Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20323130353432.roa
File: 34352e38392e3135302e302f32332d3234203d3e20323130353432.roa (raw, json)
Hash identifier: zPk9DsURsNnmbdRiq4D5Uh5C/ySqjVs+Ha95xyZEiIM=
Subject key identifier: 6C:A5:A3:31:96:F1:99:49:1B:39:9E:0A:C0:D1:A7:AC:13:70:A3:37
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 5C2CF7F052C340396186CCBCD47027C2FF76D01A
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20323130353432.roa
Signing time: Tue 19 May 2026 15:47:14 +0000
ROA not before: Tue 19 May 2026 15:42:14 +0000
ROA not after: Tue 18 May 2027 15:47:14 +0000
asID: 210542
IP address blocks: 45.89.150.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 14:44:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:2c:f7:f0:52:c3:40:39:61:86:cc:bc:d4:70:27:c2:ff:76:d0:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: May 19 15:42:14 2026 GMT
Not After : May 18 15:47:14 2027 GMT
Subject: CN=6CA5A33196F199491B399E0AC0D1A7AC1370A337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c9:7c:e1:b7:89:1e:4b:1b:7d:4c:16:d5:57:
3e:f5:ce:25:77:be:72:12:f6:b7:e1:6c:08:64:a7:
8c:b6:bb:a5:f0:0e:8c:ec:d2:b4:15:fa:55:da:95:
bb:e3:d8:c2:56:16:6c:fa:04:7f:93:d0:ed:31:b2:
24:00:59:d6:a2:26:e7:44:0f:71:49:0d:72:cc:ef:
36:7f:2b:db:6f:56:46:6c:f6:d9:04:93:35:6c:68:
57:bc:79:e4:44:e9:5d:b6:fd:55:e8:be:37:96:5e:
6c:58:ca:92:cb:48:c1:d4:aa:39:fe:98:ec:93:7c:
9a:15:e9:e8:fa:eb:3b:d3:e6:23:11:65:a7:10:fa:
ea:6b:5b:6e:af:8e:69:84:a3:e6:82:7d:2d:ce:0a:
8c:ea:23:ad:60:55:0c:57:aa:b0:19:f6:f3:d9:06:
95:81:84:47:9a:a8:f0:74:f4:54:0c:9a:ff:33:0e:
d4:90:8d:ee:d4:06:0a:86:a6:da:17:ee:8c:e0:1c:
cc:30:05:51:60:00:80:da:7c:93:fa:f6:12:17:3b:
93:85:c2:38:cd:e3:f8:56:2b:f3:3f:f9:98:cd:f3:
a9:16:35:11:47:41:a8:f2:36:9b:20:a1:7b:aa:4d:
01:e4:32:ab:22:f1:64:78:8e:cd:f1:62:c0:f0:d1:
dd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A5:A3:31:96:F1:99:49:1B:39:9E:0A:C0:D1:A7:AC:13:70:A3:37
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20323130353432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.150.0/23
Signature Algorithm: sha256WithRSAEncryption
32:e5:07:00:da:5e:b0:16:bc:0f:49:b5:9e:8a:11:21:a5:73:
cb:46:d7:4d:fa:cb:48:fd:11:49:e7:a3:52:e1:89:03:df:2b:
fd:fc:03:c3:e9:27:94:d0:a0:9a:19:79:cf:e2:1f:3b:c3:7b:
ce:fa:a1:f2:ff:b6:e6:06:4b:3c:2c:ea:a3:ea:42:5f:70:96:
9c:6b:c5:72:f9:b4:3e:1f:ca:58:69:b3:5a:23:3a:23:b3:58:
75:ae:43:f0:83:cc:de:16:9a:cf:f7:6f:6a:de:6e:d1:a1:18:
d8:78:dc:f4:ab:dd:e1:4e:4d:c4:05:84:39:96:b6:f1:bc:6d:
42:85:b7:ab:cb:64:bc:2a:f8:40:e6:bd:f5:73:10:2e:84:ec:
db:50:b5:6c:42:d9:bc:7e:0a:ad:6c:0b:c6:46:4b:61:91:c1:
59:52:45:41:df:91:b2:e4:87:a4:5d:01:cf:a7:f4:f1:2c:b0:
05:e8:83:d2:d7:ba:e0:2a:35:22:27:59:f1:5a:0f:73:f6:56:
cd:1d:3b:c0:ab:6e:05:a3:6b:ae:e5:d4:0c:6b:c8:eb:6b:f2:
24:2b:8a:a3:d3:77:77:1b:3a:b2:29:55:75:59:7d:9f:4f:ca:
b4:18:61:f1:ea:d5:30:3d:85:f6:91:5a:c6:85:81:1e:8a:22:
c0:43:73:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 05:26:00 2026 by rpki-client