Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336535303a3a2f34342d3438203d3e20323039363030.roa
File: 326131313a323963303a336535303a3a2f34342d3438203d3e20323039363030.roa (raw, json)
Hash identifier: jlUadSIByjsSxAjUcJAWCQNv3MvAxXY4c9LegHSnlUk=
Subject key identifier: 26:9A:D1:AF:2D:EC:DE:BC:82:BA:00:D1:FF:B3:4C:51:67:23:8A:6A
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 512914EBE03003F60C48566EED210D96EFA93754
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336535303a3a2f34342d3438203d3e20323039363030.roa
Signing time: Thu 14 May 2026 16:22:52 +0000
ROA not before: Thu 14 May 2026 16:17:52 +0000
ROA not after: Thu 13 May 2027 16:22:52 +0000
asID: 209600
IP address blocks: 2a11:29c0:3e50::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:29:14:eb:e0:30:03:f6:0c:48:56:6e:ed:21:0d:96:ef:a9:37:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: May 14 16:17:52 2026 GMT
Not After : May 13 16:22:52 2027 GMT
Subject: CN=269AD1AF2DECDEBC82BA00D1FFB34C5167238A6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:95:63:5a:9c:c0:51:0c:4a:a2:f5:57:c5:c6:
47:9d:0a:4c:64:45:84:47:fc:64:94:2f:51:aa:4a:
74:d2:73:9c:1c:49:7f:cf:88:75:8f:ae:af:6f:5e:
5b:e3:dc:64:62:7c:2b:7d:ab:03:fc:7a:86:9c:23:
63:9f:ff:2c:1e:43:75:74:3b:39:6a:ad:d4:90:55:
e2:c4:f7:42:41:53:07:29:e3:c7:28:24:5e:14:16:
0e:27:b6:23:99:dd:f8:38:f2:71:3e:f4:97:c5:d5:
5e:a8:76:79:9b:e5:bd:b7:94:f4:f8:59:ac:3b:14:
00:fa:e0:1e:7d:10:36:87:14:2a:98:90:67:43:57:
58:fb:ab:97:19:68:fc:f0:60:d7:41:3d:7b:bc:b5:
1e:dc:5b:3c:e1:c5:ee:0a:0f:2b:50:27:66:57:bc:
ae:8f:59:a0:72:90:81:8d:67:9d:bb:f2:e8:16:3d:
93:e3:9b:3a:45:04:d4:ca:ea:67:57:44:a4:cf:c5:
7c:e9:be:70:53:0a:d1:a2:48:72:4a:47:43:26:e9:
2d:0f:a6:13:d7:fd:2a:1b:42:9b:2e:84:fb:18:c6:
a3:6a:e1:20:ac:ad:28:5e:1a:63:7f:bf:20:7c:52:
7f:3a:d7:6a:66:30:51:d1:9d:51:8c:00:d6:dd:e8:
48:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:9A:D1:AF:2D:EC:DE:BC:82:BA:00:D1:FF:B3:4C:51:67:23:8A:6A
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336535303a3a2f34342d3438203d3e20323039363030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3e50::/44
Signature Algorithm: sha256WithRSAEncryption
2e:bc:1e:35:88:fb:ad:95:b6:db:a5:a0:fd:59:7a:db:2c:eb:
68:6a:f6:ea:80:3c:0c:7d:48:f3:c5:b1:1c:ab:90:b4:44:56:
90:7e:00:34:cb:19:fd:bf:de:44:26:02:7a:a7:ae:07:69:a9:
2c:84:73:8c:46:21:25:9d:d2:ee:69:5a:5f:47:0d:77:fa:83:
64:5b:e6:01:b3:e6:51:28:cd:20:6d:cd:91:1d:95:fb:f0:15:
bf:0b:60:7b:34:6d:44:18:13:70:5a:56:3c:16:a2:4f:db:37:
4d:f8:51:f4:ed:9c:d4:63:d4:85:20:77:90:74:b1:81:17:ca:
48:4b:96:3d:bb:fe:71:d8:56:13:ec:b4:24:a1:dd:b8:59:02:
b0:40:b9:2c:f2:24:45:d5:7a:b9:04:09:05:37:44:47:0e:87:
33:32:65:ba:57:91:d2:d1:02:09:2f:b9:7e:01:81:95:8d:a0:
40:f4:02:63:ae:c6:f3:ec:cb:a1:04:32:0a:49:9f:fd:1e:51:
54:6e:ad:44:4f:7c:a1:b8:4b:8d:51:20:41:35:fa:97:9f:80:
a9:6a:3d:b9:b4:c5:7a:6a:ff:b2:99:41:18:e5:2a:95:73:c0:
f9:84:05:99:9e:26:e6:f0:57:b5:2f:8d:14:e9:8b:8e:bb:97:
7b:f1:0d:fa
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIUUSkU6+AwA/YMSFZu7SENlu+pN1QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZTk2ZDg1OTk2ZTkzNTRkMTAwNWU0NGM3ODFkMzhhZGNm
MTA4Mjg3MzAeFw0yNjA1MTQxNjE3NTJaFw0yNzA1MTMxNjIyNTJaMDMxMTAvBgNV
BAMTKDI2OUFEMUFGMkRFQ0RFQkM4MkJBMDBEMUZGQjM0QzUxNjcyMzhBNkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvlWNanMBRDEqi9VfFxkedCkxk
RYRH/GSUL1GqSnTSc5wcSX/PiHWPrq9vXlvj3GRifCt9qwP8eoacI2Of/yweQ3V0
OzlqrdSQVeLE90JBUwcp48coJF4UFg4ntiOZ3fg48nE+9JfF1V6odnmb5b23lPT4
Waw7FAD64B59EDaHFCqYkGdDV1j7q5cZaPzwYNdBPXu8tR7cWzzhxe4KDytQJ2ZX
vK6PWaBykIGNZ5278ugWPZPjmzpFBNTK6mdXRKTPxXzpvnBTCtGiSHJKR0Mm6S0P
phPX/SobQpsuhPsYxqNq4SCsrSheGmN/vyB8Un8612pmMFHRnVGMANbd6EibAgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQUJprRry3s3ryCugDR/7NMUWcjimowHwYDVR0j
BBgwFoAU6W2FmW6TVNEAXkTHgdOK3PEIKHMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODExMTViYzYtMTBmNi00YWYzLWJhMDktOGI2ODdhNTZm
YmY1LzAvRTk2RDg1OTk2RTkzNTREMTAwNUU0NEM3ODFEMzhBRENGMTA4Mjg3My5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZXMkZtVzZUVk5FQVhrVEhnZE9LM1BF
SUtITS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODExMTViYzYt
MTBmNi00YWYzLWJhMDktOGI2ODdhNTZmYmY1LzAvMzI2MTMxMzEzYTMyMzk2MzMw
M2EzMzY1MzUzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzAzOTM2MzAzMC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHBCoRKcA+UDANBgkqhkiG9w0BAQsFAAOCAQEALrweNYj7rZW226Wg
/Vl62yzraGr26oA8DH1I88WxHKuQtERWkH4ANMsZ/b/eRCYCeqeuB2mpLIRzjEYh
JZ3S7mlaX0cNd/qDZFvmAbPmUSjNIG3NkR2V+/AVvwtgezRtRBgTcFpWPBaiT9s3
TfhR9O2c1GPUhSB3kHSxgRfKSEuWPbv+cdhWE+y0JKHduFkCsEC5LPIkRdV6uQQJ
BTdERw6HMzJluleR0tECCS+5fgGBlY2gQPQCY67G8+zLoQQyCkmf/R5RVG6tRE98
obhLjVEgQTX6l5+AqWo9ubTFemr/splBGOUqlXPA+YQFmZ4m5vBXtS+NFOmLjruX
e/EN+g==
-----END CERTIFICATE-----
Generated at Thu Jun 11 17:08:26 2026 by rpki-client