Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3232332e302f32342d3234203d3e20323132323338.roa
File: 3139342e35302e3232332e302f32342d3234203d3e20323132323338.roa (raw, json)
Hash identifier: RVE/z5BxJcQp8ONRlWLZDGgmeGpbV6pMXT4FIbZcSVc=
Subject key identifier: CF:F5:BD:51:55:52:F9:F0:78:05:51:72:D4:89:94:64:28:59:5E:4F
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 423536BC304CBC81AB7B1EB0E0E4D4C8D9033B32
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3232332e302f32342d3234203d3e20323132323338.roa
Signing time: Wed 04 Mar 2026 10:20:33 +0000
ROA not before: Wed 04 Mar 2026 10:15:33 +0000
ROA not after: Wed 03 Mar 2027 10:20:33 +0000
asID: 212238
IP address blocks: 194.50.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 12:39:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:35:36:bc:30:4c:bc:81:ab:7b:1e:b0:e0:e4:d4:c8:d9:03:3b:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Mar 4 10:15:33 2026 GMT
Not After : Mar 3 10:20:33 2027 GMT
Subject: CN=CFF5BD515552F9F078055172D489946428595E4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:58:0e:52:9a:25:6f:20:8e:4f:1c:a4:34:fd:
55:93:0e:81:93:98:e7:72:33:d8:34:f7:71:1f:90:
04:4c:cb:35:a6:4c:49:5b:5b:e9:a4:54:32:fc:7f:
49:a9:16:fb:2b:82:1e:eb:47:a3:14:b7:c8:8e:71:
1d:c3:a6:d8:66:d9:9e:e3:61:ed:72:e0:4c:de:bc:
4e:ae:9f:f7:f9:76:b9:3e:e1:b3:cb:da:d9:16:2c:
a7:ff:ed:a1:57:47:29:a4:63:c7:0c:03:9a:80:6d:
2a:53:37:05:56:bf:43:57:5f:95:4e:29:92:9b:7b:
ea:27:1f:05:11:b8:2b:af:92:0c:ab:24:d8:e6:4e:
7c:1d:b3:d4:09:bf:67:56:f8:1a:11:d5:cd:32:42:
4a:10:18:72:bb:73:64:7b:35:e8:82:3a:b7:bc:1f:
90:03:ae:7a:ba:ba:40:38:fd:2a:33:49:80:6d:39:
f3:0c:98:82:e7:53:9a:e8:9c:a1:d9:eb:09:ef:dc:
7a:f1:4b:db:4e:44:72:ee:30:94:49:b8:e1:b3:47:
3c:10:1e:a0:56:ed:ec:1c:da:91:70:66:c1:8c:19:
d5:75:c8:c2:99:73:ee:78:20:ab:e4:89:c0:b2:52:
c9:4d:91:74:22:7b:6e:ab:6e:36:a9:b7:6b:c3:da:
63:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:F5:BD:51:55:52:F9:F0:78:05:51:72:D4:89:94:64:28:59:5E:4F
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3232332e302f32342d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.223.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:ea:b7:12:5f:0d:c1:c1:38:fd:e5:36:e6:08:36:ae:53:bc:
88:29:ca:76:b6:fe:0a:6b:aa:64:6d:33:a7:1c:d3:07:e8:21:
47:29:74:f3:be:4b:60:a9:4b:30:dd:42:c1:b7:a4:58:d8:2d:
eb:a7:09:d2:6b:36:10:4e:b0:5c:80:12:a6:16:bb:5f:72:95:
19:67:75:8e:8b:61:f5:ea:ab:29:0e:4b:e2:1b:dc:fd:40:77:
14:1b:ee:28:66:f9:8a:91:54:ca:82:44:5c:bb:09:1b:6b:c9:
2a:cf:82:23:6e:b6:77:c9:a0:55:ab:93:ba:ea:d8:d4:5f:3e:
b6:bc:29:76:f1:40:f8:1c:e3:82:d7:83:1f:f3:f0:6b:65:1c:
05:44:c4:13:53:2c:b8:12:3b:61:bf:f0:c2:f9:7b:00:fb:b0:
42:7a:04:9a:ee:f0:7f:31:40:4f:b2:d0:3d:f5:c1:85:f7:2b:
01:ff:42:32:f9:97:a7:de:0f:90:f7:0a:10:d1:b6:55:5d:0c:
27:a6:ba:a5:71:ef:da:4c:9b:07:93:0a:40:07:48:f9:33:bc:
cb:d0:ce:43:75:ae:e6:f4:12:f8:bf:1c:5a:4b:ee:4b:14:9b:
92:16:70:c0:06:f7:32:82:b0:44:8c:24:ca:85:14:ed:e3:6e:
05:eb:7f:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 18:26:55 2026 by rpki-client