Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3130302e302f32342d3234203d3e20323032303336.roa
File: 3134352e37392e3130302e302f32342d3234203d3e20323032303336.roa (raw, json)
Hash identifier: QGJpCwYRqqujFiKYIwB6uth9dEYYFf9hOEL4nyiXX3o=
Subject key identifier: C2:08:9D:F5:68:77:31:4D:0C:65:0B:8B:C2:4B:1E:2C:96:C1:D9:51
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2E8B39ABEB0221F5F2A2D6A6FF76999B50D48766
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3130302e302f32342d3234203d3e20323032303336.roa
Signing time: Tue 19 May 2026 18:23:34 +0000
ROA not before: Tue 19 May 2026 18:18:34 +0000
ROA not after: Tue 18 May 2027 18:23:34 +0000
asID: 202036
IP address blocks: 145.79.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:52:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:8b:39:ab:eb:02:21:f5:f2:a2:d6:a6:ff:76:99:9b:50:d4:87:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 19 18:18:34 2026 GMT
Not After : May 18 18:23:34 2027 GMT
Subject: CN=C2089DF56877314D0C650B8BC24B1E2C96C1D951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:cb:0e:d9:49:d9:a9:d9:3b:18:de:82:d6:0f:
da:95:ca:d1:45:95:ac:4d:2c:bf:4a:f0:b0:bc:72:
e8:05:9a:2e:71:a5:5b:f8:8c:66:da:f0:1a:5b:62:
2f:84:b3:8b:10:9c:ce:23:fc:66:78:7f:4d:b8:d7:
2d:b9:af:6c:38:97:fc:0d:95:7b:93:c7:0f:75:b7:
11:22:4f:b7:53:dc:52:88:99:88:35:06:58:ff:4d:
ce:7e:05:e3:43:7a:14:cd:5d:56:64:30:41:c7:82:
98:22:36:77:e8:fa:ae:21:2b:19:c4:d5:41:57:6f:
4a:99:a8:ce:bb:bd:77:42:d8:6b:e7:f6:ce:dc:f8:
9a:17:71:e1:5f:30:8a:16:a8:29:94:50:2f:2f:58:
2e:aa:81:1a:2b:1f:a9:f5:f9:7f:3d:b4:8e:9d:45:
8a:19:ae:8c:ab:fd:e0:9d:c7:9f:3c:50:bf:71:f5:
83:45:b8:54:2b:b5:da:5e:d4:93:56:69:bb:6c:a8:
39:9e:28:0c:e6:0d:bc:fa:64:ce:a2:ee:9f:50:80:
2a:38:9c:dc:34:bc:31:dd:aa:79:1a:98:f4:4c:6c:
c9:72:04:69:ce:a1:75:a1:66:fb:bb:87:b6:0d:97:
77:e0:d1:89:06:70:80:a2:9b:72:52:0f:17:01:c8:
d9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:08:9D:F5:68:77:31:4D:0C:65:0B:8B:C2:4B:1E:2C:96:C1:D9:51
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3130302e302f32342d3234203d3e20323032303336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.100.0/24
Signature Algorithm: sha256WithRSAEncryption
04:56:4b:b3:47:81:43:a1:82:8b:16:40:93:21:cd:af:9c:1b:
2e:e9:ce:8a:88:55:b4:46:52:0c:fc:4b:f7:36:59:e0:60:9e:
65:fa:a6:2c:ce:81:5b:d5:81:f1:df:96:e1:01:3d:c7:d0:68:
8d:fa:2d:0b:c5:eb:d2:56:52:6e:37:24:67:a4:d9:8c:e5:73:
22:4a:95:0c:b6:3d:7d:d4:28:d7:db:33:f7:78:6a:ca:d3:23:
ef:94:7c:14:45:01:ce:c2:d2:e7:85:c3:1d:c5:b2:ef:f1:28:
87:6a:ee:9a:8e:10:9b:d8:28:5b:84:fd:00:c0:25:e9:d5:88:
ae:a6:a4:da:d7:69:23:59:62:01:c6:c3:d0:29:12:4f:45:d8:
fe:12:31:c5:41:7d:01:c1:b3:0a:87:6f:6c:68:04:96:26:8c:
fa:86:c8:83:d8:18:5a:a3:dd:ba:98:97:26:d2:e6:fc:4c:8c:
e3:aa:47:de:2d:d1:e9:db:f1:dd:25:4b:56:5c:87:d1:7c:13:
da:46:37:84:af:31:28:f6:14:02:36:d6:3d:a0:01:4b:2e:e9:
f8:c7:16:b5:73:c4:15:60:3a:59:8f:ad:ec:ff:f3:a6:20:a2:
67:5b:5f:96:49:73:5f:d6:d8:8e:cd:f1:3c:95:73:8c:b3:f8:
2c:f7:4b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 05:17:01 2026 by rpki-client