Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136322e302f32342d3234203d3e20323037313538.roa
File: 39352e3136392e3136322e302f32342d3234203d3e20323037313538.roa (raw, json)
Hash identifier: ALpX25gmX0vLwxfipyphtjH/xIyrFubYt9yz3imjNH8=
Subject key identifier: E1:1D:ED:48:11:B7:D3:03:E8:31:AC:E7:7A:00:89:A6:E4:5A:08:FB
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 3A2A6FCE7746FF6E7422E427BE9C58CE0228431C
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136322e302f32342d3234203d3e20323037313538.roa
Signing time: Fri 05 Jun 2026 09:12:42 +0000
ROA not before: Fri 05 Jun 2026 09:07:42 +0000
ROA not after: Fri 04 Jun 2027 09:12:42 +0000
asID: 207158
IP address blocks: 95.169.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:2a:6f:ce:77:46:ff:6e:74:22:e4:27:be:9c:58:ce:02:28:43:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: Jun 5 09:07:42 2026 GMT
Not After : Jun 4 09:12:42 2027 GMT
Subject: CN=E11DED4811B7D303E831ACE77A0089A6E45A08FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:05:a8:db:a2:a3:8d:33:23:0a:35:41:79:cf:
37:3d:33:2d:be:ca:32:bf:0d:23:c6:7b:c4:35:f0:
61:65:54:8a:e6:7f:b1:93:30:0a:5a:b5:d9:c5:0d:
27:aa:e9:fd:e3:e7:ba:44:5f:f6:ac:da:92:4d:46:
c5:3e:b0:f6:19:99:ec:a5:1d:f7:7a:41:98:bc:f9:
80:46:19:7d:f6:d9:4e:13:f0:9f:58:86:71:9e:86:
36:af:31:65:5d:d6:0d:3a:85:d6:cf:29:62:72:c5:
84:37:a9:35:c6:e0:fc:c7:aa:0c:08:4c:e7:a4:8d:
24:7d:06:9b:13:66:93:6e:c6:5e:a2:2b:a2:2a:6c:
8a:da:42:c6:5d:89:64:23:6e:88:86:f6:ef:04:e3:
ce:fe:f1:1c:2b:50:14:17:62:e4:97:13:dd:d3:b7:
bc:ad:1e:40:bc:fb:0a:e2:5c:dd:a0:ed:19:03:60:
18:8a:ae:f3:24:7b:10:36:2a:bf:84:95:09:61:eb:
0c:9b:66:19:87:98:b4:19:fd:c8:e3:f5:eb:d9:92:
cb:52:9f:f4:ee:34:34:a5:68:f1:6f:98:b7:20:53:
91:87:fc:79:ff:24:0f:85:de:d0:3a:7e:c4:c0:72:
82:ee:1c:4d:5f:79:0b:90:8e:12:84:ce:6d:ba:8c:
e7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:1D:ED:48:11:B7:D3:03:E8:31:AC:E7:7A:00:89:A6:E4:5A:08:FB
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3136322e302f32342d3234203d3e20323037313538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.162.0/24
Signature Algorithm: sha256WithRSAEncryption
94:65:cc:45:a8:d3:77:3a:33:5a:8f:c0:08:05:da:6e:7b:85:
ce:d9:18:39:a7:52:c2:ad:6a:6c:08:c0:56:3d:73:bb:a5:bb:
01:b8:b1:47:df:50:32:3e:78:3b:99:b8:b6:01:fd:b5:2f:c1:
2a:d3:66:4a:68:28:7f:3e:fc:eb:49:a6:e2:8f:c6:42:11:76:
ef:ef:c8:1e:48:99:0a:7d:d5:f1:02:87:23:ea:ab:b7:7b:48:
f6:8b:eb:a6:58:e1:74:a9:2b:aa:ba:9d:4b:cf:10:b9:3e:45:
1b:46:bd:5b:19:d8:ae:73:06:e7:75:4a:ab:0f:3f:00:02:54:
ad:cf:cf:a3:ec:5d:a5:06:77:45:a8:f2:6f:8d:df:28:91:90:
59:79:22:80:6b:ef:ee:e0:86:10:86:26:a0:59:4a:b6:71:00:
0a:d6:6c:58:5b:af:fd:68:9c:3b:63:50:99:e8:b1:ef:6c:c3:
83:ca:60:13:36:1c:c6:c0:b3:6a:b5:c4:55:b2:46:69:35:b1:
0e:e5:d4:03:68:8e:76:85:03:14:ae:74:e3:28:b3:c0:ed:60:
ff:69:35:e0:d9:29:33:5d:9f:ee:c3:6c:1d:d2:d3:c2:64:f1:
5b:c9:c6:1f:a3:ac:6a:8c:e7:53:4a:6f:d6:5c:51:80:3b:a3:
98:f4:5b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 08:21:46 2026 by rpki-client