Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/2/3138352e322e35302e302f32342d3234203d3e203632303832.roa
File: 3138352e322e35302e302f32342d3234203d3e203632303832.roa (raw, json)
Hash identifier: zw2xB7te/CtSwWJJPc9d/2yAtUjaghXOjJZIncUw2jI=
Subject key identifier: A6:29:42:7E:F7:BC:D5:53:75:54:60:03:CE:2B:AE:DD:B3:5F:72:F1
Certificate issuer: /CN=a29ef21c1397ab4b2f08778305a37ffd1cc25c4e
Certificate serial: 11B6CBB7EE29A450324DFC4AC210B508B2D6768C
Authority key identifier: A2:9E:F2:1C:13:97:AB:4B:2F:08:77:83:05:A3:7F:FD:1C:C2:5C:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/op7yHBOXq0svCHeDBaN__RzCXE4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/2/3138352e322e35302e302f32342d3234203d3e203632303832.roa
Signing time: Tue 16 Jun 2026 16:31:51 +0000
ROA not before: Tue 16 Jun 2026 16:26:51 +0000
ROA not after: Tue 15 Jun 2027 16:31:51 +0000
asID: 62082
IP address blocks: 185.2.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/2/A29EF21C1397AB4B2F08778305A37FFD1CC25C4E.crl
rsync://rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/2/A29EF21C1397AB4B2F08778305A37FFD1CC25C4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/op7yHBOXq0svCHeDBaN__RzCXE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:42:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:b6:cb:b7:ee:29:a4:50:32:4d:fc:4a:c2:10:b5:08:b2:d6:76:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a29ef21c1397ab4b2f08778305a37ffd1cc25c4e
Validity
Not Before: Jun 16 16:26:51 2026 GMT
Not After : Jun 15 16:31:51 2027 GMT
Subject: CN=A629427EF7BCD55375546003CE2BAEDDB35F72F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:4d:a9:44:fe:ec:67:e3:1e:23:f6:3f:45:c8:
c8:7c:02:7b:8a:11:04:ad:48:cc:16:fa:18:34:9a:
1e:83:a5:6f:15:cf:84:da:d9:1e:08:e2:50:dd:8c:
10:ce:63:b3:74:04:ae:6c:cf:68:2e:05:91:b7:b4:
f3:8f:a1:1d:3d:cf:8e:30:74:74:57:7d:07:b0:b1:
b2:80:7e:88:4f:57:f8:05:55:bf:03:3e:34:c5:c3:
aa:57:20:6d:d2:a8:32:32:51:f1:9a:c6:b7:10:c2:
25:74:b9:c2:46:51:af:6e:c7:4e:ae:08:ec:b0:df:
af:47:50:be:9f:51:02:3e:a6:fc:ee:79:cc:78:23:
4c:ff:f7:40:62:4d:97:1f:d7:46:3f:43:06:bc:c2:
da:8f:77:d5:9c:bb:3f:f5:87:af:57:23:8b:aa:a6:
71:41:d7:42:0f:19:6c:33:b5:a3:66:92:39:45:e8:
c0:a5:7c:3d:1b:83:65:c9:89:d5:c6:d0:23:a7:b2:
9f:e1:ab:a3:a8:e4:e9:e2:d8:65:f2:cf:5e:25:70:
58:e2:f7:12:90:cb:20:38:d0:4c:d1:54:5e:26:86:
e0:5f:b7:2c:8c:ef:75:87:b2:a0:25:83:5c:8c:1b:
fb:d3:ed:59:4e:91:b5:5d:8b:47:55:66:2b:e9:12:
bb:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:29:42:7E:F7:BC:D5:53:75:54:60:03:CE:2B:AE:DD:B3:5F:72:F1
X509v3 Authority Key Identifier:
keyid:A2:9E:F2:1C:13:97:AB:4B:2F:08:77:83:05:A3:7F:FD:1C:C2:5C:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/2/A29EF21C1397AB4B2F08778305A37FFD1CC25C4E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/op7yHBOXq0svCHeDBaN__RzCXE4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/2/3138352e322e35302e302f32342d3234203d3e203632303832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.50.0/24
Signature Algorithm: sha256WithRSAEncryption
27:38:d6:68:a5:2c:e1:13:b9:c3:75:ff:9d:9a:8b:32:8b:b2:
cf:6a:fe:83:ab:24:21:fb:9d:ab:f4:e3:2f:36:1c:ab:06:e4:
80:6e:6f:5b:ce:63:e2:df:93:67:bf:a4:54:99:b7:ae:db:67:
d3:c4:b0:31:f5:d2:2c:50:f0:a8:db:e2:0e:72:0a:fe:48:1f:
d4:33:ed:74:2f:fd:c7:8c:ea:bb:b8:1c:58:d6:ef:cc:b9:fe:
3d:b5:9a:4a:92:79:e2:3d:d8:92:9e:0c:7e:a1:55:ac:5f:e5:
53:72:61:ca:2b:29:03:9a:90:37:7a:c6:69:1e:ab:42:92:07:
f2:14:ff:dd:60:b0:82:3f:53:5b:6b:bd:f5:6b:76:25:e6:2f:
a9:4f:a6:06:76:79:6c:ec:25:7e:6d:fe:70:46:2b:0e:6b:0e:
98:37:bf:78:cd:f9:5a:c2:08:3b:9b:da:2f:a9:bc:4b:75:3d:
27:09:01:e5:60:6a:70:80:71:ea:a9:f4:01:0d:99:ff:16:19:
8f:86:ef:80:93:1a:ed:8d:a6:f5:6a:a4:8c:ff:71:d9:a9:e8:
b8:b6:ad:da:fe:3d:27:3c:80:8d:4d:01:d8:72:95:62:15:18:
83:6d:68:63:35:83:95:ef:c3:10:86:79:46:12:cf:9d:7b:20:
aa:c4:6e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:17:25 2026 by rpki-client