Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/36322e3134312e36322e302f32342d3234203d3e203136323736.roa
File: 36322e3134312e36322e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: hef41ibvNW4BE26qfHxR+MUJjwTK06LT9IH+4XsepD8=
Subject key identifier: 80:90:96:E8:B4:1A:92:39:64:15:8A:7A:8C:82:94:E6:1B:3C:19:E8
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 0DD827C0B1D427ABE6D13DB5F74D9F2B518FE5BD
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/36322e3134312e36322e302f32342d3234203d3e203136323736.roa
Signing time: Tue 09 Jun 2026 12:47:31 +0000
ROA not before: Tue 09 Jun 2026 12:42:31 +0000
ROA not after: Tue 08 Jun 2027 12:47:31 +0000
asID: 16276
IP address blocks: 62.141.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:d8:27:c0:b1:d4:27:ab:e6:d1:3d:b5:f7:4d:9f:2b:51:8f:e5:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jun 9 12:42:31 2026 GMT
Not After : Jun 8 12:47:31 2027 GMT
Subject: CN=809096E8B41A923964158A7A8C8294E61B3C19E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:2b:32:b0:1d:a2:79:fb:1f:85:97:4e:c1:71:
e9:18:14:c9:3a:59:c0:43:bb:69:0f:63:fe:66:f8:
03:e0:dd:40:d7:59:ac:4a:da:e3:32:98:76:54:43:
50:b4:54:db:56:8d:f1:d1:15:a8:19:a3:0e:3a:73:
b8:62:69:18:9d:11:7c:81:66:33:4e:ed:03:df:7b:
58:8c:9d:4f:24:d1:ea:72:cc:4a:ef:b7:b7:c5:c0:
49:d8:ef:84:7b:0d:89:12:2c:d5:fa:ca:97:1e:13:
df:7d:d0:b6:43:a2:87:0c:da:a2:bd:36:70:eb:9f:
16:a3:05:bb:3c:83:f1:5a:45:ec:76:d8:d0:d0:05:
25:3d:be:ac:a4:a0:ff:41:32:d3:44:e7:7c:84:c7:
af:9b:07:03:40:ba:29:56:42:f9:7f:1b:35:6b:3b:
92:5d:8c:ca:9d:22:fd:07:3d:25:ae:60:1a:13:ce:
8b:63:f7:83:54:c7:95:a1:d0:2d:b6:19:82:25:7e:
fc:43:56:c5:d3:d0:57:6b:13:b2:36:12:1b:36:a2:
df:b3:e8:a8:9d:f8:da:1b:e9:e5:29:6e:86:aa:a8:
10:bb:35:85:a6:e8:10:75:a9:70:08:de:d9:c8:11:
66:8e:bd:7a:7f:31:e0:b8:a7:fa:25:64:03:0b:2f:
f3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:90:96:E8:B4:1A:92:39:64:15:8A:7A:8C:82:94:E6:1B:3C:19:E8
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/36322e3134312e36322e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.141.62.0/24
Signature Algorithm: sha256WithRSAEncryption
64:f7:01:c3:19:c3:f6:d6:b5:f8:b5:33:0b:1c:39:ae:8e:ba:
a7:85:35:dc:96:40:2f:8f:ab:58:92:0d:5f:c7:24:1c:23:ad:
9a:04:ad:e8:39:c0:91:39:0d:22:93:57:57:92:aa:5d:74:f0:
df:ed:da:d6:a6:5d:fa:0b:d5:10:bc:65:67:39:5c:40:3d:59:
07:73:5b:ea:24:b2:ed:0e:ec:c4:f7:36:f1:c9:bc:7e:4b:06:
25:26:5c:f1:4f:be:93:2e:ae:26:f5:2c:c4:e0:1c:7b:7c:56:
e1:3e:c5:7a:b4:d0:da:7b:e8:a9:f4:69:ae:51:dc:24:e9:9d:
bf:20:88:59:15:a8:96:8f:ee:e3:d5:58:20:e6:43:95:8c:67:
2e:4a:4c:4b:c4:10:44:52:c1:fa:e6:2b:c0:c7:f4:39:14:bd:
af:d5:5d:20:67:68:99:8b:ac:a3:c7:41:8e:18:2f:f6:2b:85:
27:14:e2:9a:8c:92:a7:42:7a:fc:5b:ce:95:00:dc:67:2b:11:
da:d4:4d:c6:6e:ec:9b:03:99:64:e7:68:38:25:cd:87:b4:94:
d4:f0:50:b5:b2:c1:55:9e:c5:37:27:84:63:c4:37:69:69:6b:
15:86:b6:a8:a4:2b:05:77:de:9b:78:50:7d:c0:64:73:48:9c:
64:d3:fa:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 02:06:36 2026 by rpki-client