Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3137352e302f32342d3234203d3e203530303439.roa
File: 39352e3231342e3137352e302f32342d3234203d3e203530303439.roa (raw, json)
Hash identifier: WRu4t783fDaOJwwC8/mNMq2tKFQEdrL2H8Nv26yw9Sk=
Subject key identifier: B1:55:B0:A2:26:E5:0F:E1:7D:6C:3A:28:C4:D7:8F:53:67:73:A3:39
Certificate issuer: /CN=92f49de8684f1287f4f6cb185d5cf7de80c90b94
Certificate serial: 273C397F25EE5EF2D0C9F44799791151E39790DC
Authority key identifier: 92:F4:9D:E8:68:4F:12:87:F4:F6:CB:18:5D:5C:F7:DE:80:C9:0B:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3137352e302f32342d3234203d3e203530303439.roa
Signing time: Thu 28 May 2026 05:20:44 +0000
ROA not before: Thu 28 May 2026 05:15:44 +0000
ROA not after: Thu 27 May 2027 05:20:44 +0000
asID: 50049
IP address blocks: 95.214.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.crl
rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.mft
rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 12:14:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:3c:39:7f:25:ee:5e:f2:d0:c9:f4:47:99:79:11:51:e3:97:90:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f49de8684f1287f4f6cb185d5cf7de80c90b94
Validity
Not Before: May 28 05:15:44 2026 GMT
Not After : May 27 05:20:44 2027 GMT
Subject: CN=B155B0A226E50FE17D6C3A28C4D78F536773A339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9f:ba:71:b2:1c:fa:7c:59:b6:d2:a8:06:09:
29:b8:29:af:f7:b9:ec:54:f0:37:ba:89:8f:5e:42:
d9:bf:f3:6a:c9:b1:41:5a:b0:4e:43:0d:38:71:9e:
59:41:fd:91:b3:35:95:3c:83:3d:e4:78:16:f9:1a:
1d:d7:c2:96:f2:3f:b7:0f:7c:f2:27:d9:75:c2:93:
d0:81:ab:a4:69:97:b5:69:f4:c9:9c:80:62:3d:fe:
7d:d1:24:bd:d9:8f:a9:18:8d:48:29:3e:33:50:c6:
89:5f:0d:69:19:e7:cb:6f:26:08:cd:c2:12:ef:e2:
fa:eb:db:15:e3:ed:7d:91:80:dc:81:32:e3:c2:8d:
45:49:3f:cb:c7:44:e4:a4:61:57:7a:66:e1:df:06:
f3:61:b0:d9:e5:18:91:d2:2d:a4:a9:07:c0:f5:00:
74:4d:b0:17:2b:b3:0d:a8:b8:f5:3a:74:a6:d7:4d:
be:c9:41:c8:49:05:b0:a6:03:21:46:73:3a:68:4c:
c7:2a:91:6d:76:da:ae:05:41:6e:d7:7a:87:26:40:
3a:9d:eb:4b:e8:88:de:7d:88:14:cf:2d:d0:f3:aa:
b1:80:97:ab:04:b1:36:f4:8d:ea:1b:a2:2c:d6:be:
73:45:3f:18:4f:e4:20:9c:b8:13:15:ed:8c:67:d9:
13:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:55:B0:A2:26:E5:0F:E1:7D:6C:3A:28:C4:D7:8F:53:67:73:A3:39
X509v3 Authority Key Identifier:
keyid:92:F4:9D:E8:68:4F:12:87:F4:F6:CB:18:5D:5C:F7:DE:80:C9:0B:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3137352e302f32342d3234203d3e203530303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.175.0/24
Signature Algorithm: sha256WithRSAEncryption
77:6c:6b:46:da:f8:00:c7:aa:78:87:8b:70:1e:76:3a:d8:f0:
6e:45:93:d8:30:26:b5:97:6d:dc:3e:b3:98:d8:a2:09:e6:27:
e2:08:3d:e6:c2:4b:55:56:3f:ee:9d:41:30:cb:63:6a:ba:dd:
53:95:46:2d:eb:1e:ad:23:4a:cb:ab:5b:cd:f4:84:3a:a8:63:
68:dc:fe:61:7e:71:ef:2a:df:84:16:57:64:31:78:a8:0a:9c:
d7:7c:5f:c0:49:53:b1:d2:6f:c6:0d:00:b8:e9:cd:47:a1:04:
05:7f:39:f0:27:c7:8a:89:ed:a3:54:3b:5d:b9:84:59:71:d4:
38:e7:2f:a6:67:4f:be:eb:d4:af:44:f5:03:23:69:d8:43:79:
64:ea:05:8a:dc:bc:47:45:30:bb:71:fc:b8:d1:b7:c1:3c:c0:
4d:f6:8a:d5:26:58:8c:c4:cf:ee:f3:a8:95:bd:f9:d6:6f:0b:
08:b3:cf:b1:33:f9:14:97:20:bc:a6:03:d6:f8:dd:7b:2e:83:
f4:a2:bb:2d:f8:1d:ed:27:fc:3c:ca:cb:db:bf:f4:ec:10:00:
03:cc:2d:91:e0:da:33:e0:78:f6:2b:b5:56:e1:59:b3:f5:a3:
91:0b:8b:cf:db:7d:4f:6f:93:36:c8:e6:17:1c:c2:76:76:f6:
85:7a:6c:4d
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUJzw5fyXuXvLQyfRHmXkRUeOXkNwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTJmNDlkZTg2ODRmMTI4N2Y0ZjZjYjE4NWQ1Y2Y3ZGU4
MGM5MGI5NDAeFw0yNjA1MjgwNTE1NDRaFw0yNzA1MjcwNTIwNDRaMDMxMTAvBgNV
BAMTKEIxNTVCMEEyMjZFNTBGRTE3RDZDM0EyOEM0RDc4RjUzNjc3M0EzMzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKn7pxshz6fFm20qgGCSm4Ka/3
uexU8De6iY9eQtm/82rJsUFasE5DDThxnllB/ZGzNZU8gz3keBb5Gh3XwpbyP7cP
fPIn2XXCk9CBq6Rpl7Vp9MmcgGI9/n3RJL3Zj6kYjUgpPjNQxolfDWkZ58tvJgjN
whLv4vrr2xXj7X2RgNyBMuPCjUVJP8vHROSkYVd6ZuHfBvNhsNnlGJHSLaSpB8D1
AHRNsBcrsw2ouPU6dKbXTb7JQchJBbCmAyFGczpoTMcqkW122q4FQW7XeocmQDqd
60voiN59iBTPLdDzqrGAl6sEsTb0jeoboizWvnNFPxhP5CCcuBMV7Yxn2RMTAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUsVWwoiblD+F9bDooxNePU2dzozkwHwYDVR0j
BBgwFoAUkvSd6GhPEof09ssYXVz33oDJC5QwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNjA5MjMzODktMmJkZS00M2UwLWIwZDUtZmMyNDRhNjMw
M2QwLzAvOTJGNDlERTg2ODRGMTI4N0Y0RjZDQjE4NUQ1Q0Y3REU4MEM5MEI5NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2t2U2Q2R2hQRW9mMDlzc1lYVnozM29E
SkM1US5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjA5MjMzODkt
MmJkZS00M2UwLWIwZDUtZmMyNDRhNjMwM2QwLzAvMzkzNTJlMzIzMTM0MmUzMTM3
MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTMwMzAzNDM5LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
X9avMA0GCSqGSIb3DQEBCwUAA4IBAQB3bGtG2vgAx6p4h4twHnY62PBuRZPYMCa1
l23cPrOY2KIJ5ifiCD3mwktVVj/unUEwy2Nqut1TlUYt6x6tI0rLq1vN9IQ6qGNo
3P5hfnHvKt+EFldkMXioCpzXfF/ASVOx0m/GDQC46c1HoQQFfznwJ8eKie2jVDtd
uYRZcdQ45y+mZ0++69SvRPUDI2nYQ3lk6gWK3LxHRTC7cfy40bfBPMBN9orVJliM
xM/u86iVvfnWbwsIs8+xM/kUlyC8pgPW+N17LoP0orst+B3tJ/w8ysvbv/TsEAAD
zC2R4Noz4Hj2K7VW4Vmz9aORC4vP231Pb5M2yOYXHMJ2dvaFemxN
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:24:59 2026 by rpki-client