Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3138332e302f32342d3234203d3e20323130353534.roa
File: 39352e3231342e3138332e302f32342d3234203d3e20323130353534.roa (raw, json)
Hash identifier: OJvSmtbOOWmX2vvNUuPyZlT7+76nk7dIwwJ4pZHj/08=
Subject key identifier: 34:C6:D5:58:41:66:7B:C3:4F:A8:C7:D4:49:F1:65:DD:4A:2C:C6:6C
Certificate issuer: /CN=92f49de8684f1287f4f6cb185d5cf7de80c90b94
Certificate serial: 64923566D99B3466AF53CD273CA28848160C9B5B
Authority key identifier: 92:F4:9D:E8:68:4F:12:87:F4:F6:CB:18:5D:5C:F7:DE:80:C9:0B:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3138332e302f32342d3234203d3e20323130353534.roa
Signing time: Tue 02 Jun 2026 21:12:49 +0000
ROA not before: Tue 02 Jun 2026 21:07:49 +0000
ROA not after: Tue 01 Jun 2027 21:12:49 +0000
asID: 210554
IP address blocks: 95.214.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.crl
rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.mft
rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:92:35:66:d9:9b:34:66:af:53:cd:27:3c:a2:88:48:16:0c:9b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f49de8684f1287f4f6cb185d5cf7de80c90b94
Validity
Not Before: Jun 2 21:07:49 2026 GMT
Not After : Jun 1 21:12:49 2027 GMT
Subject: CN=34C6D55841667BC34FA8C7D449F165DD4A2CC66C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:65:15:78:11:7b:35:1d:c7:12:ee:19:db:93:
0c:13:ea:9d:6c:48:82:c8:40:3b:50:32:a6:eb:a3:
13:9b:77:d4:c9:4e:2d:82:fb:9b:bf:e1:fc:2b:82:
39:77:18:d4:c5:0f:aa:3d:e3:b9:04:94:a7:93:02:
7f:e2:ad:ba:4d:3d:41:ea:c0:5f:f6:9c:bb:74:73:
c0:a2:95:88:61:b1:ff:fd:b5:d0:ec:b1:80:0a:16:
c0:54:0e:cf:4d:42:a2:50:2c:40:e6:57:2f:a2:3a:
a2:24:bd:06:02:f6:a4:13:77:75:60:99:c6:95:a9:
48:d0:57:85:5b:40:e2:2c:d1:5b:a7:1f:e0:6d:db:
36:e5:ff:25:5b:13:b1:4f:8d:39:b9:8d:af:15:cc:
da:b3:12:fb:27:a1:52:6d:41:34:64:6f:b0:19:23:
9d:b3:3a:13:be:56:21:f5:de:cf:f8:03:f3:84:99:
e8:65:e4:8b:b7:83:5a:a4:f3:fd:d6:92:af:cf:67:
56:18:0c:1c:5e:66:73:08:f0:99:8c:51:9e:f5:00:
d1:0c:66:bb:04:37:68:96:05:10:50:98:3f:20:b5:
40:81:c8:0d:4e:39:bd:97:cb:44:6c:67:fd:d8:95:
0b:6c:8b:6b:a3:14:6a:aa:bb:9f:22:95:b5:13:95:
d3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C6:D5:58:41:66:7B:C3:4F:A8:C7:D4:49:F1:65:DD:4A:2C:C6:6C
X509v3 Authority Key Identifier:
keyid:92:F4:9D:E8:68:4F:12:87:F4:F6:CB:18:5D:5C:F7:DE:80:C9:0B:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/92F49DE8684F1287F4F6CB185D5CF7DE80C90B94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvSd6GhPEof09ssYXVz33oDJC5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/60923389-2bde-43e0-b0d5-fc244a6303d0/0/39352e3231342e3138332e302f32342d3234203d3e20323130353534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.183.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:97:00:a6:10:70:ca:0b:57:34:dc:53:19:78:e8:ed:c8:11:
8e:4b:35:75:11:c0:3c:91:92:29:23:8e:95:36:d1:99:10:d8:
95:93:58:9b:e9:39:08:22:f5:db:b9:ef:35:61:ab:25:7f:ab:
df:26:fe:c0:2b:56:69:8c:62:d4:0c:f9:de:98:ca:02:e8:b2:
d9:90:98:66:f8:bc:cf:dc:c9:d2:5e:e5:fa:9b:2b:86:62:bf:
96:ab:1b:0b:57:5b:d9:fc:52:77:84:40:62:6f:19:63:24:20:
06:2e:ef:f9:c4:b8:10:49:3c:a8:9e:b8:7c:df:a5:8a:ef:a5:
ad:ae:45:8c:53:d0:83:01:ef:c8:e3:74:e7:7c:6b:e2:08:24:
3b:bc:5c:bf:82:8e:fe:1e:57:ff:15:39:38:97:86:6f:9f:92:
d6:83:59:e3:68:e0:ac:90:bf:f4:da:7d:6b:10:4f:ab:98:e1:
ad:79:2c:03:87:e5:78:83:6f:3a:bb:27:0b:6f:87:dd:d0:bc:
9a:99:6c:17:61:95:41:d4:33:cf:11:2c:f5:dd:5a:2f:d7:c4:
2b:2c:64:9d:6d:f5:41:7b:27:62:48:7e:9d:02:1e:00:fc:67:
01:0a:30:ad:46:11:82:6d:6c:54:17:6b:70:c7:37:99:20:4f:
b7:77:2d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:49:38 2026 by rpki-client