Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131382e302f32342d3234203d3e20323136343136.roa
File: 34352e36352e3131382e302f32342d3234203d3e20323136343136.roa (raw, json)
Hash identifier: pscLJmKfxboEOMZKoMThQ7nFcjYcmn2Oz4LldRHz0vQ=
Subject key identifier: 96:DC:65:72:4F:BD:0B:1B:D2:47:32:D5:92:4B:1E:D8:A1:E5:D2:35
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 51D12F462DF8D02ADD00AACB6822CE7BA4D9EE37
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131382e302f32342d3234203d3e20323136343136.roa
Signing time: Mon 11 May 2026 08:49:04 +0000
ROA not before: Mon 11 May 2026 08:44:04 +0000
ROA not after: Mon 10 May 2027 08:49:04 +0000
asID: 216416
IP address blocks: 45.65.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:d1:2f:46:2d:f8:d0:2a:dd:00:aa:cb:68:22:ce:7b:a4:d9:ee:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: May 11 08:44:04 2026 GMT
Not After : May 10 08:49:04 2027 GMT
Subject: CN=96DC65724FBD0B1BD24732D5924B1ED8A1E5D235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7c:9b:57:df:34:34:d3:ae:36:10:74:ac:ed:
ea:e4:79:0b:c1:ff:99:4e:6a:74:ad:aa:64:be:82:
b4:75:09:53:53:68:b6:be:74:51:51:8c:c0:78:99:
e2:15:73:97:15:b7:d6:56:eb:90:4c:6c:2d:d6:36:
7d:d2:4a:37:58:aa:73:1a:bd:e4:d6:f7:1d:bf:fe:
a6:ff:52:85:df:1b:30:ca:69:7e:83:a9:e5:2c:8c:
43:e8:bd:1e:28:8e:b5:ee:34:07:69:27:82:9d:a5:
62:fc:41:f8:4b:6b:e9:e8:e1:62:9c:c5:ce:6a:b3:
b8:34:bf:09:26:b4:3c:d2:5a:b8:ea:d1:2b:ec:3f:
f2:4e:a3:f9:78:5b:29:65:1c:e8:43:68:cf:de:68:
8d:62:7a:a1:05:cf:b0:f4:7e:18:fa:ed:1a:47:cc:
44:16:1c:43:14:51:04:71:11:aa:43:7c:34:ce:2d:
15:34:ee:b4:49:45:de:53:94:7a:10:58:95:42:cf:
e6:fd:0e:2d:c4:fa:83:36:34:68:0e:1a:fa:27:63:
a7:78:e9:8b:a0:41:f7:dd:bb:97:ca:3e:88:6d:92:
6b:1e:15:b8:4d:c2:43:98:2d:10:73:83:b7:f1:f2:
ce:0d:53:09:31:ea:46:a7:ab:4c:78:64:cf:19:54:
a3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:DC:65:72:4F:BD:0B:1B:D2:47:32:D5:92:4B:1E:D8:A1:E5:D2:35
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131382e302f32342d3234203d3e20323136343136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.118.0/24
Signature Algorithm: sha256WithRSAEncryption
64:28:35:16:4e:f3:ca:11:23:a4:4a:72:44:7b:9e:a6:3a:4b:
30:57:57:8d:79:08:12:db:ad:3d:7a:c1:e1:c4:af:9d:9b:3e:
7a:01:6c:56:ac:7a:c2:a6:98:af:09:26:d3:b0:78:38:bf:86:
4c:27:a4:2c:2a:91:19:27:73:42:8b:a8:8e:5f:3c:be:7f:d5:
7f:ba:3b:86:b1:1d:59:3f:22:c3:4b:6d:31:e9:e0:10:28:67:
b5:39:86:80:ac:ff:1e:ed:be:41:74:43:d5:ad:ad:bc:d6:4b:
f0:dc:00:3b:17:a2:3b:3d:ec:bb:de:03:8d:c0:2f:9e:09:be:
77:5d:cf:ab:b9:46:f4:d6:6c:25:d7:bd:1f:a9:9a:44:5e:ce:
69:d8:73:be:c6:90:36:13:05:af:78:b9:02:ba:61:a8:de:ce:
61:c0:63:7d:b1:bc:d7:ca:b3:32:81:a1:21:4f:e2:7b:dc:eb:
4a:16:36:2f:3f:b5:1f:44:1a:86:85:39:dc:4d:b6:39:4c:86:
39:ad:b5:cc:59:da:0e:ac:8e:89:27:27:39:1a:60:3f:34:da:
5f:f3:90:75:69:e0:87:86:2a:0a:1a:c3:aa:36:b4:5d:9b:63:
e6:20:3c:e2:76:e5:1e:4c:98:9d:15:c0:8f:c3:20:3d:07:d2:
ef:e2:33:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:57:12 2026 by rpki-client