Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137382e302f32342d3234203d3e2032393134.roa
File: 3138352e3136322e3137382e302f32342d3234203d3e2032393134.roa (raw, json)
Hash identifier: a1awRu5W+j/OpVvgzZ2y3kpbavrV8XlF/TCtgRFx9ok=
Subject key identifier: E7:79:01:63:C4:9F:53:C4:98:2E:FE:70:07:B8:22:C2:90:C7:45:A9
Certificate issuer: /CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Certificate serial: 1FC90209FE1205F2BAAAA71D119E8D102D9C51AB
Authority key identifier: E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137382e302f32342d3234203d3e2032393134.roa
Signing time: Fri 24 Apr 2026 12:47:05 +0000
ROA not before: Fri 24 Apr 2026 12:42:05 +0000
ROA not after: Fri 23 Apr 2027 12:47:05 +0000
asID: 2914
IP address blocks: 185.162.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 00:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:c9:02:09:fe:12:05:f2:ba:aa:a7:1d:11:9e:8d:10:2d:9c:51:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Validity
Not Before: Apr 24 12:42:05 2026 GMT
Not After : Apr 23 12:47:05 2027 GMT
Subject: CN=E7790163C49F53C4982EFE7007B822C290C745A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e8:87:73:5a:84:1a:aa:79:2d:67:4d:12:95:
81:09:40:e0:07:ef:f1:93:87:82:46:ab:ce:51:77:
3d:bd:3a:af:5e:39:03:a5:da:54:01:47:eb:08:38:
e5:a6:b6:4c:8b:5a:b8:d5:2e:73:cd:2e:76:66:04:
f9:49:30:58:04:d9:6f:c5:61:0c:33:86:62:79:c7:
f1:cb:54:f2:97:6d:30:91:f0:96:91:d5:c2:13:34:
c1:b5:97:a1:4e:8a:44:3b:14:93:36:3a:37:1d:d2:
67:7e:0b:a9:4b:52:a2:50:35:c7:c4:ad:81:9e:cf:
68:f3:af:25:fb:0a:c7:ba:1b:be:2d:4a:ed:2b:04:
4a:33:53:ca:be:2b:fa:34:6a:f1:aa:5d:16:c5:d0:
98:d4:b1:f2:e1:5c:ef:dc:12:58:77:aa:9d:58:15:
fa:61:9c:0f:3a:bc:97:5c:81:e8:b6:51:a8:a8:ae:
5f:d0:31:7e:da:1c:1a:21:eb:52:51:5e:8a:b1:df:
2e:53:6f:48:1a:a3:92:37:b7:68:80:ff:65:de:ff:
33:66:7b:f0:39:6d:5e:95:da:f9:fa:82:d9:81:da:
9b:e0:97:8c:8b:14:fb:10:30:19:12:2b:1d:8e:6c:
f9:70:8d:6b:06:de:09:c6:5d:49:24:e4:3c:3f:47:
0f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:79:01:63:C4:9F:53:C4:98:2E:FE:70:07:B8:22:C2:90:C7:45:A9
X509v3 Authority Key Identifier:
keyid:E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137382e302f32342d3234203d3e2032393134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.178.0/24
Signature Algorithm: sha256WithRSAEncryption
08:25:4b:2a:fb:df:58:b1:a8:49:96:c6:3d:3e:b4:66:6f:3c:
d9:bf:52:42:a9:f5:1b:ea:32:f0:f0:04:a1:89:c8:21:99:26:
94:0d:11:4f:8c:aa:68:c6:ae:6a:7e:4e:80:22:93:b7:24:f6:
db:c7:c3:dd:17:7d:9c:1b:a2:ea:63:4f:be:1b:49:b9:98:8d:
2f:27:29:fb:e5:76:23:5e:4c:d7:ca:58:bf:75:a3:ed:ed:48:
86:5e:cf:f8:4a:2f:2c:47:ad:c9:65:ab:33:36:94:38:62:d0:
63:3b:70:95:99:b3:f1:7f:f0:47:56:9a:29:e1:6e:f5:48:be:
6f:4d:b8:23:87:41:0a:a8:7d:f5:12:3b:0b:9f:a8:d7:77:99:
a4:13:23:55:3f:20:84:47:94:64:42:c9:e8:5b:cb:7d:af:f7:
b6:1b:cd:78:34:5f:5a:3a:75:19:02:aa:b0:cf:50:48:d0:b1:
fc:5b:02:8c:52:7b:45:99:61:f7:6f:5c:df:b3:c5:52:ad:2b:
1a:84:cf:91:6a:7d:a6:ab:27:f3:fd:fb:28:99:0f:ef:3c:0c:
7f:eb:3f:c9:e0:ae:ec:c7:9b:00:62:de:4d:48:66:eb:22:30:
45:1d:d0:38:82:fd:83:83:46:48:fe:fd:7c:59:c0:0b:d5:55:
fd:97:62:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 17:09:12 2026 by rpki-client