
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20313938383833.roa
File: 3133302e3139332e37352e302f32342d3234203d3e20313938383833.roa (raw, json)
Hash identifier: pS/eZrVME59ud2VP8KwPxGWBL24h8w3UQ9ffY1z+hqM=
Subject key identifier: 44:7A:2E:83:B0:1C:58:A0:DD:88:9C:81:50:4C:85:82:5D:02:0D:D3
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 20DFCF08267CFA452ADD7125DC5F4766FEE00E0E
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20313938383833.roa
Signing time: Tue 30 Jun 2026 03:48:48 +0000
ROA not before: Tue 30 Jun 2026 03:43:48 +0000
ROA not after: Tue 29 Jun 2027 03:48:48 +0000
asID: 198883
IP address blocks: 130.193.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 Jul 2026 08:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:df:cf:08:26:7c:fa:45:2a:dd:71:25:dc:5f:47:66:fe:e0:0e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Jun 30 03:43:48 2026 GMT
Not After : Jun 29 03:48:48 2027 GMT
Subject: CN=447A2E83B01C58A0DD889C81504C85825D020DD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b6:8b:b6:40:fa:b3:d1:d8:ff:b3:1a:2e:97:
54:16:dc:56:c0:1f:af:4a:f0:a2:bd:f2:2e:44:7c:
50:58:80:9f:56:6f:29:8f:f0:c1:11:af:9f:c4:36:
cd:07:06:32:fe:17:ef:d2:42:57:b9:8c:53:e9:70:
05:60:65:5a:f9:36:e3:ec:93:d5:54:8c:c6:60:35:
0a:62:b1:dd:08:4b:ec:9d:0c:3c:90:a7:ab:60:f9:
db:9b:06:93:10:a0:b0:f4:fa:59:13:24:1b:69:3c:
41:45:e0:8a:d3:99:61:c9:5d:38:4d:07:8c:36:14:
78:f4:22:4a:76:46:79:d2:51:cf:07:4a:75:ac:3a:
c3:f9:91:26:22:81:cd:7c:53:1c:a7:94:69:92:c9:
5b:6c:34:a7:ec:a5:b1:41:49:83:96:43:84:8c:eb:
d2:8e:24:7e:54:a2:bc:98:e1:ec:09:d4:38:5e:58:
06:d5:59:70:5e:50:42:fe:be:a3:89:58:7a:00:31:
a8:b6:87:b0:f4:d6:26:6a:c7:bd:a7:95:7e:c0:6f:
4b:2a:f2:ae:c7:d1:f5:39:dc:25:c0:2d:db:1e:36:
27:33:02:bc:0f:75:71:df:79:07:89:e8:24:bb:37:
90:bd:df:10:dd:a9:9c:f6:5c:d6:a8:c8:4f:b7:c6:
5a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7A:2E:83:B0:1C:58:A0:DD:88:9C:81:50:4C:85:82:5D:02:0D:D3
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20313938383833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.75.0/24
Signature Algorithm: sha256WithRSAEncryption
77:88:aa:e7:58:86:ae:ed:1b:5b:a0:b4:4f:44:7a:44:36:fb:
a6:03:62:6f:8a:02:62:40:11:af:83:07:4a:9c:86:ea:3e:8b:
20:45:39:6b:77:ce:e4:bc:b2:d5:1c:53:f8:ff:7a:df:ff:4d:
18:03:71:2a:32:bd:67:41:51:11:26:68:6b:e0:0e:49:73:5a:
ea:8d:c0:e5:25:7d:bc:ff:79:b1:52:5e:70:72:cb:a4:85:01:
37:d6:21:ab:29:f0:bf:63:92:f5:7b:e2:3e:e7:bf:94:67:cc:
b0:3f:63:3c:7c:97:9e:d7:31:b1:e4:64:4e:8c:28:bd:b8:0f:
31:77:17:18:ce:ee:0b:f4:28:16:9c:cf:bc:e1:15:b3:df:c6:
0d:e6:9b:31:a4:43:7d:f7:63:b9:b0:47:60:b7:d5:0a:1d:68:
0f:83:c5:8b:d9:09:f3:6d:1d:fb:f0:5d:94:4c:01:9a:58:36:
be:92:1a:0c:cc:61:03:fa:8c:de:3e:7d:15:27:f9:2b:b7:85:
91:98:49:9d:a3:a3:ac:f1:11:8d:56:cd:d8:a7:31:13:5f:ea:
20:22:ba:b2:ed:d1:a1:b0:01:df:70:01:7a:18:99:f5:e2:b6:
68:00:c0:34:09:7e:fa:3a:58:c7:c3:66:ee:90:a2:ed:da:9c:
a8:d2:06:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 01:18:54 2026 by rpki-client