Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3139332e33352e3232362e302f32342d3234203d3e203536393632.roa
File: 3139332e33352e3232362e302f32342d3234203d3e203536393632.roa (raw, json)
Hash identifier: m2vKqOV6PJPhocfYUg+46CWALN6X7Mk2hxAjRjOTe4Q=
Subject key identifier: 2D:6B:2F:3E:19:74:E3:AE:91:87:24:8D:BA:6C:A4:DE:90:93:D5:EB
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 4E7670CED30F28EF1A80DEF3B55793238F7BF6AA
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3139332e33352e3232362e302f32342d3234203d3e203536393632.roa
Signing time: Sat 18 Apr 2026 11:47:05 +0000
ROA not before: Sat 18 Apr 2026 11:42:05 +0000
ROA not after: Sat 17 Apr 2027 11:47:05 +0000
asID: 56962
IP address blocks: 193.35.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Apr 2026 02:59:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:76:70:ce:d3:0f:28:ef:1a:80:de:f3:b5:57:93:23:8f:7b:f6:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Apr 18 11:42:05 2026 GMT
Not After : Apr 17 11:47:05 2027 GMT
Subject: CN=2D6B2F3E1974E3AE9187248DBA6CA4DE9093D5EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2f:51:55:59:67:a5:64:14:1f:02:57:f2:0b:
de:ce:09:a4:ff:f1:ed:56:23:47:f3:8a:f5:55:c6:
cd:f0:a7:39:2c:3b:7d:92:28:ab:87:12:16:45:49:
32:06:f4:c9:2f:22:bc:fc:0c:c1:30:56:29:74:bc:
49:33:55:73:1b:6f:a3:06:01:96:17:a3:90:94:ec:
99:3d:3e:15:58:08:4b:9e:d7:43:9a:db:eb:3b:31:
a8:8c:f2:ce:95:b9:a0:70:b8:cf:7c:2b:1e:2c:d4:
f2:54:8c:83:fb:80:97:4f:0d:fe:16:42:3a:b8:e3:
ab:e1:41:0c:9a:92:42:84:0f:d5:e2:4a:b9:b6:46:
41:cf:ea:73:7d:a2:9a:49:4b:4b:e0:1f:1f:13:2c:
c2:ad:86:fa:cd:ef:ca:13:9e:44:03:17:33:2c:16:
5f:07:b9:d0:bc:2a:77:91:c4:7f:20:89:d1:6b:c2:
62:50:00:1d:81:b3:e9:82:3d:a4:32:02:e3:36:20:
f5:a3:00:b8:4c:ab:81:47:11:dd:4e:57:c0:7e:98:
d3:b5:8d:2b:e4:1e:3b:28:a8:80:fc:a2:69:65:6e:
d8:48:ff:5e:f3:99:14:36:97:ea:ee:6e:e8:c3:3c:
2f:d0:8f:0a:65:e7:b9:c8:e6:1b:c8:d2:b5:d9:e0:
93:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:6B:2F:3E:19:74:E3:AE:91:87:24:8D:BA:6C:A4:DE:90:93:D5:EB
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3139332e33352e3232362e302f32342d3234203d3e203536393632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.226.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:43:bf:eb:15:18:1c:96:36:e9:f3:5d:68:4e:45:e7:16:ec:
f5:e0:7f:15:6f:f8:b8:de:d4:4f:ca:d8:fa:f8:87:ec:c9:22:
94:58:af:dd:32:16:bc:3d:67:33:8d:95:65:20:0d:cb:1a:88:
cf:01:00:94:d4:49:a6:8b:73:89:b8:34:75:90:29:bf:94:d3:
83:0b:36:e6:9a:f4:c1:fd:a1:38:23:8e:e9:d4:ef:30:7f:68:
8b:d4:6a:ea:c7:84:e2:da:e3:67:a1:f9:be:45:4a:a3:b5:71:
67:88:d2:5d:fd:0e:29:68:97:da:db:2f:74:8e:6e:7d:fb:2c:
5c:9a:07:49:83:e0:b9:88:27:60:f5:10:7b:85:0d:1b:72:7f:
49:5a:13:f3:77:14:8d:f1:c3:7f:f7:12:b2:a6:20:ca:ab:0a:
71:69:29:86:14:22:4a:15:65:94:1b:f3:59:c7:ef:a3:27:27:
42:d0:5a:2e:1a:d9:10:86:8f:43:2c:80:8d:b8:9d:82:f7:f3:
18:12:7c:85:a1:77:67:7d:f0:f4:0e:40:b3:ad:be:89:b0:5e:
80:e0:c4:75:f0:0b:0c:f7:fa:d8:46:46:03:28:c8:2e:99:4b:
35:20:c4:9a:84:23:05:84:db:24:3e:0c:20:aa:60:b2:68:01:
c5:62:af:1c
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUTnZwztMPKO8agN7ztVeTI4979qowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoY2VmY2U0NDliZWE4ZGVhZWRiMTgwNGRiYTI1YzU4NGRm
NTg3M2RjNDAeFw0yNjA0MTgxMTQyMDVaFw0yNzA0MTcxMTQ3MDVaMDMxMTAvBgNV
BAMTKDJENkIyRjNFMTk3NEUzQUU5MTg3MjQ4REJBNkNBNERFOTA5M0Q1RUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTL1FVWWelZBQfAlfyC97OCaT/
8e1WI0fzivVVxs3wpzksO32SKKuHEhZFSTIG9MkvIrz8DMEwVil0vEkzVXMbb6MG
AZYXo5CU7Jk9PhVYCEue10Oa2+s7MaiM8s6VuaBwuM98Kx4s1PJUjIP7gJdPDf4W
Qjq446vhQQyakkKED9XiSrm2RkHP6nN9oppJS0vgHx8TLMKthvrN78oTnkQDFzMs
Fl8HudC8KneRxH8gidFrwmJQAB2Bs+mCPaQyAuM2IPWjALhMq4FHEd1OV8B+mNO1
jSvkHjsoqID8omllbthI/17zmRQ2l+rubujDPC/Qjwpl57nI5hvI0rXZ4JMZAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQULWsvPhl0466RhySNumyk3pCT1eswHwYDVR0j
BBgwFoAUzvzkSb6o3q7bGATbolxYTfWHPcQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZDFiMzVmOGItNmY0OC00YmFkLWIxODUtNWMxZGFhOGFj
ZGE5LzAvQ0VGQ0U0NDlCRUE4REVBRURCMTgwNERCQTI1QzU4NERGNTg3M0RDNC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3p2emtTYjZvM3E3YkdBVGJvbHhZVGZX
SFBjUS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZDFiMzVmOGIt
NmY0OC00YmFkLWIxODUtNWMxZGFhOGFjZGE5LzAvMzEzOTMzMmUzMzM1MmUzMjMy
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTM2MzkzNjMyLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
wSPiMA0GCSqGSIb3DQEBCwUAA4IBAQA/Q7/rFRgcljbp811oTkXnFuz14H8Vb/i4
3tRPytj6+IfsySKUWK/dMha8PWczjZVlIA3LGojPAQCU1Emmi3OJuDR1kCm/lNOD
CzbmmvTB/aE4I47p1O8wf2iL1Grqx4Ti2uNnofm+RUqjtXFniNJd/Q4paJfa2y90
jm59+yxcmgdJg+C5iCdg9RB7hQ0bcn9JWhPzdxSN8cN/9xKypiDKqwpxaSmGFCJK
FWWUG/NZx++jJydC0FouGtkQho9DLICNuJ2C9/MYEnyFoXdnffD0DkCzrb6JsF6A
4MR18AsM9/rYRkYDKMgumUs1IMSahCMFhNskPgwgqmCyaAHFYq8c
-----END CERTIFICATE-----
Generated at Fri Apr 24 13:24:18 2026 by rpki-client