Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138342e302f32332d3234203d3e2037383433.roa
File: 3138352e3232322e3138342e302f32332d3234203d3e2037383433.roa (raw, json)
Hash identifier: 9XBQMffn8c7AKibpAFQBOWNx3mevptYnJFESJzwfycA=
Subject key identifier: 0C:D5:AF:B4:55:21:54:22:C8:40:EF:00:81:BC:3C:46:67:78:53:6A
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 6EA27255085189998DFC27571F6A18FA9DD29B63
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138342e302f32332d3234203d3e2037383433.roa
Signing time: Thu 18 Jun 2026 17:47:46 +0000
ROA not before: Thu 18 Jun 2026 17:42:46 +0000
ROA not after: Thu 17 Jun 2027 17:47:46 +0000
asID: 7843
IP address blocks: 185.222.184.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 22 Jun 2026 20:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:a2:72:55:08:51:89:99:8d:fc:27:57:1f:6a:18:fa:9d:d2:9b:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jun 18 17:42:46 2026 GMT
Not After : Jun 17 17:47:46 2027 GMT
Subject: CN=0CD5AFB455215422C840EF0081BC3C466778536A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5f:cf:af:9c:38:39:43:68:45:4a:1d:7b:85:
ab:ae:01:15:1a:fe:ba:00:a3:50:be:c5:8f:5f:83:
e8:8c:c8:b2:88:13:7a:f0:27:1f:8a:81:91:3a:b0:
07:6a:82:bd:d6:26:ac:32:32:25:95:17:af:aa:ff:
65:38:89:8d:da:1a:df:fc:d6:0b:cf:45:af:ae:a5:
18:d3:48:63:53:50:01:4e:7e:e1:81:f7:f7:a6:40:
04:b1:1a:c5:ef:21:54:7d:29:ac:71:de:21:cf:50:
97:73:f8:8a:1d:52:27:99:da:75:0b:f8:78:4f:32:
9e:23:f7:e3:6d:f1:aa:07:e5:8f:34:66:59:37:c9:
94:32:d5:2f:d4:12:c6:bf:5e:9e:c1:4d:56:a6:d3:
23:9c:6a:78:22:a2:37:de:71:a8:43:ee:79:8c:76:
2d:77:97:59:f5:04:20:07:76:dd:8e:04:ea:b6:09:
33:00:79:bc:34:24:c6:43:fd:1c:38:17:35:e3:e2:
fe:57:0e:ba:ae:b2:b8:52:77:ab:fc:1a:2d:64:e9:
47:be:eb:8c:16:03:5a:a6:1a:19:13:79:cb:ee:15:
06:8a:eb:e5:d8:38:83:fb:fc:bc:9e:df:6c:2c:d6:
11:54:ea:c6:86:74:8d:ef:70:9f:c7:f7:f5:ee:3a:
2e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:D5:AF:B4:55:21:54:22:C8:40:EF:00:81:BC:3C:46:67:78:53:6A
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138342e302f32332d3234203d3e2037383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.184.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:15:23:a3:d7:b2:64:37:24:74:81:af:3d:b9:e6:f4:d1:ba:
68:3e:fb:d0:63:8c:94:a9:2a:21:41:9a:bc:15:84:90:ce:b3:
88:c0:79:b7:ae:26:0c:cf:d8:85:90:8b:76:5a:ea:d7:dc:64:
d5:a1:32:a8:e2:cd:a3:47:96:94:d0:8e:70:6b:72:12:e2:d8:
ee:59:ba:77:86:a2:a3:6d:03:3e:da:04:8b:54:74:69:1c:0b:
bc:2e:44:d6:1e:ce:01:bc:18:80:4a:20:de:90:50:08:b9:7e:
18:ff:7f:93:45:3b:1c:91:53:17:df:b9:a1:c2:6b:67:1a:68:
aa:4d:ee:37:6e:bf:8f:d7:59:dc:42:9b:36:1c:33:a1:1a:5e:
b8:32:75:52:5b:69:d3:67:16:a6:c3:f1:3b:be:2e:29:80:aa:
a0:80:71:09:6c:b9:5e:a9:7b:78:f7:85:0c:f6:50:ad:3c:ce:
02:aa:f4:09:bb:cf:84:e8:f0:12:ce:f9:36:57:f6:3f:7d:65:
96:ac:4a:44:de:ab:e1:d1:a3:c3:37:4d:6a:e0:43:f4:a0:91:
c9:de:4c:8b:39:52:9f:06:77:6a:21:f3:66:32:db:69:db:23:
59:bd:dc:e6:6b:18:bb:53:0f:77:61:1e:27:2c:49:e0:1b:1b:
0b:58:c4:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 05:39:08 2026 by rpki-client