Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138382e302f32342d3234203d3e20313939363935.roa
File: 3130392e3131302e3138382e302f32342d3234203d3e20313939363935.roa (raw, json)
Hash identifier: a7st/WRAp2y+2plXXesaDQAAqCT5i6MOO0jzvkiRVfU=
Subject key identifier: B0:60:9C:09:AA:16:8C:2D:37:F7:56:A4:CD:6C:DF:40:78:6D:E8:95
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 205D7FB9CA6C608C2F9B422D779BB1E8A796F584
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138382e302f32342d3234203d3e20313939363935.roa
Signing time: Thu 14 May 2026 15:47:13 +0000
ROA not before: Thu 14 May 2026 15:42:13 +0000
ROA not after: Thu 13 May 2027 15:47:13 +0000
asID: 199695
IP address blocks: 109.110.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:5d:7f:b9:ca:6c:60:8c:2f:9b:42:2d:77:9b:b1:e8:a7:96:f5:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: May 14 15:42:13 2026 GMT
Not After : May 13 15:47:13 2027 GMT
Subject: CN=B0609C09AA168C2D37F756A4CD6CDF40786DE895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f2:dc:6c:f2:a8:eb:12:25:de:3e:e9:d8:52:
48:48:2a:1e:25:9c:bb:2d:26:ff:01:36:77:3f:99:
0c:46:03:a4:79:5d:78:a1:ab:be:3e:77:fd:b0:04:
a8:7b:a0:0f:2d:a2:e7:6f:b7:e2:b4:15:5c:42:2e:
87:32:ce:4b:b1:cf:72:fa:3e:eb:97:55:f0:64:a8:
62:f2:cb:8c:00:2e:b4:43:06:33:d8:92:49:43:64:
12:af:78:e0:ea:df:7f:87:0a:e8:63:ac:d3:35:4c:
1d:87:d4:e3:8a:e7:0a:fe:33:84:98:06:00:f6:e7:
ec:27:a3:d2:22:1c:b9:e4:99:60:f2:c7:ba:a6:6b:
35:de:b5:9e:23:02:aa:6d:a1:a4:7b:b5:77:0e:6c:
83:8b:08:07:f3:1e:7a:b5:02:0d:52:1e:87:d5:20:
4b:cf:b2:e0:09:91:62:e2:8f:14:0b:8e:4b:fb:83:
7b:5d:0e:44:c5:88:ae:01:ad:a3:d2:f8:d8:d0:cd:
36:73:66:9e:89:85:e3:1e:3c:35:9a:44:5f:59:1b:
64:98:9a:a0:f7:2a:aa:14:70:b4:ac:ef:9c:57:61:
bd:be:0a:21:05:8a:c2:e6:b0:4b:be:80:9b:61:b3:
81:b3:d5:c7:72:ae:96:58:29:e8:b7:af:32:e7:d2:
33:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:60:9C:09:AA:16:8C:2D:37:F7:56:A4:CD:6C:DF:40:78:6D:E8:95
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138382e302f32342d3234203d3e20313939363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.188.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:e2:65:77:73:c1:95:87:82:8b:5c:48:b4:87:e5:ae:66:e4:
6e:0e:f7:4a:6a:e6:8f:2a:f0:f0:a1:79:26:78:de:f7:2b:77:
a6:52:99:97:9b:36:29:2f:65:cb:2c:f8:29:c4:2a:59:2a:96:
df:f9:e5:75:91:67:9d:17:08:10:d4:fc:aa:40:85:54:7c:4f:
26:e4:42:3a:bf:56:3b:45:ce:96:48:71:e3:24:d1:4c:a6:68:
7e:94:72:16:d3:da:ce:e8:1d:15:6d:14:5e:d2:9b:b6:29:84:
51:73:66:e9:23:6a:87:1f:ab:96:c2:16:aa:0d:02:78:67:e8:
78:d4:0b:92:a7:bf:82:21:26:3b:c1:fe:b3:26:5c:37:60:3d:
86:b8:c8:35:80:d9:1e:a4:f5:55:fd:40:a2:11:32:44:a3:08:
69:18:7d:04:d1:84:9c:18:60:d4:51:9d:e5:ce:c1:f3:de:5d:
27:8b:47:df:1d:ad:d4:bb:79:05:2b:e0:4e:3e:10:8f:a1:9e:
b0:5d:cf:68:40:d6:9d:64:d6:c7:52:01:ae:3f:f8:e9:93:d1:
bd:c4:7b:6b:fd:f3:e5:bc:2f:99:8f:1b:85:c3:cc:96:1b:0c:
95:ca:dd:f3:fb:52:7d:bf:10:65:4c:3b:7d:47:b7:25:c2:f2:
18:1d:c9:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 05:20:23 2026 by rpki-client