Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e20323034373635.roa
File: 3138352e3231322e3131332e302f32342d3234203d3e20323034373635.roa (raw, json)
Hash identifier: jzdw70rY3Cvb0hkp0ZVzOD2XaQWIqZDI2bu4xbZxcTA=
Subject key identifier: EA:E5:6D:E0:5D:A9:96:52:73:03:57:87:94:87:67:6F:ED:8F:28:62
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 05D88E4B102E034F58793093959C4361192D401C
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e20323034373635.roa
Signing time: Fri 15 May 2026 11:57:32 +0000
ROA not before: Fri 15 May 2026 11:52:32 +0000
ROA not after: Fri 14 May 2027 11:57:32 +0000
asID: 204765
IP address blocks: 185.212.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 00:47:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:d8:8e:4b:10:2e:03:4f:58:79:30:93:95:9c:43:61:19:2d:40:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: May 15 11:52:32 2026 GMT
Not After : May 14 11:57:32 2027 GMT
Subject: CN=EAE56DE05DA99652730357879487676FED8F2862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d4:56:6b:f8:b4:d8:2e:5b:de:7b:e7:8b:a6:
0d:c6:63:17:fb:38:83:38:b1:4a:f0:68:47:06:94:
6d:1e:89:77:c9:17:23:01:b8:57:65:26:4f:2e:47:
d5:96:ad:94:24:05:df:db:9c:91:0e:90:e7:f9:6c:
17:49:63:87:81:6d:29:83:e2:ef:ab:9f:24:5b:67:
4b:2d:dd:4a:61:d1:17:e3:e3:d8:45:9a:7b:17:7c:
03:61:ef:d4:83:cb:ca:4e:27:e2:ba:65:b3:67:a1:
fd:a1:cf:d6:78:93:df:a2:14:70:58:ff:ee:41:17:
ac:2f:6b:22:c9:79:d7:c1:ef:cf:2c:30:c2:0c:6f:
1d:fd:e3:07:8d:c0:f9:58:8d:ca:38:fd:fa:63:d0:
3e:60:76:8a:80:b4:5f:e7:47:19:0c:15:5a:b5:60:
1b:81:cf:99:8d:25:b0:7b:a9:ac:17:0a:89:61:70:
a3:c0:81:87:85:61:8b:36:0f:7b:ff:92:45:ba:01:
21:be:6c:6f:14:ce:b2:dd:e4:a8:32:bb:ac:8e:72:
b9:21:ba:46:2e:d4:7a:16:aa:a6:45:f6:fe:44:bd:
7e:07:e1:c7:68:a3:03:94:b3:30:ad:86:60:3e:8a:
ef:d6:db:8c:9d:e5:bc:aa:b5:c2:21:fe:d4:96:37:
6d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E5:6D:E0:5D:A9:96:52:73:03:57:87:94:87:67:6F:ED:8F:28:62
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e20323034373635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.113.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:17:bf:86:e6:d9:a8:54:c6:97:cf:ab:bf:ea:1e:69:76:62:
fb:2f:e5:b1:06:ec:5c:81:04:da:d3:c4:45:b9:f9:4c:40:53:
8a:5a:ac:3f:32:f0:d7:c8:cb:54:f2:46:22:14:e3:69:e9:81:
8b:79:92:29:90:24:2f:73:c0:01:b1:05:bc:1f:a6:0e:a7:81:
d9:54:0f:c0:f9:96:cb:9c:5a:0d:3d:66:77:3c:48:67:22:1f:
8a:18:97:8f:ab:98:3b:b6:42:c0:d1:48:11:4e:94:b6:4f:83:
c4:b4:24:26:de:de:cc:07:d2:9c:18:cf:fd:bc:7d:f9:a0:2c:
79:e6:03:d5:6c:49:5d:80:3d:45:a2:3a:d6:60:5d:4f:04:91:
23:39:5b:6d:ed:2d:f8:f5:ed:14:03:8a:39:b9:f2:9f:97:21:
80:9b:58:ab:86:dc:da:f0:f7:eb:9c:aa:e1:08:b3:5d:41:be:
cf:68:1e:16:17:01:ee:30:dc:f9:62:7f:6c:29:20:a7:6e:72:
b6:87:90:53:4e:e1:a4:a1:75:44:5e:fb:98:1a:b7:a8:af:34:
72:81:c4:9b:ca:11:7f:ae:d5:c2:ed:b3:f3:64:53:6f:ae:c2:
77:00:22:a6:0a:60:15:8e:be:2c:ed:69:8a:c8:c1:c2:09:44:
00:5a:44:79
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUBdiOSxAuA09YeTCTlZxDYRktQBwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoY2VmY2U0NDliZWE4ZGVhZWRiMTgwNGRiYTI1YzU4NGRm
NTg3M2RjNDAeFw0yNjA1MTUxMTUyMzJaFw0yNzA1MTQxMTU3MzJaMDMxMTAvBgNV
BAMTKEVBRTU2REUwNURBOTk2NTI3MzAzNTc4Nzk0ODc2NzZGRUQ4RjI4NjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs1FZr+LTYLlvee+eLpg3GYxf7
OIM4sUrwaEcGlG0eiXfJFyMBuFdlJk8uR9WWrZQkBd/bnJEOkOf5bBdJY4eBbSmD
4u+rnyRbZ0st3Uph0Rfj49hFmnsXfANh79SDy8pOJ+K6ZbNnof2hz9Z4k9+iFHBY
/+5BF6wvayLJedfB788sMMIMbx394weNwPlYjco4/fpj0D5gdoqAtF/nRxkMFVq1
YBuBz5mNJbB7qawXColhcKPAgYeFYYs2D3v/kkW6ASG+bG8UzrLd5Kgyu6yOcrkh
ukYu1HoWqqZF9v5EvX4H4cdoowOUszCthmA+iu/W24yd5byqtcIh/tSWN23fAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQU6uVt4F2pllJzA1eHlIdnb+2PKGIwHwYDVR0j
BBgwFoAUzvzkSb6o3q7bGATbolxYTfWHPcQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZDFiMzVmOGItNmY0OC00YmFkLWIxODUtNWMxZGFhOGFj
ZGE5LzAvQ0VGQ0U0NDlCRUE4REVBRURCMTgwNERCQTI1QzU4NERGNTg3M0RDNC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3p2emtTYjZvM3E3YkdBVGJvbHhZVGZX
SFBjUS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZDFiMzVmOGIt
NmY0OC00YmFkLWIxODUtNWMxZGFhOGFjZGE5LzAvMzEzODM1MmUzMjMxMzIyZTMx
MzEzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzNDM3MzYzNS5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALnUcTANBgkqhkiG9w0BAQsFAAOCAQEAvBe/hubZqFTGl8+rv+oeaXZi+y/l
sQbsXIEE2tPERbn5TEBTilqsPzLw18jLVPJGIhTjaemBi3mSKZAkL3PAAbEFvB+m
DqeB2VQPwPmWy5xaDT1mdzxIZyIfihiXj6uYO7ZCwNFIEU6Utk+DxLQkJt7ezAfS
nBjP/bx9+aAseeYD1WxJXYA9RaI61mBdTwSRIzlbbe0t+PXtFAOKObnyn5chgJtY
q4bc2vD365yq4QizXUG+z2geFhcB7jDc+WJ/bCkgp25ytoeQU07hpKF1RF77mBq3
qK80coHEm8oRf67Vwu2z82RTb67CdwAipgpgFY6+LO1pisjBwglEAFpEeQ==
-----END CERTIFICATE-----
Generated at Sat May 16 08:22:52 2026 by rpki-client