Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3139332e31362e302f32342d3234203d3e20383334.roa
File: 3138352e3139332e31362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: q5Dc3vR1y3mfx7+hCMFYYTS2z8WTAtq5bPjGBsTfKuU=
Subject key identifier: F0:C8:6A:9C:9C:9A:88:D3:EC:F2:93:BA:67:74:EF:CB:1A:DF:63:DB
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 6553C9F8039851EB312B5056899737A82C3C4E09
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3139332e31362e302f32342d3234203d3e20383334.roa
Signing time: Sun 14 Jun 2026 20:31:11 +0000
ROA not before: Sun 14 Jun 2026 20:26:11 +0000
ROA not after: Sun 13 Jun 2027 20:31:11 +0000
asID: 834
IP address blocks: 185.193.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:53:c9:f8:03:98:51:eb:31:2b:50:56:89:97:37:a8:2c:3c:4e:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jun 14 20:26:11 2026 GMT
Not After : Jun 13 20:31:11 2027 GMT
Subject: CN=F0C86A9C9C9A88D3ECF293BA6774EFCB1ADF63DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2f:93:19:cc:4d:c1:98:a5:d6:5d:a1:c2:ff:
a8:42:47:2c:a3:10:aa:d0:4a:98:ce:8c:12:d4:7b:
4a:45:56:a1:66:59:a5:ac:5a:4c:f5:c2:99:b5:0e:
b2:7a:7b:8d:c2:d4:10:02:b8:2b:e1:93:ae:41:07:
0e:5c:35:6f:89:56:32:ce:bc:e3:1f:94:5e:01:3c:
a9:00:82:48:a7:d3:94:1e:f9:7e:3c:76:04:b3:9b:
d3:40:c6:4b:4d:9a:ad:ca:fb:af:7b:b7:de:ea:3d:
13:dc:cf:13:33:9d:1a:bb:64:18:6e:67:e6:6a:b5:
f0:e5:d3:3f:16:c6:56:23:4a:67:03:66:3f:ac:e9:
6f:6a:72:77:3d:a6:64:58:ad:ef:bf:55:97:5a:a7:
92:91:e5:4e:75:01:aa:01:2c:3b:43:60:a5:4c:96:
e6:d6:de:90:74:da:1a:f3:f5:2e:04:e6:a6:ad:60:
74:93:d7:05:97:c6:b0:b8:ed:7e:34:55:15:4f:1c:
f4:e5:43:55:26:23:9b:b3:6d:b5:fb:db:4e:24:4b:
a2:2b:ed:4f:e9:f7:1b:59:3e:60:1e:08:0a:1d:79:
84:e4:ee:d1:21:bd:b4:2a:76:39:64:f3:d2:35:e8:
ba:52:f3:d5:ca:5a:41:bb:29:57:7f:f9:13:c6:07:
04:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:C8:6A:9C:9C:9A:88:D3:EC:F2:93:BA:67:74:EF:CB:1A:DF:63:DB
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3139332e31362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.16.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:b6:aa:e1:49:5b:df:c5:21:eb:f9:01:ff:92:17:4d:d4:7f:
61:4e:36:ce:74:07:9d:6a:88:e3:7e:c3:ed:bb:77:a5:c8:97:
38:e2:f2:ca:80:49:11:54:21:06:f6:ac:aa:77:2c:44:bc:e0:
25:3d:fe:98:4b:7e:cb:2a:24:49:95:b4:a9:6f:66:e3:16:a3:
fd:f7:f1:04:fc:c5:0c:50:4e:c9:cb:34:23:c9:14:a3:bf:d6:
09:9b:f6:d9:eb:ac:a0:90:ca:63:b1:d3:70:e4:a0:33:ee:f1:
0a:06:49:c3:78:2c:f9:59:1e:16:a5:6e:07:99:e4:c4:3a:85:
8d:e8:4d:34:44:4f:2d:93:7b:e7:d1:f4:eb:f6:91:a7:41:27:
eb:5c:d7:3c:1b:b3:74:41:c5:f7:13:46:92:2e:f8:b2:93:52:
71:b3:7d:03:00:81:f7:ae:6b:f0:c2:91:d5:49:21:9b:dd:0d:
d4:c0:66:fe:d9:f5:35:81:4a:13:fa:3c:77:98:bf:13:bc:bb:
98:05:4e:38:c5:71:56:96:42:c6:b8:ac:66:2f:df:58:ab:40:
bd:7c:e8:87:49:e3:60:13:cd:a3:44:4c:13:39:55:5c:d3:00:
2e:8c:67:ea:a4:9f:51:80:c1:7f:07:16:28:85:77:28:70:4c:
aa:2c:9b:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 09:59:58 2026 by rpki-client