Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e20313432313436.roa
File: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (raw, json)
Hash identifier: 3mHdqoYOlm/9t7fBBGZ6MyRWfPgkHCq5iWxroEvrW6w=
Subject key identifier: 1E:CB:AC:A0:BD:BC:94:66:A1:7D:0A:A2:74:FE:D6:63:1E:27:55:0B
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 3F6E3FF95E6FD1CA39349FCE6D7F31BB4DFD22
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e20313432313436.roa
Signing time: Wed 29 Apr 2026 08:47:07 +0000
ROA not before: Wed 29 Apr 2026 08:42:07 +0000
ROA not after: Wed 28 Apr 2027 08:47:07 +0000
asID: 142146
IP address blocks: 46.183.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 22:05:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:6e:3f:f9:5e:6f:d1:ca:39:34:9f:ce:6d:7f:31:bb:4d:fd:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: Apr 29 08:42:07 2026 GMT
Not After : Apr 28 08:47:07 2027 GMT
Subject: CN=1ECBACA0BDBC9466A17D0AA274FED6631E27550B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:44:92:98:e4:c9:ae:2b:f4:e2:4e:5c:bf:28:
74:6b:66:24:1f:55:a5:26:1c:71:2a:79:0b:df:4e:
a9:cd:9b:bd:61:01:15:c8:cd:fe:4b:73:11:da:25:
cf:3c:94:c9:54:2f:87:95:3b:e1:60:2d:e2:70:42:
6b:3c:37:a5:e6:fa:6b:96:1d:fd:7b:84:a2:70:05:
2e:65:44:bf:d1:5e:00:84:cb:51:e9:dc:2b:b0:eb:
38:1d:b5:4a:3d:fd:7e:90:53:3d:54:76:6a:29:2d:
9e:d1:cb:4e:28:68:13:76:5e:c4:58:cd:05:61:f4:
6c:05:e2:79:e1:69:c7:f5:f7:a7:e9:02:93:7f:b5:
b3:9f:5d:43:68:e1:7b:67:ba:ca:e4:36:71:2f:4d:
9a:b7:b9:0a:63:be:f3:6d:3b:32:11:f7:dc:c9:33:
b6:fb:a4:46:75:14:92:fe:38:af:c6:b0:90:3d:2e:
a3:92:4a:8c:ea:48:ea:2e:ea:17:8a:06:cb:48:2f:
46:6f:d7:73:76:57:70:69:dd:a3:c3:bb:6d:6a:e9:
e5:09:1b:91:3d:e7:ec:0a:0e:dc:1e:0e:c8:f1:da:
e7:e4:fd:af:0a:c3:12:77:ad:c9:8e:2f:6d:40:4a:
58:6f:f7:3f:7e:84:75:10:c6:b0:e9:1b:f2:04:98:
86:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:CB:AC:A0:BD:BC:94:66:A1:7D:0A:A2:74:FE:D6:63:1E:27:55:0B
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e20313432313436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.24.0/24
Signature Algorithm: sha256WithRSAEncryption
45:3e:76:87:ff:c0:2f:cf:52:93:f8:bc:45:bc:f6:8b:cc:e3:
d2:a8:f9:ba:1e:00:63:61:6e:49:4c:c3:b6:9a:c0:0a:20:3f:
0a:eb:5f:8c:ee:51:ff:dc:09:a2:42:bc:22:86:13:86:08:ec:
5c:ca:9c:ed:5a:34:61:65:2a:d1:10:83:5c:85:c9:7d:ab:82:
79:17:60:b6:e2:7a:c0:4c:fe:c7:f3:76:c2:30:11:91:55:d0:
5a:17:5b:84:61:13:ac:5e:13:85:03:d7:95:0f:f0:ca:33:7d:
55:82:97:6e:e2:d4:77:7e:f3:8f:01:98:55:2f:f5:71:69:4c:
58:2f:7c:de:c4:35:a7:f8:8f:bc:9d:53:ca:93:73:65:6a:fb:
83:e4:67:93:96:c2:91:df:b9:ca:42:b6:49:8f:93:e9:94:3d:
e0:7f:d8:3c:b9:76:a7:76:24:80:91:15:18:59:36:04:56:e2:
d7:c8:42:42:92:0b:c5:a7:1e:ad:40:1d:13:bc:b1:70:2d:ef:
ba:19:6c:48:44:c7:bc:95:07:b4:6b:5c:f0:a0:91:b1:03:20:
44:f5:8a:0d:f0:b0:2f:2a:2a:df:eb:72:f9:c1:af:97:79:59:
63:dc:61:d8:55:a9:03:7e:ab:d6:cb:2e:e6:66:04:b2:2f:77:
af:53:d2:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 1 11:17:20 2026 by rpki-client