Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e203230313135.roa
File: 3138352e3232322e3138362e302f32332d3234203d3e203230313135.roa (raw, json)
Hash identifier: l+eWxo9cOKAJrtxdme9OfUjp1kME9AK0Y8pRm/1RSaE=
Subject key identifier: 77:F7:C5:B0:ED:A2:66:69:5B:24:04:66:DC:24:41:9E:29:81:18:92
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 7597A235DAD155AA3318669AD8D1B605188B992C
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e203230313135.roa
Signing time: Thu 18 Jun 2026 17:47:45 +0000
ROA not before: Thu 18 Jun 2026 17:42:45 +0000
ROA not after: Thu 17 Jun 2027 17:47:45 +0000
asID: 20115
IP address blocks: 185.222.186.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 19:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:97:a2:35:da:d1:55:aa:33:18:66:9a:d8:d1:b6:05:18:8b:99:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jun 18 17:42:45 2026 GMT
Not After : Jun 17 17:47:45 2027 GMT
Subject: CN=77F7C5B0EDA266695B240466DC24419E29811892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:93:83:b9:57:0e:af:d1:fc:9f:e1:61:f9:4c:
fc:b0:71:a3:7d:7f:a6:83:c8:9e:7a:f4:21:92:78:
e8:e8:8e:bd:7c:af:6d:fd:06:4b:26:20:c9:2f:35:
cf:a7:c1:ca:9d:1d:2e:38:b6:bb:c0:e0:2a:36:dc:
e7:e0:e8:4b:fe:5a:2f:8f:77:a6:7a:76:dc:7d:0b:
19:19:fb:59:7a:7d:da:21:5b:a7:00:cf:4f:0f:e9:
16:0d:39:0b:24:97:d2:3b:59:dd:fe:f8:7b:73:04:
a9:cd:e6:8f:4f:1b:78:45:c6:4d:8d:9c:4d:c1:a0:
c5:75:df:30:85:d9:56:8f:5f:79:95:e0:92:2d:41:
e6:cc:db:d2:6c:6a:fa:0a:70:4f:40:c5:55:41:d7:
1c:69:05:bf:3c:c3:25:85:6d:1e:49:b7:6f:d1:f5:
e4:4b:50:e5:3d:cb:0a:e7:2c:97:05:d3:3c:cb:85:
17:9f:36:e9:49:14:03:08:7d:1d:d0:ff:6d:24:3d:
2b:ed:69:4c:14:74:fb:f3:79:eb:24:a1:c8:c7:04:
4a:82:df:c1:73:e6:12:ea:33:21:25:e8:73:52:3e:
41:8f:31:fa:a4:47:9c:93:78:62:ac:c1:f8:f2:b8:
5f:ee:3b:00:9a:25:e5:31:75:17:4a:4b:2f:60:94:
05:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F7:C5:B0:ED:A2:66:69:5B:24:04:66:DC:24:41:9E:29:81:18:92
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e203230313135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.186.0/23
Signature Algorithm: sha256WithRSAEncryption
29:e1:0d:a8:25:d0:82:f8:27:18:3a:94:af:f8:b6:58:53:fa:
bf:de:9f:e2:e4:ef:ab:c4:05:8b:dc:11:09:35:81:f2:02:05:
56:40:c7:96:62:fd:46:c3:4c:ec:41:a4:e0:09:9c:85:5b:48:
cf:27:b6:e6:93:3f:df:1b:95:32:2c:91:2d:81:bf:af:c8:fb:
da:79:9d:a1:49:46:98:22:ca:f5:a8:cb:24:8b:77:57:4b:f3:
b4:f2:6b:f1:e7:d3:86:04:cf:13:72:fb:58:ac:58:e4:06:e7:
b4:79:4d:5b:38:c2:48:32:80:69:e8:3c:60:1d:40:d1:60:b8:
7a:c7:43:5d:10:e8:61:24:08:c1:ae:58:71:20:d3:e3:55:ce:
ce:08:55:37:36:6b:ec:d6:39:cb:01:66:5c:64:2b:23:b4:02:
74:49:ae:67:77:b1:6e:a0:a1:ce:2f:43:de:7d:58:60:67:f7:
54:9e:89:db:44:f2:41:32:55:1a:62:43:a8:43:27:ac:f4:07:
fc:c8:88:c3:2e:53:85:20:77:d2:91:45:a9:86:78:29:ee:f0:
17:8b:f7:26:2f:ae:ee:32:69:82:03:b4:d8:d1:64:c4:34:ff:
b5:ab:07:2d:31:45:4e:89:e3:4a:a1:d4:f4:29:b1:4b:f2:c8:
04:fe:8e:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 05:08:09 2026 by rpki-client