Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/31332e3134302e3132382e302f31382d3138203d3e203531313637.roa
File: 31332e3134302e3132382e302f31382d3138203d3e203531313637.roa (raw, json)
Hash identifier: fcpwRLKVGVj20hj9QXfmwTCbDYaJnEpYPvMitaUqpqI=
Subject key identifier: FA:3A:57:2C:F8:EA:32:04:02:F7:57:10:3D:9B:9C:9B:A7:E8:A4:89
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 27A1226513D3722FFA59173911A65CEF05602C4D
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/31332e3134302e3132382e302f31382d3138203d3e203531313637.roa
Signing time: Sun 31 May 2026 22:11:51 +0000
ROA not before: Sun 31 May 2026 22:06:51 +0000
ROA not after: Sun 30 May 2027 22:11:51 +0000
asID: 51167
IP address blocks: 13.140.128.0/18 maxlen: 18
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:52:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:a1:22:65:13:d3:72:2f:fa:59:17:39:11:a6:5c:ef:05:60:2c:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 31 22:06:51 2026 GMT
Not After : May 30 22:11:51 2027 GMT
Subject: CN=FA3A572CF8EA320402F757103D9B9C9BA7E8A489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:11:83:46:9a:28:d7:e4:c0:dc:78:ee:20:c5:
8e:02:d9:fe:66:5d:54:d9:b3:44:78:29:c0:ea:43:
ff:e8:40:e9:55:d6:ae:bc:79:f9:91:36:28:d6:47:
f6:42:9f:b4:b2:20:f2:e4:4c:9e:ab:f9:37:be:19:
d4:91:86:cd:e4:29:f6:85:e3:54:5a:58:50:1c:c2:
11:3a:18:53:56:97:98:8e:98:13:11:35:ee:93:77:
20:90:f3:90:f7:a4:01:02:7c:6e:ee:70:66:d5:fb:
87:74:68:b1:82:47:b1:cd:08:d7:3a:50:bb:28:53:
5e:66:30:b1:6f:74:22:59:5b:71:73:35:eb:c1:b3:
a8:23:61:ea:c8:f9:c1:29:34:18:d6:70:e4:50:12:
48:9f:cf:72:1a:0b:ee:01:2f:07:11:5b:78:c9:9c:
b6:c9:80:50:b2:5e:f7:ae:47:4e:ea:a9:eb:35:31:
89:e6:ba:a6:11:f0:40:be:4e:18:55:21:f7:bd:5a:
98:e1:83:df:70:b2:72:00:f3:4b:ee:4a:fb:cb:8d:
83:2c:6a:2e:2d:9d:08:59:0f:d6:0d:4c:83:6a:47:
a0:fd:24:67:18:02:95:bc:b3:d3:ee:68:3d:dc:75:
a3:90:1b:58:6a:05:bb:15:14:0e:72:fc:21:b3:06:
b0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:3A:57:2C:F8:EA:32:04:02:F7:57:10:3D:9B:9C:9B:A7:E8:A4:89
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/31332e3134302e3132382e302f31382d3138203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
13.140.128.0/18
Signature Algorithm: sha256WithRSAEncryption
57:39:63:83:68:d9:67:50:27:6d:3f:f6:30:3a:86:69:d9:52:
f0:ca:86:4b:47:24:58:b8:c0:be:11:93:b5:fb:dc:e4:97:88:
88:4e:8e:3e:66:6f:6a:26:8c:6a:b7:cc:87:33:2a:b3:0a:a3:
66:7d:16:79:3c:08:0e:fd:45:eb:1d:36:c2:27:ce:17:8a:f9:
6a:5f:ce:41:ce:ba:19:bf:20:3b:cd:7b:8e:2e:8c:ec:9c:a7:
eb:ae:cb:b8:0f:93:dd:40:bd:32:55:db:95:e6:91:7b:4b:9d:
7d:a3:ed:2c:12:db:7c:69:89:4b:70:2a:68:9b:8f:4d:d4:d2:
08:fd:a9:94:28:b0:ee:23:3d:76:cb:9b:89:ab:cd:00:8b:1b:
a7:2c:a2:5a:f7:60:6b:77:99:03:22:8b:37:82:90:f1:0e:5e:
4e:db:b9:5f:37:8a:6c:c8:d0:d9:40:5e:d7:a5:92:3c:95:26:
2f:72:d7:86:59:97:e9:74:95:fe:ae:23:bc:b2:1d:d9:6a:aa:
59:d8:3f:07:4b:08:ed:ac:9e:5c:a7:03:49:8e:40:f3:61:18:
9c:ef:62:52:34:4c:f3:a9:57:7a:b8:e8:14:38:cb:5f:22:83:
45:ec:03:16:94:1e:b2:f1:08:7d:f0:a6:96:72:b3:b7:d7:3e:
7b:e7:3d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 05:17:02 2026 by rpki-client