Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137392e302f32342d3234203d3e203132383734.roa
File: 3138352e3136322e3137392e302f32342d3234203d3e203132383734.roa (raw, json)
Hash identifier: Dq65MGgP/jvbx/fRolu32u44f/9NuGsxFlxiMiQcK+Q=
Subject key identifier: 97:A3:BE:BE:10:C0:53:16:11:F9:42:1F:D0:C8:79:AA:71:38:16:7A
Certificate issuer: /CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Certificate serial: 38D10A184D20DF87F24F77AB28057482B7DFC9C1
Authority key identifier: E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137392e302f32342d3234203d3e203132383734.roa
Signing time: Fri 24 Apr 2026 12:47:05 +0000
ROA not before: Fri 24 Apr 2026 12:42:05 +0000
ROA not after: Fri 23 Apr 2027 12:47:05 +0000
asID: 12874
IP address blocks: 185.162.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 00:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:d1:0a:18:4d:20:df:87:f2:4f:77:ab:28:05:74:82:b7:df:c9:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Validity
Not Before: Apr 24 12:42:05 2026 GMT
Not After : Apr 23 12:47:05 2027 GMT
Subject: CN=97A3BEBE10C0531611F9421FD0C879AA7138167A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a9:ee:67:43:6f:7a:9a:d9:af:b7:c5:d7:ab:
9c:ab:37:5e:c4:6a:b0:4f:82:44:a5:87:1e:b8:34:
d4:70:7a:b7:60:28:79:e9:7d:85:aa:8c:fb:05:a5:
cd:87:a6:f8:3c:f2:69:d8:cd:69:e1:5a:43:9b:f5:
a6:be:a9:8f:df:41:08:2e:28:9e:1f:94:b9:da:60:
91:fd:d5:99:95:00:5c:39:34:df:aa:8a:a4:d1:61:
f1:95:82:a0:3f:a9:ac:fd:35:17:ac:f8:d5:4e:cb:
b6:2e:46:d4:bd:e1:b4:4a:97:ed:d9:a5:ce:3a:22:
2b:41:0d:1a:9b:7f:b5:f3:90:2f:2e:87:54:e3:c1:
3b:34:7d:32:1f:d1:be:3d:9e:a2:4f:86:3e:44:b4:
9a:bf:a3:d6:84:d1:ce:3e:e0:da:da:04:db:bb:c8:
15:56:98:58:e8:03:94:a9:31:7e:7a:71:12:f8:82:
9c:1e:b0:13:a9:19:48:7b:fb:16:8e:bc:3d:03:61:
b5:8c:c2:f4:51:51:96:4f:d7:2d:f2:01:31:f2:75:
06:ce:f3:77:a6:8e:ee:b0:75:4f:13:43:75:dc:c8:
a8:1f:0b:8d:d1:2d:09:32:c9:54:1c:26:44:86:8c:
a8:56:bf:83:a3:9a:d3:bb:a4:71:6f:4d:43:5d:66:
36:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A3:BE:BE:10:C0:53:16:11:F9:42:1F:D0:C8:79:AA:71:38:16:7A
X509v3 Authority Key Identifier:
keyid:E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/3138352e3136322e3137392e302f32342d3234203d3e203132383734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.179.0/24
Signature Algorithm: sha256WithRSAEncryption
84:3e:96:5d:90:dd:ca:d6:5e:f0:49:d1:da:6b:e6:85:35:ad:
6f:57:b8:82:53:b1:ef:19:1e:ac:09:0f:cf:da:48:4d:c9:a0:
93:18:2d:7a:b5:6c:a3:24:ef:ce:14:b4:18:62:eb:2e:f6:af:
75:92:a3:fd:e7:fd:4d:8d:e2:bd:4e:30:68:72:9c:03:b8:f4:
b4:8d:c0:28:18:1c:09:33:55:85:65:98:f3:cf:54:50:f2:77:
1c:0b:b7:4c:d7:9f:f4:b1:a7:1c:dd:4e:2d:3c:78:64:00:03:
04:7b:f3:02:de:04:27:74:48:5e:30:f8:61:3b:2e:a9:14:aa:
db:c8:69:0c:74:0c:8a:84:ed:4a:6d:4f:81:27:df:2d:6c:6b:
20:cd:81:3e:41:bd:e7:47:14:54:5d:df:e4:cc:6c:de:d4:1f:
4b:47:4d:b2:bc:95:8c:b3:55:83:53:29:b5:6d:a0:bb:b7:73:
f5:6b:49:bc:97:eb:9a:ad:a6:1a:8e:15:8b:ae:fc:c0:09:99:
be:84:4d:31:a1:1d:69:98:88:97:b1:1a:f2:b4:79:bf:67:35:
87:11:d2:63:fd:7d:df:09:fe:be:ca:13:27:b9:2a:fb:85:42:
f1:fb:f7:52:c1:f9:3f:36:c5:d5:c6:e9:08:31:da:06:e2:a5:
bb:a0:f6:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 14:42:20 2026 by rpki-client