Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235322e302f32342d3234203d3e20323734383237.roa
File: 37372e38332e3235322e302f32342d3234203d3e20323734383237.roa (raw, json)
Hash identifier: q68rGtvPxTIjEDPvv2TVoJliNz54C+gDFrWRdJOsUl4=
Subject key identifier: 55:FA:44:BE:95:33:34:CF:09:B0:F5:15:FB:EA:B7:EA:DA:CD:7A:82
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 535BDC3FEFECF6F018FE12095833FDCFC08056E0
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235322e302f32342d3234203d3e20323734383237.roa
Signing time: Thu 28 May 2026 10:47:17 +0000
ROA not before: Thu 28 May 2026 10:42:17 +0000
ROA not after: Thu 27 May 2027 10:47:17 +0000
asID: 274827
IP address blocks: 77.83.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 18:48:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:5b:dc:3f:ef:ec:f6:f0:18:fe:12:09:58:33:fd:cf:c0:80:56:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: May 28 10:42:17 2026 GMT
Not After : May 27 10:47:17 2027 GMT
Subject: CN=55FA44BE953334CF09B0F515FBEAB7EADACD7A82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:13:55:93:01:2e:56:d1:9e:54:55:48:49:b2:
94:77:1d:39:3d:ca:ea:5d:a6:f3:b8:98:bf:91:7c:
06:c7:2c:82:20:e0:6e:3e:4d:05:a7:23:69:1e:38:
fc:3d:23:f0:29:18:b0:c4:58:1b:46:46:76:33:42:
75:24:89:b0:66:b3:73:a3:22:40:d9:c4:59:17:9f:
10:a2:9b:26:8f:e5:c5:ee:41:b4:88:0f:cf:47:25:
40:53:52:59:97:ec:d9:55:dd:95:3b:7a:0c:46:d6:
01:70:0f:a2:c8:2a:2a:06:f2:0b:e8:58:0a:7c:59:
b1:1c:fb:5e:30:64:63:27:a3:25:ca:aa:b6:df:4f:
d9:13:b6:9d:5c:22:e7:29:75:b3:a3:60:63:56:1a:
ff:f2:a7:f6:f0:7b:fa:f3:96:73:d7:eb:56:3e:5c:
99:57:2a:3a:4f:de:f4:cd:cd:18:5a:93:e4:43:18:
21:d4:f2:6c:98:10:0a:66:8e:3b:66:96:aa:b5:88:
c3:5b:a4:9f:a0:c9:a5:56:19:26:e7:54:79:21:2c:
48:93:9a:66:23:a4:81:83:a1:fd:27:46:d9:50:04:
5f:9c:08:4d:11:db:8e:43:77:66:c6:3d:7e:86:44:
17:5d:12:ce:fe:bc:c4:fd:9a:96:9f:e5:f2:a4:be:
e6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FA:44:BE:95:33:34:CF:09:B0:F5:15:FB:EA:B7:EA:DA:CD:7A:82
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235322e302f32342d3234203d3e20323734383237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.252.0/24
Signature Algorithm: sha256WithRSAEncryption
81:1c:a6:37:b7:54:41:44:15:27:c2:8b:75:dd:27:63:c2:23:
cf:44:db:fd:8d:de:fc:5e:ef:78:a7:8b:6b:3f:07:82:6c:a3:
13:ea:d4:31:75:a5:8a:63:7e:6c:b1:04:e2:74:c5:72:64:fd:
cb:72:16:34:ac:ab:84:b9:28:43:98:9f:e8:c4:f4:87:89:6a:
26:80:f9:47:48:67:c9:7f:83:a0:7d:09:99:0e:62:50:6c:2e:
be:d1:b5:08:76:59:1e:ca:66:31:df:36:0b:f3:80:4e:71:90:
2c:1b:45:14:7f:e4:51:23:c9:fe:b2:ca:e1:69:25:33:9d:7b:
b3:5f:79:23:d7:d6:b6:f9:c0:76:88:de:8c:b7:54:1d:89:35:
c4:62:91:ce:05:67:66:b8:b7:80:e5:9d:12:37:82:cd:7e:00:
0c:31:e7:8c:be:fd:1e:a4:12:b9:68:3e:e4:9b:81:7d:b4:5d:
e1:f7:d1:48:14:c0:74:93:11:9c:3b:d6:53:7b:cd:aa:36:fb:
82:e4:29:83:db:38:1c:f4:68:a3:5e:e4:e1:ef:1d:63:a8:29:
68:7e:03:af:48:53:aa:78:b5:31:bf:d7:2f:92:57:2b:7b:e0:
c9:b3:aa:d9:36:e3:28:ba:b7:7e:34:ff:7b:6d:ef:1d:42:49:
4a:14:b4:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 09:55:43 2026 by rpki-client