
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234322e302f32342d3234203d3e203631333137.roa
File: 34352e3134352e3234322e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: UwYt4VznKdK1FPtkP2xWUFHbXr0Ber7fatTgGVhDTLw=
Subject key identifier: 6F:C3:16:0C:D9:25:F5:29:BE:58:56:AF:7E:24:89:86:79:C8:6D:05
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 732B02663855C94ED18937EE260A4D0F98F800E3
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234322e302f32342d3234203d3e203631333137.roa
Signing time: Wed 01 Jul 2026 14:48:52 +0000
ROA not before: Wed 01 Jul 2026 14:43:52 +0000
ROA not after: Wed 30 Jun 2027 14:48:52 +0000
asID: 61317
IP address blocks: 45.145.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Jul 2026 01:26:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:2b:02:66:38:55:c9:4e:d1:89:37:ee:26:0a:4d:0f:98:f8:00:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Jul 1 14:43:52 2026 GMT
Not After : Jun 30 14:48:52 2027 GMT
Subject: CN=6FC3160CD925F529BE5856AF7E24898679C86D05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:13:b5:c0:e9:05:38:c1:4d:e8:51:67:5a:d1:
5e:5a:a7:ea:d8:07:29:36:d0:5e:c4:0d:0d:71:a9:
c7:13:0e:ff:b8:82:38:1e:76:be:d6:ed:12:66:d0:
2d:35:f9:d0:2a:b7:50:54:c1:d2:7e:64:70:3e:e8:
6b:e5:02:35:83:cf:00:ac:00:1f:8f:9d:fb:50:41:
62:c2:3d:9e:13:f1:14:a2:5c:c3:b3:1d:7d:e0:58:
ff:4c:4c:1c:10:f5:8d:16:a5:78:5f:dd:21:a6:8a:
0d:cd:1d:b6:7b:b9:3f:a7:92:e8:ba:68:2c:da:23:
6c:90:46:79:46:4a:dc:db:1f:0a:d2:92:ee:44:2e:
91:08:fe:df:89:08:62:c2:69:7c:79:3a:b3:06:35:
dc:8a:26:63:ab:b2:cb:14:41:3f:b4:39:87:ef:56:
07:ed:ea:f1:8e:42:34:74:c1:88:90:23:ba:a4:ca:
ef:22:24:b0:b6:26:af:b4:d3:48:d6:3f:0d:34:71:
4d:4a:5e:d0:5a:0e:d6:43:f1:7a:32:b4:df:8d:b4:
15:57:7e:57:62:42:7c:bf:a8:b0:f9:e0:69:0f:ec:
dc:70:23:0f:95:aa:fa:9e:1e:bb:71:8a:4e:f6:67:
c2:64:3b:40:63:dd:7c:ed:2b:e8:91:35:c7:23:ec:
99:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C3:16:0C:D9:25:F5:29:BE:58:56:AF:7E:24:89:86:79:C8:6D:05
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234322e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.242.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:40:a1:eb:c8:39:f5:6e:34:fa:75:eb:69:2b:e1:19:16:01:
46:9e:03:83:d5:8d:8f:f4:89:4a:38:56:cf:bf:58:96:b8:bb:
f9:e3:00:86:33:93:fa:d7:80:48:7e:38:eb:52:77:a8:e3:70:
59:ef:03:9f:56:d9:d9:5d:2d:7c:0a:15:6a:4f:e3:d2:47:b9:
7f:0c:93:38:3a:a8:9a:b1:56:24:47:db:a4:2c:50:91:65:de:
db:1f:17:cd:2f:48:6d:e5:8f:39:0b:22:c4:b5:3c:39:fa:e7:
a7:ee:e2:69:1d:67:d0:1e:79:bd:d7:97:3d:70:13:0f:4c:52:
52:88:1e:8c:f4:b6:e3:6c:95:0c:5c:0e:cc:da:a3:ee:34:43:
3a:f4:d4:2e:55:4d:55:60:ea:1b:68:f7:fb:58:8b:25:ad:d5:
63:30:c1:49:6e:69:74:64:6a:d7:c8:a6:0a:46:cd:db:93:84:
bf:11:b3:56:6a:12:f0:5c:84:11:fb:a9:35:9a:46:1a:8c:9b:
ba:ce:6e:06:7f:ff:ff:8b:69:0d:53:3c:91:ab:3f:a8:70:35:
09:80:1e:ec:98:c7:bd:48:27:b3:57:4b:79:3d:f9:71:2f:86:
93:fc:82:78:ce:8d:c5:f7:dd:90:a5:70:75:cc:11:07:28:e3:
28:9d:d0:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 12:26:43 2026 by rpki-client