Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/36322e3134312e35362e302f32322d3234203d3e203331313033.roa
File: 36322e3134312e35362e302f32322d3234203d3e203331313033.roa (raw, json)
Hash identifier: faaVf6mVk2um8LN+9bbDcQgIJQoBSE4EijIF5Fv0rVk=
Subject key identifier: E7:D7:3A:46:21:0F:C5:35:57:01:01:96:30:1A:3A:74:8D:9B:AB:3A
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 2625A6D00638B479BEA0F9F4345DF2B8656DD0F8
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/36322e3134312e35362e302f32322d3234203d3e203331313033.roa
Signing time: Mon 20 Apr 2026 13:47:05 +0000
ROA not before: Mon 20 Apr 2026 13:42:05 +0000
ROA not after: Mon 19 Apr 2027 13:47:05 +0000
asID: 31103
IP address blocks: 62.141.56.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 10:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:25:a6:d0:06:38:b4:79:be:a0:f9:f4:34:5d:f2:b8:65:6d:d0:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Apr 20 13:42:05 2026 GMT
Not After : Apr 19 13:47:05 2027 GMT
Subject: CN=E7D73A46210FC53557010196301A3A748D9BAB3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d7:8a:aa:f0:6d:e4:97:c6:2b:a6:6d:da:15:
5d:94:9c:b1:84:d2:3d:fc:2c:06:8f:6d:22:38:36:
1a:d0:af:7a:f4:db:ab:02:e3:7a:d8:bc:2b:cf:9d:
c4:97:1a:84:99:67:3c:70:3e:cc:58:ba:c4:29:82:
f2:95:cd:17:2f:ef:1a:9d:33:23:10:03:85:1a:bd:
c2:b2:a3:ac:89:ad:aa:92:5e:be:81:6b:0a:e5:3c:
4e:34:6a:35:ff:81:fa:da:ab:dc:f3:8d:b3:e3:b9:
89:29:c8:23:0b:12:3d:55:04:9c:25:17:a4:a1:49:
4a:1a:18:2d:c1:6a:0c:fc:4f:45:ee:6f:1a:28:30:
3c:ad:12:ce:df:d6:ad:63:87:49:54:83:e7:26:ff:
5b:29:e2:43:4c:bc:31:10:c7:c6:09:ac:3e:fb:f3:
6d:03:8a:56:b0:0b:ff:52:fa:99:e2:6d:e9:8e:97:
7a:d0:37:bb:43:68:08:7a:01:cf:78:1a:8d:51:3c:
3e:26:9e:9c:62:a7:85:ae:ed:c3:31:84:83:95:dd:
52:8c:e0:63:e4:fb:0f:c5:ba:5c:bf:be:09:55:3b:
dc:e7:9d:c5:aa:94:f7:82:13:a5:34:34:00:72:22:
49:1b:d6:2f:ab:19:09:b8:cd:d8:5c:f5:68:2b:c7:
1a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D7:3A:46:21:0F:C5:35:57:01:01:96:30:1A:3A:74:8D:9B:AB:3A
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/36322e3134312e35362e302f32322d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.141.56.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:b7:08:2c:39:f7:15:8e:27:5e:a8:53:ba:66:6f:59:d6:a0:
c5:ec:e2:c6:d8:6a:e5:f2:f5:29:98:8b:5d:53:51:69:a6:14:
b5:d3:79:68:b1:c9:92:50:e6:37:f2:43:39:93:4e:0c:70:04:
9b:cd:ec:c8:32:c9:49:c9:bc:18:b3:13:08:13:23:40:35:da:
f4:6c:e8:13:fb:70:99:7a:d6:7f:b0:2e:81:b7:c6:1c:cf:6a:
de:57:98:ad:6f:83:a6:f8:cf:64:3f:c7:8e:2b:06:48:d3:9f:
a7:ba:59:f9:71:3b:dd:75:35:15:08:1f:7c:5a:a0:74:4a:1a:
20:d7:83:82:82:2e:73:53:68:bb:49:5d:ff:bd:5b:77:aa:47:
4c:58:8c:e9:20:16:4f:f7:37:34:fb:b8:1c:9d:87:d0:08:34:
91:7b:8f:10:a8:8e:cc:c9:ea:b5:70:5a:fa:a6:8d:e0:ca:32:
1a:b4:ce:a0:7b:89:e7:21:05:d3:d8:3c:20:84:2b:fb:b2:dd:
fa:b4:b6:29:3c:40:31:c2:07:85:fb:76:c9:94:3d:09:c1:d8:
08:f7:db:11:6e:21:5c:3f:df:aa:5d:53:a7:e9:ad:58:c4:88:
94:19:87:22:80:92:21:e0:fb:ef:48:03:6c:22:97:5f:1a:56:
f0:28:9a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 03:53:18 2026 by rpki-client