Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa
File: 323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa (raw, json)
Hash identifier: m4JDjuZJDmmChmmlFAMJ8Bw8b2ZsdAh0iDbkWo79PPM=
Subject key identifier: 63:02:49:E6:AF:8B:2C:FB:F3:E2:6B:22:AF:B2:66:BA:F9:F7:CA:8D
Certificate issuer: /CN=926cb33722a3493216283dc80cae0ee9d58874f2
Certificate serial: 0B5147D6985344A77BD29A08ECA239F5FC9D45D8
Authority key identifier: 92:6C:B3:37:22:A3:49:32:16:28:3D:C8:0C:AE:0E:E9:D5:88:74:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa
Signing time: Sat 20 Sep 2025 01:02:54 +0000
ROA not before: Sat 20 Sep 2025 00:57:54 +0000
ROA not after: Sat 19 Sep 2026 01:02:54 +0000
asID: 210089
IP address blocks: 2001:67c:1190::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.crl
rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Oct 2025 12:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:51:47:d6:98:53:44:a7:7b:d2:9a:08:ec:a2:39:f5:fc:9d:45:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926cb33722a3493216283dc80cae0ee9d58874f2
Validity
Not Before: Sep 20 00:57:54 2025 GMT
Not After : Sep 19 01:02:54 2026 GMT
Subject: CN=630249E6AF8B2CFBF3E26B22AFB266BAF9F7CA8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f8:16:a5:b0:c6:ec:f3:15:7b:6d:a0:3f:91:
79:35:fd:12:b5:60:e5:87:97:9f:e4:a1:03:55:6d:
00:a4:d2:8a:53:96:c6:b3:24:9b:a6:46:2c:05:c1:
9d:55:09:5a:f9:34:7b:45:7f:b0:e5:f7:c7:ce:4b:
31:88:ca:57:18:08:46:24:d5:02:8f:58:47:5e:52:
1b:62:46:2c:9e:41:18:58:f0:6f:c1:e1:5e:5b:e7:
24:03:1a:9a:e7:94:18:34:ed:3e:d3:7b:95:86:ba:
51:a5:b0:b2:1d:5b:62:3d:4d:81:c9:91:3f:87:74:
f8:1f:48:e8:d9:c2:d0:10:dc:a2:cb:2c:5f:18:e2:
d1:c1:4b:97:59:d3:cf:99:d7:af:b5:3f:72:9c:05:
e7:af:cf:af:07:b7:fc:1f:10:da:e1:ef:f9:ad:39:
19:27:6a:7c:38:b0:17:25:b6:3f:65:a5:b4:2a:6f:
fb:c5:54:f9:58:05:c4:26:23:3a:c8:3d:35:61:fa:
99:63:9e:85:3f:d5:9a:ca:fe:85:ec:ca:08:9c:57:
91:b7:72:62:d4:8d:45:c1:a0:40:05:99:6e:00:de:
41:ad:e2:af:18:b4:a1:c3:21:90:64:6b:a8:78:b0:
5d:28:b1:5a:66:64:25:68:2b:e0:c6:5d:e9:18:28:
0b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:02:49:E6:AF:8B:2C:FB:F3:E2:6B:22:AF:B2:66:BA:F9:F7:CA:8D
X509v3 Authority Key Identifier:
keyid:92:6C:B3:37:22:A3:49:32:16:28:3D:C8:0C:AE:0E:E9:D5:88:74:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1190::/48
Signature Algorithm: sha256WithRSAEncryption
66:74:d2:23:40:7d:9c:45:2a:00:4f:30:23:f2:3d:85:98:19:
c5:f2:61:d1:6f:ac:36:42:49:73:a2:23:d4:d2:53:73:01:85:
1b:c8:52:a0:89:fc:7a:7d:6a:b8:14:c6:7f:74:31:c3:55:cd:
31:28:d5:16:c2:f6:35:d5:4b:4f:18:e5:4d:c4:78:05:83:27:
f0:a4:bb:03:c5:b0:58:5d:3a:2a:6f:8c:c8:fd:72:81:16:ee:
e7:44:b3:ea:31:01:70:ad:90:2d:61:4f:cb:8a:66:40:2a:c8:
e1:26:01:0c:a8:25:fc:85:40:1a:95:67:7c:13:e7:bf:d3:ee:
3a:e9:e1:f1:93:84:76:1d:c7:ec:f6:a2:8d:c5:0c:cb:56:4f:
9a:ec:b4:78:9a:fe:12:ee:03:16:b3:ed:7e:fb:77:23:b0:cf:
64:38:d8:42:be:0e:40:69:ed:da:48:dc:33:42:78:c4:4b:05:
d7:f3:91:67:cf:b6:90:08:d6:ff:a0:05:dd:32:76:e9:67:4c:
73:54:fa:92:68:01:21:e9:d5:9d:1f:dd:2a:34:51:90:38:10:
40:ba:f6:c0:75:bc:e7:0d:4b:ee:e8:23:27:07:15:50:30:0d:
64:79:91:2e:57:f4:d4:8d:2f:81:d5:61:ce:c8:b8:7d:7e:be:
c2:ad:58:97
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUC1FH1phTRKd70poI7KI59fydRdgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTI2Y2IzMzcyMmEzNDkzMjE2MjgzZGM4MGNhZTBlZTlk
NTg4NzRmMjAeFw0yNTA5MjAwMDU3NTRaFw0yNjA5MTkwMTAyNTRaMDMxMTAvBgNV
BAMTKDYzMDI0OUU2QUY4QjJDRkJGM0UyNkIyMkFGQjI2NkJBRjlGN0NBOEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc+BalsMbs8xV7baA/kXk1/RK1
YOWHl5/koQNVbQCk0opTlsazJJumRiwFwZ1VCVr5NHtFf7Dl98fOSzGIylcYCEYk
1QKPWEdeUhtiRiyeQRhY8G/B4V5b5yQDGprnlBg07T7Te5WGulGlsLIdW2I9TYHJ
kT+HdPgfSOjZwtAQ3KLLLF8Y4tHBS5dZ08+Z16+1P3KcBeevz68Ht/wfENrh7/mt
ORknanw4sBcltj9lpbQqb/vFVPlYBcQmIzrIPTVh+pljnoU/1ZrK/oXsygicV5G3
cmLUjUXBoEAFmW4A3kGt4q8YtKHDIZBka6h4sF0osVpmZCVoK+DGXekYKAuLAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUYwJJ5q+LLPvz4msir7Jmuvn3yo0wHwYDVR0j
BBgwFoAUkmyzNyKjSTIWKD3IDK4O6dWIdPIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvY2NlMDBjZjktMDRhNS00M2QxLThiODktZWRmYTYwY2Q4
ZDRhLzIvOTI2Q0IzMzcyMkEzNDkzMjE2MjgzREM4MENBRTBFRTlENTg4NzRGMi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2tteXpOeUtqU1RJV0tEM0lESzRPNmRX
SWRQSS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2NlMDBjZjkt
MDRhNS00M2QxLThiODktZWRmYTYwY2Q4ZDRhLzIvMzIzMDMwMzEzYTM2Mzc2MzNh
MzEzMTM5MzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzAzMDM4Mzkucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAgAQZ8EZAwDQYJKoZIhvcNAQELBQADggEBAGZ00iNAfZxFKgBPMCPy
PYWYGcXyYdFvrDZCSXOiI9TSU3MBhRvIUqCJ/Hp9argUxn90McNVzTEo1RbC9jXV
S08Y5U3EeAWDJ/CkuwPFsFhdOipvjMj9coEW7udEs+oxAXCtkC1hT8uKZkAqyOEm
AQyoJfyFQBqVZ3wT57/T7jrp4fGThHYdx+z2oo3FDMtWT5rstHia/hLuAxaz7X77
dyOwz2Q42EK+DkBp7dpI3DNCeMRLBdfzkWfPtpAI1v+gBd0ydulnTHNU+pJoASHp
1Z0f3So0UZA4EEC69sB1vOcNS+7oIycHFVAwDWR5kS5X9NSNL4HVYc7IuH1+vsKt
WJc=
-----END CERTIFICATE-----
Generated at Sat Oct 18 20:41:38 2025 by rpki-client