Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS213169.roa
File: AS213169.roa (raw, json)
Hash identifier: ZxeDj5YYcqM6MXuaWPht7gU+ESBK/Jw1nyIfV/yrZ5s=
Subject key identifier: FA:A7:44:C3:A3:31:B8:AC:B3:ED:2D:7D:80:1F:69:7E:6A:C7:6D:75
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 2BAAE5E877B517D3855E21A8D498AEF558FAD98C
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS213169.roa
Signing time: Fri 17 Apr 2026 19:09:26 +0000
ROA not before: Fri 17 Apr 2026 19:04:26 +0000
ROA not after: Fri 16 Apr 2027 19:09:26 +0000
asID: 213169
IP address blocks: 91.124.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:19:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:aa:e5:e8:77:b5:17:d3:85:5e:21:a8:d4:98:ae:f5:58:fa:d9:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 17 19:04:26 2026 GMT
Not After : Apr 16 19:09:26 2027 GMT
Subject: CN=FAA744C3A331B8ACB3ED2D7D801F697E6AC76D75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:54:81:64:44:77:ce:9d:08:b3:82:93:42:30:
00:98:bc:e8:ca:1f:b0:44:23:ac:ef:da:6f:a8:5c:
cb:95:d9:a3:00:9f:6c:75:c7:45:f7:b3:3a:74:3a:
d1:e7:a1:36:b9:94:cf:83:6a:26:e4:33:e2:7b:db:
3d:ed:1e:d2:2b:ea:b3:c7:c7:ad:cd:58:bf:cb:98:
bd:b5:83:47:e6:3c:ce:40:33:24:57:88:e2:d6:bb:
b6:e2:a9:99:9f:4d:f1:c8:f6:3a:af:d0:45:48:47:
89:90:86:8d:4d:55:da:cf:35:ff:3d:78:74:35:a6:
7b:43:75:62:c3:33:80:94:14:ca:8b:58:d8:6e:fa:
e6:d6:e0:b8:7c:c6:46:c4:13:39:4f:e7:4b:2c:dd:
c6:3c:f5:58:77:6e:41:e0:09:2d:4b:82:fd:d1:be:
11:da:45:b1:ce:e7:55:6d:de:bf:26:f3:52:3e:94:
dd:d2:c2:5c:7a:2f:7e:91:47:0f:80:9e:62:5b:ef:
f7:b1:86:88:88:3e:32:53:d2:fc:a8:a3:83:c9:9e:
b2:84:6b:2b:e4:c8:81:81:b4:e8:61:8e:54:ba:65:
f1:38:d1:2c:15:8b:ba:fc:ae:69:98:e1:09:fd:b3:
b4:d0:d5:8d:2f:23:ee:b5:bd:37:a7:e2:85:82:7f:
29:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A7:44:C3:A3:31:B8:AC:B3:ED:2D:7D:80:1F:69:7E:6A:C7:6D:75
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS213169.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.18.0/24
Signature Algorithm: sha256WithRSAEncryption
87:94:dd:65:33:2b:ae:d3:aa:7a:df:1f:e4:19:f7:8d:76:5f:
48:0c:c4:2f:78:ce:7d:ee:9d:53:f4:cc:9b:00:f9:51:18:6d:
db:cf:2f:9f:21:76:de:0a:6c:ae:9a:d9:40:98:f3:e7:72:73:
97:02:90:5b:4f:c9:12:2d:e3:08:87:c9:d2:5e:ac:56:a3:a3:
9d:63:ef:0e:44:85:35:19:c8:c6:04:35:be:c9:19:1d:e5:6c:
d2:ed:67:76:ea:da:8c:f1:0e:29:bc:2a:e2:5e:46:41:99:5b:
e8:07:04:ab:b4:ed:ef:20:32:ae:95:55:44:26:ea:10:27:32:
0a:b1:ee:b7:d2:d7:ca:ef:77:0d:bd:f0:80:e9:4a:eb:ad:1b:
a1:95:5f:44:db:4d:cd:e6:ee:db:e1:a7:56:c2:c2:a8:6f:9b:
89:6f:5f:5a:ab:8f:46:be:f4:dc:d6:7a:50:9c:97:16:2b:d4:
a5:9c:7a:bb:70:b5:a4:2c:76:c4:b0:03:7f:79:0e:f5:d2:e3:
45:f9:d9:6d:ff:3d:f5:c1:45:7e:43:fd:78:8a:6a:74:c1:43:
ff:91:fa:8b:a8:c2:4f:22:2a:23:d0:0d:d4:5e:9b:13:a4:de:
53:aa:16:23:3e:7b:a6:7f:8d:76:03:6a:91:2d:68:9b:3a:ce:
d7:d9:26:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 09:44:14 2026 by rpki-client