Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137332e302f32342d3234203d3e203235363933.roa
File: 36322e3139322e3137332e302f32342d3234203d3e203235363933.roa (raw, json)
Hash identifier: l2moL/0n3AUQ5cZa8s9n/aY4gBFkHmTPj+K3TgDTaaI=
Subject key identifier: E7:AE:C1:29:6C:4B:3D:5E:A1:D9:CC:56:53:7F:DB:D1:11:91:45:BE
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 4C4CF4E6C447F3421EE3F97BCF67C43953CF5A22
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137332e302f32342d3234203d3e203235363933.roa
Signing time: Sat 07 Mar 2026 15:46:47 +0000
ROA not before: Sat 07 Mar 2026 15:41:47 +0000
ROA not after: Sat 06 Mar 2027 15:46:47 +0000
asID: 25693
IP address blocks: 62.192.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 01:39:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:4c:f4:e6:c4:47:f3:42:1e:e3:f9:7b:cf:67:c4:39:53:cf:5a:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Mar 7 15:41:47 2026 GMT
Not After : Mar 6 15:46:47 2027 GMT
Subject: CN=E7AEC1296C4B3D5EA1D9CC56537FDBD1119145BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6f:ab:da:dd:e2:df:80:d8:71:05:30:92:16:
38:dc:09:22:1e:ad:43:f9:f9:50:d9:d8:af:a1:16:
3d:47:0b:76:86:43:f6:95:2c:31:eb:30:e6:fa:54:
7b:2e:3a:eb:7f:f5:a3:e5:95:14:2b:b8:36:5a:6f:
3c:25:19:4b:1d:1b:39:df:54:49:84:67:ea:cd:27:
40:c1:f0:0e:51:f2:53:76:7a:3a:e2:0f:86:8a:ed:
06:28:fa:27:74:e1:a4:33:e0:b9:b4:b2:86:98:da:
be:b2:c2:82:10:68:3d:bb:a4:a4:4c:9b:8d:65:f1:
15:a0:76:f7:b5:4d:a1:7c:3d:47:33:ce:04:c5:96:
93:19:f1:38:99:a7:7c:21:87:8c:e8:1c:96:ec:6d:
53:cc:6e:ad:1a:90:1a:52:08:55:a6:d5:40:af:55:
3e:c0:56:c4:db:c0:68:cc:97:df:66:ce:d7:90:d1:
ee:a9:0d:50:53:f8:84:80:b0:8b:a5:e9:22:2b:e7:
25:be:2d:bc:31:0f:cb:09:92:20:7b:b0:18:f1:39:
1b:0d:af:d1:ab:c0:e4:34:44:67:59:ba:90:b7:5d:
ab:cb:14:3e:e3:e6:c4:ce:c2:12:e0:2f:ff:01:75:
0e:a5:61:47:00:24:e4:9d:39:97:e7:8a:ef:fa:dd:
91:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:AE:C1:29:6C:4B:3D:5E:A1:D9:CC:56:53:7F:DB:D1:11:91:45:BE
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137332e302f32342d3234203d3e203235363933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.173.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:48:66:0c:e8:db:d3:4b:d7:7c:d5:94:c7:85:c1:ca:a2:ed:
93:2f:20:8d:4d:5f:9c:6b:c4:6a:73:79:da:e1:40:f7:34:35:
29:0e:48:eb:2b:c9:ba:ab:d3:ca:c9:59:88:5c:a5:67:6d:63:
c2:5c:5b:5d:08:ee:01:db:5a:63:29:b6:33:3e:86:26:6f:52:
35:ef:a2:2f:36:33:01:f4:88:4e:1a:0b:41:a5:91:6e:f3:61:
8f:71:17:e7:f6:3a:f9:f8:67:06:5d:5d:3b:17:d2:3d:9d:45:
27:47:1c:5b:72:5e:af:15:85:ff:34:56:7d:2c:41:c7:f8:a1:
d5:c4:48:9d:43:d0:00:7d:6f:dd:fd:96:9b:3d:34:93:b3:ff:
0d:a2:2d:0a:89:21:f0:f1:ef:f0:e1:de:8a:55:e6:91:95:67:
fe:cf:06:7c:6a:a7:6d:47:52:a2:c9:50:92:ae:be:c6:78:54:
d3:aa:93:8a:6c:cc:e3:9f:da:af:39:e2:7e:4c:f3:3f:21:e2:
8b:a6:0d:d9:fd:71:40:d3:25:44:eb:17:98:e0:22:3a:19:d8:
d7:0d:64:7f:78:7c:a5:ee:ff:cd:46:43:5b:8d:45:51:3d:9e:
59:a0:8f:27:37:20:a1:be:50:50:45:15:e0:f5:d4:d4:a7:f9:
d5:ed:80:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 18:17:04 2026 by rpki-client