Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/34352e3134392e3135332e302f32342d3234203d3e203133333335.roa
File: 34352e3134392e3135332e302f32342d3234203d3e203133333335.roa (raw, json)
Hash identifier: qOwOklOJIQDQ3iXtKHsvIrT4nC9DB9yL2jjN1btBvD8=
Subject key identifier: CF:14:BE:E5:BF:9B:91:3B:3D:3C:5B:B5:86:E3:A0:88:0B:E0:BD:57
Certificate issuer: /CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Certificate serial: 7CB190FA3186093903284AE2FBBE602AAB33F76D
Authority key identifier: E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/34352e3134392e3135332e302f32342d3234203d3e203133333335.roa
Signing time: Fri 24 Apr 2026 17:47:06 +0000
ROA not before: Fri 24 Apr 2026 17:42:06 +0000
ROA not after: Fri 23 Apr 2027 17:47:06 +0000
asID: 13335
IP address blocks: 45.149.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 00:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:b1:90:fa:31:86:09:39:03:28:4a:e2:fb:be:60:2a:ab:33:f7:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1f3512f51dc42bb9eb12abc0bb529668b2edee4
Validity
Not Before: Apr 24 17:42:06 2026 GMT
Not After : Apr 23 17:47:06 2027 GMT
Subject: CN=CF14BEE5BF9B913B3D3C5BB586E3A0880BE0BD57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2c:02:8d:35:71:9f:0a:10:7e:b8:62:1d:4b:
d9:be:46:6d:87:ba:0c:a8:4d:b8:e7:3e:64:c2:74:
19:97:b8:79:4a:44:e0:12:f9:7b:ef:39:01:68:f8:
cc:c4:99:46:80:4d:a2:d4:bd:6f:6f:c0:3c:bb:81:
e5:69:88:4b:74:be:9f:aa:2a:5f:84:31:89:11:83:
39:97:36:b6:90:c7:3d:31:a2:72:2c:5f:0c:98:e6:
7e:d9:96:3b:32:85:f4:03:15:18:ff:25:73:78:c4:
23:1b:3b:65:a6:fa:f4:4f:0e:b2:ee:33:e8:2f:63:
38:9b:5c:5e:01:66:f0:56:73:40:cf:91:99:bd:09:
2d:35:c7:b9:f5:78:19:9b:d2:ba:ac:69:46:fc:61:
63:fe:c6:14:d9:c7:8e:96:85:6d:71:84:6e:68:28:
ff:62:2d:66:e2:4e:43:81:fc:bb:d6:e5:af:37:be:
ce:0a:5f:03:7d:2e:eb:ce:5e:34:b5:ce:4e:fe:47:
df:3f:bc:33:ed:a8:86:a0:31:38:8d:70:a7:29:0b:
07:6d:16:ce:2b:59:d7:b7:f4:c3:51:41:0c:ba:71:
a8:47:06:6a:e0:a9:ac:75:0a:3c:25:79:45:4d:07:
f3:6c:41:8f:41:48:d9:ba:44:a5:2d:e0:7a:fb:b9:
84:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:14:BE:E5:BF:9B:91:3B:3D:3C:5B:B5:86:E3:A0:88:0B:E0:BD:57
X509v3 Authority Key Identifier:
keyid:E1:F3:51:2F:51:DC:42:BB:9E:B1:2A:BC:0B:B5:29:66:8B:2E:DE:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/E1F3512F51DC42BB9EB12ABC0BB529668B2EDEE4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fNRL1HcQruesSq8C7UpZosu3uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e3cdc648-d203-462a-bd0f-ec1b60d879a7/0/34352e3134392e3135332e302f32342d3234203d3e203133333335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.153.0/24
Signature Algorithm: sha256WithRSAEncryption
76:91:19:1f:3c:db:7f:cf:2e:8b:03:7e:f9:7b:0f:2c:2b:0f:
be:f5:94:82:88:92:ea:9b:51:eb:d7:98:96:0d:89:b5:96:e4:
34:84:3a:46:77:ac:bb:ee:2e:65:43:1d:10:c0:ba:5c:87:7c:
a5:82:15:8d:b2:67:10:d1:14:53:7b:3d:7b:a5:86:6b:57:02:
a3:2c:96:02:93:ea:86:02:50:13:1f:7b:f2:7e:46:44:94:50:
de:0e:fa:fd:d7:45:73:9d:16:f2:24:0e:40:8f:a6:32:93:2b:
36:1d:b7:1a:b1:1c:b4:0e:b5:9d:9b:f3:82:1b:1e:a3:31:13:
8f:f3:2c:c3:60:0f:3d:1d:bc:7e:6e:10:b8:3c:48:2a:1e:98:
b9:b0:27:2d:04:5d:69:ed:81:aa:07:3f:a7:0a:00:ee:45:50:
d0:0f:a2:34:59:88:00:41:16:1b:2c:a4:20:02:5b:c3:2b:6d:
bf:1b:1f:02:79:4a:c7:0d:e2:bb:ff:58:94:28:07:fd:22:c2:
63:70:8c:eb:54:9e:77:ff:4e:55:ff:54:25:ff:9d:da:04:f0:
42:9d:f7:fe:e6:14:d7:c5:46:26:9a:ac:f3:b5:9b:85:4c:59:
ea:d5:3f:7b:16:b8:48:3d:a2:26:90:61:36:1d:8d:90:ab:99:
57:ef:53:e5
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUfLGQ+jGGCTkDKEri+75gKqsz920wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZTFmMzUxMmY1MWRjNDJiYjllYjEyYWJjMGJiNTI5NjY4
YjJlZGVlNDAeFw0yNjA0MjQxNzQyMDZaFw0yNzA0MjMxNzQ3MDZaMDMxMTAvBgNV
BAMTKENGMTRCRUU1QkY5QjkxM0IzRDNDNUJCNTg2RTNBMDg4MEJFMEJENTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbLAKNNXGfChB+uGIdS9m+Rm2H
ugyoTbjnPmTCdBmXuHlKROAS+XvvOQFo+MzEmUaATaLUvW9vwDy7geVpiEt0vp+q
Kl+EMYkRgzmXNraQxz0xonIsXwyY5n7ZljsyhfQDFRj/JXN4xCMbO2Wm+vRPDrLu
M+gvYzibXF4BZvBWc0DPkZm9CS01x7n1eBmb0rqsaUb8YWP+xhTZx46WhW1xhG5o
KP9iLWbiTkOB/LvW5a83vs4KXwN9LuvOXjS1zk7+R98/vDPtqIagMTiNcKcpCwdt
Fs4rWde39MNRQQy6cahHBmrgqax1CjwleUVNB/NsQY9BSNm6RKUt4Hr7uYQhAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUzxS+5b+bkTs9PFu1huOgiAvgvVcwHwYDVR0j
BBgwFoAU4fNRL1HcQruesSq8C7UpZosu3uQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZTNjZGM2NDgtZDIwMy00NjJhLWJkMGYtZWMxYjYwZDg3
OWE3LzAvRTFGMzUxMkY1MURDNDJCQjlFQjEyQUJDMEJCNTI5NjY4QjJFREVFNC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRmTlJMMUhjUXJ1ZXNTcThDN1VwWm9z
dTN1US5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZTNjZGM2NDgt
ZDIwMy00NjJhLWJkMGYtZWMxYjYwZDg3OWE3LzAvMzQzNTJlMzEzNDM5MmUzMTM1
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
LZWZMA0GCSqGSIb3DQEBCwUAA4IBAQB2kRkfPNt/zy6LA375ew8sKw++9ZSCiJLq
m1Hr15iWDYm1luQ0hDpGd6y77i5lQx0QwLpch3ylghWNsmcQ0RRTez17pYZrVwKj
LJYCk+qGAlATH3vyfkZElFDeDvr910VznRbyJA5Aj6Yykys2HbcasRy0DrWdm/OC
Gx6jMROP8yzDYA89Hbx+bhC4PEgqHpi5sCctBF1p7YGqBz+nCgDuRVDQD6I0WYgA
QRYbLKQgAlvDK22/Gx8CeUrHDeK7/1iUKAf9IsJjcIzrVJ53/05V/1Ql/53aBPBC
nff+5hTXxUYmmqzztZuFTFnq1T97FrhIPaImkGE2HY2Qq5lX71Pl
-----END CERTIFICATE-----
Generated at Mon Apr 27 17:09:22 2026 by rpki-client