55:df:cc:
e3:64:46:38:31:cd:14:4e:aa:49:2f:cb:f5:a8:8e:
78:26:c4:91:f8:bf:f1:93:05:e1:bf:5c:5e:e5:f5:
f6:a5:86:16:6e:f1:7f:94:c2:48:aa:82:ea:bb:a6:
e1:3d:d6:12:c2:66:c8:ec:ac:8c:2a:21:87:40:83:
e7:0d:bb:bc:25:fe:12:8f:e1:7a:fc:9a:44:c5:9a:
2a:92:c7:39:88:ce:26:c8:03:c9:85:f7:44:c1:0a:
ed:3f:f1:a5:b9:57:63:a0:70:a1:39:68:bc:a5:13:
07:07:d3:3b:bb:d6:46:8d:ad:01:54:19:65:c3:33:
c2:5c:43:f2:43:4f:96:70:de:5a:ff:95:43:70:e6:
cc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:3D:81:FE:27:18:CB:4C:CB:BC:A0:BB:70:41:79:BF:34:AB:EB:89
X509v3 Authority Key Identifier:
keyid:F7:68:FF:6E:68:18:58:C0:EC:19:F3:A9:3F:A1:79:2C:D1:6C:EE:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/F768FF6E681858C0EC19F3A93FA1792CD16CEED3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/92j_bmgYWMDsGfOpP6F5LNFs7tM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0cc08737-9267-402a-99d4-7aaafea444ed/0/352e3232362e3138392e302f32342d3234203d3e20323134343332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.189.0/24
Signature Algorithm: sha256WithRSAEncryption
47:a2:9c:50:97:a0:40:a0:57:c7:72:c8:90:1b:99:0c:a8:2d:
a5:d1:fc:6e:93:51:69:4c:c3:97:39:cf:7b:d3:2a:8d:d0:6c:
63:13:36:29:02:6c:33:22:34:12:3f:f3:3e:7b:5c:92:d6:57:
62:e0:b6:e0:c6:6a:14:cb:c7:47:d8:87:6f:fb:33:ee:5b:d8:
b2:6b:aa:8d:a4:e8:57:29:b0:5a:77:8b:0c:ab:31:a1:5b:8a:
55:61:0f:53:dc:7c:eb:83:74:91:56:5e:a1:62:86:5b:22:f2:
46:24:c6:16:83:07:ab:a4:4d:c3:4d:60:48:62:9c:7c:38:17:
21:77:ed:94:8d:e4:84:b5:fb:d6:c7:e8:19:4f:e3:dc:b7:5e:
a8:5a:e1:b4:d3:73:cf:14:d7:00:f4:ac:dd:7a:cb:b0:3e:bc:
40:12:ac:31:ec:da:1b:5d:e2:f9:70:89:1b:26:f7:64:a1:ae:
68:43:dd:4b:4b:54:ad:d7:d1:f3:8a:48:1b:e8:9d:c9:6c:48:
ee:c6:82:0d:2b:ee:91:20:7d:ff:2f:65:f0:50:ba:6c:81:49:
c5:2c:48:ab:08:c1:41:8f:b5:c2:5b:9c:2b:ae:ed:a2:93:11:
d2:1b:16:b5:65:69:fe:43:69:0e:ed:0f:50:59:ef:2a:fe:11:
1d:9c:a1:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 16:26:45 2026 by rpki-client