Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3235302e302f32342d3234203d3e2039333034.roa
File: 3134372e3132352e3235302e302f32342d3234203d3e2039333034.roa (raw, json)
Hash identifier: H/9QtfrkQSG3gt6/DasbpsQUhmz62cTI5EbXM59gSbU=
Subject key identifier: E5:35:CF:2D:DF:E7:EB:78:98:5D:C2:38:3C:C2:0B:52:57:81:59:EC
Certificate issuer: /CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea
Certificate serial: 6A9834A23D7A5E6B196FE3A12B2ECA71268430A4
Authority key identifier: 6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3235302e302f32342d3234203d3e2039333034.roa
Signing time: Tue 21 Apr 2026 09:09:10 +0000
ROA not before: Tue 21 Apr 2026 09:04:10 +0000
ROA not after: Tue 20 Apr 2027 09:09:10 +0000
asID: 9304
IP address blocks: 147.125.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl
rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:31:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:98:34:a2:3d:7a:5e:6b:19:6f:e3:a1:2b:2e:ca:71:26:84:30:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea
Validity
Not Before: Apr 21 09:04:10 2026 GMT
Not After : Apr 20 09:09:10 2027 GMT
Subject: CN=E535CF2DDFE7EB78985DC2383CC20B52578159EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:95:97:17:28:13:e4:e2:df:e0:12:cb:bf:39:
a1:2d:95:b1:6d:2c:d1:12:58:c6:c1:d0:f1:85:f7:
41:cf:d0:f7:e6:92:fb:72:5a:57:d0:6a:c3:17:6c:
0c:6f:93:12:71:75:9b:49:e9:b3:21:d6:f1:43:48:
59:36:33:9a:d5:47:cd:cb:1c:01:bc:c7:e7:a4:6d:
05:59:4b:9b:ba:b0:62:86:79:2b:78:94:09:a6:4d:
c7:dc:08:c6:ec:f4:2c:ce:9a:39:a7:13:be:2a:38:
28:86:2b:53:ac:93:4e:25:93:5f:66:92:e7:e1:e4:
91:ef:e3:c7:0e:d4:94:05:4c:82:ba:b3:07:2e:79:
81:4d:56:5e:7e:97:52:1d:06:eb:d0:b9:b6:b2:2c:
19:a2:c4:b4:bc:bc:08:94:34:8d:60:a2:8e:65:68:
22:46:0f:0e:ec:25:b9:38:51:59:c6:80:24:68:f1:
79:48:ee:0a:8b:6a:67:83:e3:34:34:2a:9a:1c:9f:
b4:60:bd:ff:16:7a:9f:ca:d9:9c:8d:43:fa:53:80:
db:1c:b1:f1:9b:19:82:9b:86:99:70:96:3d:94:ec:
a6:54:be:eb:1a:01:57:96:11:7b:af:6d:a6:fb:70:
56:56:d7:0d:7f:aa:1e:dc:41:48:07:d1:e8:56:49:
1c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:35:CF:2D:DF:E7:EB:78:98:5D:C2:38:3C:C2:0B:52:57:81:59:EC
X509v3 Authority Key Identifier:
keyid:6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3235302e302f32342d3234203d3e2039333034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.125.250.0/24
Signature Algorithm: sha256WithRSAEncryption
83:af:ee:4a:b1:1d:05:2d:60:f4:9e:9f:30:c1:ad:ea:91:ec:
77:b9:8f:9f:86:3a:21:43:e8:fd:d1:e5:71:79:c5:76:df:ac:
df:d8:06:36:60:39:49:bd:8b:01:ee:2c:86:d1:3c:32:2c:96:
47:2a:12:3d:3d:eb:8a:b2:58:33:f6:dc:c0:32:9d:c8:7e:82:
a3:60:be:80:91:74:1a:91:5a:b7:5a:0a:14:5e:fc:5e:24:bd:
de:54:25:ff:df:83:b7:c9:3c:33:96:b0:5b:00:6e:c7:ca:b9:
da:e4:d5:6e:29:c5:5f:97:61:bb:18:e5:e2:d9:6d:9a:4e:f5:
9b:15:27:82:3f:a6:3c:35:20:ea:92:c2:28:17:b3:18:75:54:
70:d2:6f:c0:15:09:56:28:17:43:c2:6e:de:8c:a5:ef:9f:27:
18:80:d1:39:3d:dc:cf:f0:f4:81:82:48:bb:76:d9:14:c5:fa:
04:ee:90:c5:6f:16:01:a1:88:88:30:ec:9c:57:70:34:04:e3:
cd:f7:8e:a1:31:4c:b1:52:94:05:01:7e:da:40:ce:99:1e:73:
07:68:f0:f0:dc:d9:9a:5d:b7:e2:a9:88:6d:db:4c:e9:cc:0c:
c2:b2:f6:9d:ae:cd:c0:7c:e2:43:9c:b2:2f:4f:f7:0f:0e:4c:
69:69:52:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:40:43 2026 by rpki-client