Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137312e302f32342d3234203d3e203239303636.roa
File: 39352e3136392e3137312e302f32342d3234203d3e203239303636.roa (raw, json)
Hash identifier: MJctjavTHFbRl9lwNbqRfTkffSb/ZJBw+Y2qFJ3S3a4=
Subject key identifier: 85:AD:7F:1F:45:6E:B8:F2:58:25:37:77:6D:21:43:D9:F9:D9:9F:E3
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 08168439D1A91343ADF967CB300FEBE7C1D6D588
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137312e302f32342d3234203d3e203239303636.roa
Signing time: Thu 14 May 2026 10:47:13 +0000
ROA not before: Thu 14 May 2026 10:42:13 +0000
ROA not after: Thu 13 May 2027 10:47:13 +0000
asID: 29066
IP address blocks: 95.169.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:16:84:39:d1:a9:13:43:ad:f9:67:cb:30:0f:eb:e7:c1:d6:d5:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 14 10:42:13 2026 GMT
Not After : May 13 10:47:13 2027 GMT
Subject: CN=85AD7F1F456EB8F2582537776D2143D9F9D99FE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:54:03:62:ed:a9:c4:22:2a:1b:77:89:dc:6f:
7f:1d:62:fa:e0:81:1b:f6:42:2a:a4:4b:58:12:f5:
bb:fc:d6:90:11:5b:ed:ff:b2:7f:00:bc:3a:e9:f9:
24:e5:19:9c:50:5c:0e:2f:97:e9:67:2e:e2:69:c6:
ad:ad:9c:4f:cd:74:ee:49:a0:85:62:d9:9b:22:66:
0a:f7:9d:f9:5c:bc:13:3f:87:31:36:28:08:b8:fb:
66:00:1b:14:6d:4f:b1:90:65:13:50:a1:c1:36:ca:
b0:0b:a7:8a:be:bb:ad:75:d4:c8:d3:a9:47:32:af:
1f:c7:14:50:92:b7:ce:f0:6c:5a:62:cd:db:77:bc:
a8:01:b1:9c:89:9d:81:65:db:9f:ea:c9:ea:1f:78:
e9:0f:a2:f1:4a:20:97:4b:cb:17:c7:47:08:4d:fa:
64:a7:eb:05:10:ae:7d:7f:70:77:25:01:30:97:63:
e5:23:5f:9d:6f:c7:5b:14:3f:27:7b:f2:8b:e7:17:
6d:ad:c4:02:d7:32:68:1e:ca:e6:7b:d7:7e:42:63:
c0:48:d6:2c:1e:98:2e:b9:52:4e:77:ef:66:81:79:
f1:8e:24:72:34:1c:b2:a3:aa:a5:d3:09:46:3b:5a:
0c:34:b7:60:03:6d:a2:49:bf:38:87:c2:19:fc:e3:
88:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:AD:7F:1F:45:6E:B8:F2:58:25:37:77:6D:21:43:D9:F9:D9:9F:E3
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137312e302f32342d3234203d3e203239303636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.171.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:42:41:6f:1f:43:5d:3d:71:70:80:24:3f:39:47:3a:67:74:
e5:e7:a9:66:bc:88:5b:7e:81:bd:a0:31:b7:a9:74:19:48:d7:
f2:fb:15:17:d8:6a:04:8a:41:e2:42:0b:59:dc:3f:83:ce:00:
82:d9:a0:a2:8d:17:b4:a5:ba:96:96:d6:e1:c5:e0:c3:d6:4d:
4c:21:7d:e9:51:33:59:0b:dc:78:dd:67:57:75:95:9e:f5:83:
be:3c:c1:72:97:4f:3f:56:8b:19:88:ee:ce:0c:4d:17:e2:f5:
56:bc:46:d1:3d:32:6b:42:b7:3c:81:9b:08:5a:51:19:db:8c:
e1:41:6a:17:49:61:3d:f3:22:0e:be:d5:dc:4c:82:b5:41:c0:
af:8e:7f:0f:a1:b7:bb:05:c7:00:2f:3b:7c:9f:9b:51:30:ad:
1e:be:6a:f6:0f:92:1f:0b:cc:48:cb:46:87:00:ef:76:40:38:
dc:a4:67:4f:71:d6:a9:2b:62:40:d3:69:c0:20:2d:f4:62:9f:
f9:a7:41:9f:18:82:2d:25:e6:af:a1:c4:8f:c2:bf:4c:5e:e5:
a1:9a:f1:3d:d2:82:f4:5a:9b:b3:d1:34:79:15:22:10:5a:98:
01:67:b0:39:b7:b7:79:c0:15:24:b5:e8:88:79:68:3b:dd:e4:
62:78:75:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 03:16:43 2026 by rpki-client