Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3132382e302f32302d3234203d3e20313532313739.roa
File: 36322e3131322e3132382e302f32302d3234203d3e20313532313739.roa (raw, json)
Hash identifier: liefg3Y9zeeu/3eknFvPsQP8Q7/RU3yzzbVSJuhzj6Y=
Subject key identifier: 4A:BE:30:4F:1D:C7:30:35:B4:80:44:D1:63:E5:47:62:14:36:29:30
Certificate issuer: /CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Certificate serial: 05F0E518D69614FF447E99E799EDD5CDE4D74CD2
Authority key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3132382e302f32302d3234203d3e20313532313739.roa
Signing time: Tue 19 May 2026 15:47:14 +0000
ROA not before: Tue 19 May 2026 15:42:14 +0000
ROA not after: Tue 18 May 2027 15:47:14 +0000
asID: 152179
IP address blocks: 62.112.128.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 03:18:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:f0:e5:18:d6:96:14:ff:44:7e:99:e7:99:ed:d5:cd:e4:d7:4c:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Validity
Not Before: May 19 15:42:14 2026 GMT
Not After : May 18 15:47:14 2027 GMT
Subject: CN=4ABE304F1DC73035B48044D163E5476214362930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2a:14:47:c3:5b:22:c1:09:4b:ee:ff:11:0c:
13:03:c2:e0:07:85:03:be:4c:b0:be:3f:fc:7f:4f:
4a:dc:e2:c6:2b:85:a9:0d:26:2d:6a:f9:43:1e:20:
db:35:f0:d6:88:9d:c5:60:28:50:8e:15:6f:a1:fa:
25:e8:0f:0c:2b:8c:0a:06:46:09:0a:25:6f:62:68:
b2:9d:67:de:b9:e4:bc:ef:ac:b7:ec:a3:46:e8:60:
c3:8b:c4:2d:21:bc:38:f5:e5:e5:cd:a9:c2:b1:14:
c1:77:17:01:91:55:75:3e:b8:d4:5c:21:9a:2a:69:
9e:37:91:50:11:d0:58:74:92:68:44:d1:f0:8b:d9:
88:b3:85:6d:4a:99:8b:c5:c3:96:bf:2c:9e:fa:87:
ce:aa:15:cb:ce:60:1c:36:3c:88:e1:fa:17:5c:90:
dc:29:2e:cf:b0:9c:e1:86:26:11:e1:e8:20:db:46:
63:91:8a:f1:b2:50:e5:89:82:f9:db:16:c4:5f:02:
38:59:11:17:34:81:f0:9c:0f:2d:2f:e5:eb:01:a7:
63:a7:44:ed:e5:7d:55:40:6c:b8:11:d2:da:72:aa:
a6:e2:46:7c:91:61:ce:e3:0e:eb:5d:1d:b1:dd:f7:
1d:f4:a7:f4:20:85:06:84:7b:58:88:bb:b7:07:68:
f8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:BE:30:4F:1D:C7:30:35:B4:80:44:D1:63:E5:47:62:14:36:29:30
X509v3 Authority Key Identifier:
keyid:9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3132382e302f32302d3234203d3e20313532313739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.128.0/20
Signature Algorithm: sha256WithRSAEncryption
86:7d:de:d7:e0:ae:33:43:5d:d5:92:e0:a7:b0:39:2f:af:59:
e0:18:c5:f2:95:bc:81:bd:59:fc:8e:76:92:c5:92:b0:b6:3c:
96:76:31:6e:ed:69:d7:5a:38:38:71:88:71:e1:ae:cd:61:a7:
46:9c:af:ea:29:50:bb:11:66:21:03:a9:65:29:ef:a0:a0:0f:
9c:8b:31:2e:a2:d5:bf:ac:f9:e1:c8:f2:59:60:7f:b7:69:95:
ca:ef:16:e2:a2:fb:a1:b7:b8:ac:fd:65:b3:bd:72:22:84:5d:
11:4b:b4:02:e6:9a:98:16:8c:f2:90:6f:9a:c9:91:31:c8:7d:
88:48:37:4a:7c:ab:2d:f9:d9:58:b2:ac:20:93:75:55:76:d8:
e7:2b:11:fc:d6:c3:02:53:97:11:a4:51:95:63:90:0d:48:a2:
ec:41:71:b7:24:39:0e:66:54:9e:8f:3b:2f:4b:e0:c2:53:21:
df:62:58:28:64:10:63:75:1b:ee:b6:fb:af:12:fb:95:4e:de:
d4:e4:43:32:08:72:a6:e1:d1:d2:4d:64:31:6b:f2:d6:6f:e2:
8c:32:09:c6:61:02:68:a9:8a:fa:ed:76:e3:9d:3b:62:2b:98:
66:df:35:ae:a2:0a:10:e3:fc:95:04:fa:72:2b:37:4c:e8:7e:
c3:8b:9f:ae
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUBfDlGNaWFP9Efpnnme3VzeTXTNIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWYwZDI0Yzg1NWVlZTAwZmU0YWJmMzkwM2M2ZThmY2M3
MDgzZWQ0ZDAeFw0yNjA1MTkxNTQyMTRaFw0yNzA1MTgxNTQ3MTRaMDMxMTAvBgNV
BAMTKDRBQkUzMDRGMURDNzMwMzVCNDgwNDREMTYzRTU0NzYyMTQzNjI5MzAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsKhRHw1siwQlL7v8RDBMDwuAH
hQO+TLC+P/x/T0rc4sYrhakNJi1q+UMeINs18NaIncVgKFCOFW+h+iXoDwwrjAoG
RgkKJW9iaLKdZ9655LzvrLfso0boYMOLxC0hvDj15eXNqcKxFMF3FwGRVXU+uNRc
IZoqaZ43kVAR0Fh0kmhE0fCL2YizhW1KmYvFw5a/LJ76h86qFcvOYBw2PIjh+hdc
kNwpLs+wnOGGJhHh6CDbRmORivGyUOWJgvnbFsRfAjhZERc0gfCcDy0v5esBp2On
RO3lfVVAbLgR0tpyqqbiRnyRYc7jDutdHbHd9x30p/QghQaEe1iIu7cHaPhnAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUSr4wTx3HMDW0gETRY+VHYhQ2KTAwHwYDVR0j
BBgwFoAUnw0kyFXu4A/kq/OQPG6PzHCD7U0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWYzMTc2OGQtNDJiMS00ZTkyLWI4M2YtYmVmN2VlMDE3
ODEzLzAvOUYwRDI0Qzg1NUVFRTAwRkU0QUJGMzkwM0M2RThGQ0M3MDgzRUQ0RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL253MGt5Rlh1NEFfa3FfT1FQRzZQekhD
RDdVMC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWYzMTc2OGQt
NDJiMS00ZTkyLWI4M2YtYmVmN2VlMDE3ODEzLzAvMzYzMjJlMzEzMTMyMmUzMTMy
MzgyZTMwMmYzMjMwMmQzMjM0MjAzZDNlMjAzMTM1MzIzMTM3Mzkucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAQ+cIAwDQYJKoZIhvcNAQELBQADggEBAIZ93tfgrjNDXdWS4KewOS+vWeAYxfKV
vIG9WfyOdpLFkrC2PJZ2MW7taddaODhxiHHhrs1hp0acr+opULsRZiEDqWUp76Cg
D5yLMS6i1b+s+eHI8llgf7dplcrvFuKi+6G3uKz9ZbO9ciKEXRFLtALmmpgWjPKQ
b5rJkTHIfYhIN0p8qy352ViyrCCTdVV22OcrEfzWwwJTlxGkUZVjkA1IouxBcbck
OQ5mVJ6POy9L4MJTId9iWChkEGN1G+62+68S+5VO3tTkQzIIcqbh0dJNZDFr8tZv
4owyCcZhAmipivrtduOdO2IrmGbfNa6iChDj/JUE+nIrN0zofsOLn64=
-----END CERTIFICATE-----
Generated at Thu Jun 11 16:08:32 2026 by rpki-client