Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137392e302f32342d3234203d3e203239303636.roa
File: 39352e3136392e3137392e302f32342d3234203d3e203239303636.roa (raw, json)
Hash identifier: EwQ2q4jws1e2fBMe+G+PV6nbLaNlQ+wz4AYZdQFN/xg=
Subject key identifier: E5:29:D5:11:9D:10:EA:B8:92:C8:FB:87:D6:D2:98:4F:2B:12:04:57
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 53C320472EA3721349773FC901B2E7A218DE3231
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137392e302f32342d3234203d3e203239303636.roa
Signing time: Thu 14 May 2026 10:47:13 +0000
ROA not before: Thu 14 May 2026 10:42:13 +0000
ROA not after: Thu 13 May 2027 10:47:13 +0000
asID: 29066
IP address blocks: 95.169.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:c3:20:47:2e:a3:72:13:49:77:3f:c9:01:b2:e7:a2:18:de:32:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 14 10:42:13 2026 GMT
Not After : May 13 10:47:13 2027 GMT
Subject: CN=E529D5119D10EAB892C8FB87D6D2984F2B120457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d9:27:cb:af:4e:1a:ca:6f:9a:20:4c:2c:88:
98:40:3d:a8:0f:c4:0e:9c:f0:6f:7b:db:a7:ba:3f:
6b:eb:d8:a3:ab:36:3f:57:e2:8f:a2:87:c1:d5:ba:
fc:75:bd:49:34:ca:71:53:70:6b:94:88:f2:84:73:
41:71:a2:d9:1a:51:f7:79:2f:ad:63:20:a5:11:af:
72:9b:5c:41:f0:a7:32:94:4d:94:ee:c9:1f:bf:d3:
15:2d:3a:22:40:91:87:e2:28:d0:dd:7f:9d:34:52:
2e:7a:33:b8:ad:c8:ae:19:fd:55:30:0f:fb:b9:6f:
7f:ab:3c:69:28:a9:95:a1:9b:83:c3:91:de:6b:4f:
62:90:3c:6f:40:e6:a4:8e:a2:65:a2:b9:73:fe:7c:
79:d6:42:46:b1:03:3c:42:49:b8:68:9d:f1:50:31:
30:66:c7:78:33:70:5a:23:08:fa:1b:6b:a6:17:cd:
cd:38:2c:77:2d:87:c3:65:b1:37:9c:09:70:5a:33:
22:de:5e:b1:41:76:de:a5:28:2a:96:d0:38:b7:83:
3b:3a:a1:e8:a7:62:e4:b3:eb:bb:47:a8:45:b8:9d:
d1:67:7f:8c:e9:5a:17:b4:1e:0d:54:b3:05:26:29:
2e:2f:e2:33:c6:9c:07:56:16:28:1d:f2:f5:5b:44:
48:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:29:D5:11:9D:10:EA:B8:92:C8:FB:87:D6:D2:98:4F:2B:12:04:57
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/39352e3136392e3137392e302f32342d3234203d3e203239303636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.179.0/24
Signature Algorithm: sha256WithRSAEncryption
34:cf:ef:cd:16:bd:9b:d3:dc:2a:03:dd:6a:bb:50:5b:ef:bd:
98:33:22:8c:6d:00:34:e8:f0:61:cb:b1:01:57:95:83:13:4a:
ec:24:9d:84:6a:c4:54:e8:fe:43:50:c2:8a:54:1e:19:6e:cc:
58:87:63:61:cf:9e:f1:df:a1:65:d9:5f:fd:a7:9c:92:fc:6e:
4c:7f:c9:df:10:26:1d:2a:21:cd:0c:20:db:a0:2e:c6:01:e0:
3c:5e:60:52:9e:6d:1c:5e:8a:0d:de:a1:1f:ce:1f:07:ae:2b:
bd:b5:ca:61:16:4c:7b:ce:23:5f:77:e9:c5:29:14:d6:22:3e:
7a:cc:05:10:a2:aa:30:0f:72:56:54:8b:75:42:99:e6:97:9f:
c2:c2:ee:e0:ec:5e:15:d8:08:72:2d:51:22:d4:4f:eb:a2:4c:
09:45:57:32:b0:a2:df:d5:6e:b2:b9:be:b4:36:02:0e:9d:fa:
9d:e2:55:82:04:99:79:ba:9e:8a:ce:23:e3:24:f8:ea:23:8d:
42:ef:97:83:7c:eb:3d:11:23:36:fa:32:fd:42:99:b2:bc:10:
84:42:5a:6d:b3:51:09:00:7f:1c:d2:5b:fd:28:05:d3:98:43:
df:6a:c1:03:eb:2f:d5:ff:7a:34:0d:6b:a3:9d:dc:c3:79:29:
dc:cf:2c:54
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUU8MgRy6jchNJdz/JAbLnohjeMjEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWU1NzY5OTYzODhlOTRiOGM3YWIyMGVmZmIyM2JkMTFi
ZWNiNDEwODAeFw0yNjA1MTQxMDQyMTNaFw0yNzA1MTMxMDQ3MTNaMDMxMTAvBgNV
BAMTKEU1MjlENTExOUQxMEVBQjg5MkM4RkI4N0Q2RDI5ODRGMkIxMjA0NTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC92SfLr04aym+aIEwsiJhAPagP
xA6c8G9726e6P2vr2KOrNj9X4o+ih8HVuvx1vUk0ynFTcGuUiPKEc0FxotkaUfd5
L61jIKURr3KbXEHwpzKUTZTuyR+/0xUtOiJAkYfiKNDdf500Ui56M7ityK4Z/VUw
D/u5b3+rPGkoqZWhm4PDkd5rT2KQPG9A5qSOomWiuXP+fHnWQkaxAzxCSbhonfFQ
MTBmx3gzcFojCPoba6YXzc04LHcth8NlsTecCXBaMyLeXrFBdt6lKCqW0Di3gzs6
oeinYuSz67tHqEW4ndFnf4zpWhe0Hg1UswUmKS4v4jPGnAdWFigd8vVbREirAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU5SnVEZ0Q6riSyPuH1tKYTysSBFcwHwYDVR0j
BBgwFoAUnldpljiOlLjHqyDv+yO9Eb7LQQgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAtMmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2
MTIzLzAvOUU1NzY5OTYzODhFOTRCOEM3QUIyMEVGRkIyM0JEMTFCRUNCNDEwOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25sZHBsamlPbExqSHF5RHYteU85RWI3
TFFRZy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjVlNjQwMzAt
MmYyOC00MmM5LWIwMDQtMzU0YmIyOGY2MTIzLzAvMzkzNTJlMzEzNjM5MmUzMTM3
MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM5MzAzNjM2LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
X6mzMA0GCSqGSIb3DQEBCwUAA4IBAQA0z+/NFr2b09wqA91qu1Bb772YMyKMbQA0
6PBhy7EBV5WDE0rsJJ2EasRU6P5DUMKKVB4ZbsxYh2Nhz57x36Fl2V/9p5yS/G5M
f8nfECYdKiHNDCDboC7GAeA8XmBSnm0cXooN3qEfzh8Hriu9tcphFkx7ziNfd+nF
KRTWIj56zAUQoqowD3JWVIt1Qpnml5/Cwu7g7F4V2AhyLVEi1E/rokwJRVcysKLf
1W6yub60NgIOnfqd4lWCBJl5up6KziPjJPjqI41C75eDfOs9ESM2+jL9QpmyvBCE
Qlpts1EJAH8c0lv9KAXTmEPfasED6y/V/3o0DWujndzDeSnczyxU
-----END CERTIFICATE-----
Generated at Thu Jun 4 03:17:06 2026 by rpki-client