Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323135343337.roa
File: 39332e39352e3131332e302f32342d3234203d3e20323135343337.roa (raw, json)
Hash identifier: M7lEqE1+KGgF78w8mWdBggax3ZKunAR48q+d2JT/Oyk=
Subject key identifier: BF:89:25:1B:39:61:1A:2F:B2:2B:8F:3D:17:C8:9A:2B:51:B1:15:EF
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 475EC5CD21DF256F089C02BA6C5D3A4CF83F53A6
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323135343337.roa
Signing time: Mon 15 Jun 2026 20:32:25 +0000
ROA not before: Mon 15 Jun 2026 20:27:25 +0000
ROA not after: Mon 14 Jun 2027 20:32:25 +0000
asID: 215437
IP address blocks: 93.95.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 20:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:5e:c5:cd:21:df:25:6f:08:9c:02:ba:6c:5d:3a:4c:f8:3f:53:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Jun 15 20:27:25 2026 GMT
Not After : Jun 14 20:32:25 2027 GMT
Subject: CN=BF89251B39611A2FB22B8F3D17C89A2B51B115EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d2:ae:88:5d:d9:99:b8:d8:83:9d:02:c9:0a:
30:93:9b:31:58:a8:cb:85:69:cc:36:b2:4f:a6:38:
c7:23:75:4a:e8:be:d6:4d:9d:ac:cc:20:37:2f:7b:
3f:5f:b1:0d:85:e9:55:a7:f1:09:99:bd:3f:f2:24:
94:66:99:53:4d:0e:52:a7:7d:58:1a:e3:31:16:74:
51:a6:ea:03:b3:50:fb:23:a8:22:9b:42:70:5a:c1:
96:21:58:29:5a:ca:40:05:3b:65:16:5e:1a:b7:af:
f8:87:c0:09:47:44:8f:26:75:5b:8a:06:25:0a:13:
85:b4:53:f8:94:5c:67:31:90:5c:45:30:38:5b:f4:
fa:04:3e:49:29:03:72:b7:d1:52:c3:eb:20:06:d3:
ab:76:21:5a:f8:f5:4a:a9:6a:4b:86:da:ee:ac:c9:
1a:b3:a8:96:34:55:a0:2e:f2:b0:76:9e:c0:21:bb:
33:c8:10:b1:56:e6:0c:f4:7a:e8:ca:d7:07:44:76:
dc:98:24:5e:bb:f2:8e:df:bf:72:b3:db:f0:80:ba:
0c:74:e0:d1:54:22:cb:8e:9e:b8:ed:26:80:37:5b:
e0:0a:63:ea:62:4f:2f:cc:ee:9d:1f:a3:1d:de:25:
02:57:e1:cd:15:b5:33:d5:9a:32:a2:0e:36:0d:f5:
ca:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:89:25:1B:39:61:1A:2F:B2:2B:8F:3D:17:C8:9A:2B:51:B1:15:EF
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131332e302f32342d3234203d3e20323135343337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.113.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:03:ec:e1:3e:ec:ac:12:b3:da:18:71:f1:31:c6:c5:e4:a3:
87:f4:6d:35:65:17:1a:f0:ed:87:be:5f:72:c5:10:52:3c:18:
31:95:15:d5:23:a5:6d:2c:eb:67:a8:94:b1:ac:0e:78:ef:e9:
e4:b8:e6:f9:f5:64:ad:74:9a:8c:0e:91:48:5b:04:fe:95:aa:
ff:d1:4d:89:ab:40:22:d9:f3:f3:a7:66:2d:15:19:46:ba:39:
00:76:da:c3:86:7e:b0:25:c4:e6:d6:16:99:f3:68:5f:f7:11:
aa:8e:ff:31:65:25:2a:4e:91:6b:92:36:e2:31:fd:d8:ba:ba:
61:d6:07:6e:ba:83:b7:35:d9:79:56:be:b3:27:7d:61:50:30:
3e:61:cf:f7:b7:b2:4b:b2:14:56:5e:1b:d6:61:37:f9:2d:0f:
22:2e:0d:91:4b:fb:a7:34:1f:0e:a5:64:30:e9:5c:ab:ab:b3:
56:60:db:03:aa:77:50:c2:f9:02:9d:be:dd:f2:ef:14:15:c2:
82:d2:d8:0d:02:d5:62:1c:28:59:20:76:ce:3c:36:56:55:a2:
6e:7d:ba:15:86:80:90:3e:e9:7c:01:12:11:84:fd:a8:57:41:
e0:96:73:17:b9:95:39:c1:24:fa:6e:62:81:6c:0b:99:09:5f:
60:b8:eb:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 01:18:41 2026 by rpki-client