Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32342d3234203d3e2039333034.roa
File: 3138352e3230352e3232322e302f32342d3234203d3e2039333034.roa (raw, json)
Hash identifier: PdGNc4NEOBKA2qWH2O72TLtWdO9NQ0H8/M8LNV8d21U=
Subject key identifier: 53:58:FB:41:86:FF:DB:CA:96:AC:4A:26:74:F2:DC:3A:03:89:6C:88
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 614DA954828009DA854F68B96E8C71C5A4ADAFF7
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32342d3234203d3e2039333034.roa
Signing time: Mon 25 May 2026 12:16:51 +0000
ROA not before: Mon 25 May 2026 12:11:51 +0000
ROA not after: Mon 24 May 2027 12:16:51 +0000
asID: 9304
IP address blocks: 185.205.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:4d:a9:54:82:80:09:da:85:4f:68:b9:6e:8c:71:c5:a4:ad:af:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: May 25 12:11:51 2026 GMT
Not After : May 24 12:16:51 2027 GMT
Subject: CN=5358FB4186FFDBCA96AC4A2674F2DC3A03896C88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ec:d3:6b:27:6f:60:d2:d9:9a:e7:32:0f:55:
51:39:81:3c:26:1c:26:8e:91:b3:e8:81:af:b4:58:
13:22:d1:b4:47:91:70:02:68:09:94:3d:cb:c3:a5:
e1:dc:05:1f:db:ad:c0:d9:b2:7a:b0:36:7c:a6:08:
4e:bd:41:76:ce:48:88:23:43:bd:35:d8:ac:a6:39:
14:42:ba:5d:e0:03:55:7b:c0:7e:2d:10:61:85:98:
d5:30:30:3c:d5:da:95:6b:52:9a:bb:8a:f8:9d:62:
bc:a3:8c:df:10:19:b5:b1:17:ba:ab:d6:25:42:72:
29:a7:15:24:26:20:55:b0:dc:5f:75:4f:8c:93:f3:
4c:06:fc:9c:c5:83:73:c9:18:2d:23:17:73:22:ca:
d4:5b:1b:74:eb:7d:44:1d:8e:8b:26:81:04:f9:47:
4e:7c:d2:d4:3d:4c:33:9a:41:ce:38:f1:2c:7d:3b:
b7:f0:fb:cb:e5:f5:9d:f2:04:b3:2e:87:55:4e:7a:
d0:75:d3:6b:6e:03:a1:00:3c:75:95:51:a3:de:7a:
cb:50:c8:20:4d:d5:d9:52:be:33:eb:02:2c:01:cc:
57:ce:13:82:2c:db:1e:15:2e:59:a8:e3:98:a6:15:
1f:f9:c7:13:e3:df:90:3d:f0:46:a8:c3:c2:83:24:
10:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:58:FB:41:86:FF:DB:CA:96:AC:4A:26:74:F2:DC:3A:03:89:6C:88
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32342d3234203d3e2039333034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.222.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:5b:54:b9:ca:14:47:2e:f2:de:26:d7:6d:1c:b2:3c:6e:84:
1c:d2:8a:55:d3:db:33:ac:7b:2f:a1:77:ea:5b:db:05:3c:06:
0e:6e:bb:0a:bc:04:b0:57:95:af:85:dc:59:9a:ed:66:80:12:
c5:5a:82:8f:74:64:84:32:6f:e2:cc:73:7c:96:74:df:06:bc:
ed:39:22:40:bb:04:e6:96:cf:0c:ed:4a:6a:39:a9:0d:7d:70:
62:a5:06:70:e8:5f:b4:6c:7f:ae:0b:08:f8:2e:2b:71:c8:67:
42:2c:16:a2:e2:a1:f9:2c:b0:8d:1e:71:11:bc:8e:d0:10:69:
20:2d:22:a8:07:ae:a2:49:f2:19:68:3d:57:e6:85:ba:7b:f8:
49:72:4f:6b:a2:e4:73:d3:9f:6d:08:20:f1:1e:f1:66:70:53:
b5:04:43:a2:6c:6b:05:0a:3d:0f:5c:80:89:75:04:ce:23:cf:
11:fd:48:06:b5:79:af:bc:e0:b0:95:eb:11:10:23:8f:02:6c:
6a:53:f2:34:97:ef:3d:65:64:4e:e2:63:3b:86:61:fe:ae:09:
6d:68:e6:98:23:2e:d3:c3:bc:fb:f2:cb:b3:c4:11:7b:61:0f:
1d:83:60:44:70:99:fc:8a:0a:8c:1e:5c:27:5a:5c:f2:32:7a:
4e:b3:b3:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 20:50:26 2026 by rpki-client