Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3130342e302f32342d3234203d3e20323032303336.roa
File: 3134352e37392e3130342e302f32342d3234203d3e20323032303336.roa (raw, json)
Hash identifier: 9b7PPqi7ySELFy8nf7nX5oC4SEa7oQWaImsDpQ062BI=
Subject key identifier: 74:06:52:33:D2:83:AB:EC:FE:E1:89:03:B7:C8:14:1A:B0:44:D5:4A
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 3C50183E46B64F0793183FC1D53D35EC817EB8EE
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3130342e302f32342d3234203d3e20323032303336.roa
Signing time: Tue 19 May 2026 18:23:53 +0000
ROA not before: Tue 19 May 2026 18:18:53 +0000
ROA not after: Tue 18 May 2027 18:23:53 +0000
asID: 202036
IP address blocks: 145.79.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:52:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:50:18:3e:46:b6:4f:07:93:18:3f:c1:d5:3d:35:ec:81:7e:b8:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 19 18:18:53 2026 GMT
Not After : May 18 18:23:53 2027 GMT
Subject: CN=74065233D283ABECFEE18903B7C8141AB044D54A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:81:a3:10:69:cd:8b:c1:28:7c:bf:2f:f9:a7:
da:8b:11:e3:42:c0:8f:41:d3:5b:25:1c:1f:1b:72:
90:fb:5d:a2:db:33:5f:52:c3:2f:c0:ba:3d:6a:33:
67:3b:34:e7:3c:b5:5d:32:b4:4f:81:c3:5e:98:c7:
ca:3f:3c:42:df:93:c8:da:fb:aa:b9:12:c5:24:c5:
ca:b7:a8:0a:d9:5a:bb:f0:fc:dc:b4:66:21:8e:56:
f0:d7:0e:c4:c1:3a:51:06:1c:26:d8:5f:45:b0:90:
78:5c:89:ff:f0:6d:21:dd:7d:34:b3:46:e0:c5:84:
2c:05:39:9b:78:5b:b8:cb:1a:de:02:c2:13:df:79:
b2:b6:cd:f7:8c:72:05:9b:fd:d9:92:20:ff:a2:01:
1f:6b:e5:72:92:80:21:5f:20:90:6a:c6:2e:a7:77:
31:c0:9e:97:c4:a6:19:ce:9d:3f:15:3c:09:90:a3:
c9:09:13:a9:d7:80:99:16:fe:be:85:69:d2:da:df:
90:81:09:64:e3:a5:a7:f8:9e:45:2f:10:5f:2c:8b:
3d:e4:76:b9:71:74:1b:61:31:b6:1c:74:4f:a8:64:
ad:28:8f:a0:cf:09:80:ff:bb:92:2d:ae:8c:c2:75:
c3:d5:26:7f:d8:42:b8:37:ad:97:1b:14:d5:56:18:
61:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:06:52:33:D2:83:AB:EC:FE:E1:89:03:B7:C8:14:1A:B0:44:D5:4A
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e37392e3130342e302f32342d3234203d3e20323032303336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.79.104.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:63:3b:f6:52:06:5f:c3:f7:e6:ac:35:ad:92:bd:25:c9:67:
ec:16:5a:c5:f2:ea:1e:96:62:ac:78:5c:82:ad:ff:bb:0f:0c:
b7:2b:0c:bb:eb:11:2a:f7:05:fa:23:5b:36:dd:8f:b3:f0:ac:
14:66:68:80:3f:58:8d:3e:77:e6:28:1c:04:f5:ba:c7:fa:b4:
fe:0e:80:84:01:69:93:45:ae:e3:55:b7:81:dd:6b:4e:e2:54:
df:df:2c:bd:23:75:c8:10:56:47:bc:bb:eb:95:b3:6b:49:ce:
31:3a:cd:0c:69:b1:a6:f2:f5:90:1b:8e:4c:a3:fc:48:bf:28:
77:5a:ce:91:7b:6a:0e:67:51:24:4b:af:82:4a:2a:e0:3b:78:
b2:c2:65:66:07:7e:ad:59:ea:4f:54:e7:14:52:5e:e8:a3:3a:
6d:53:f8:4c:7b:b7:60:ae:7b:9d:d8:7f:2a:68:e8:7c:29:47:
c0:ab:ef:c8:fe:cc:71:1c:8f:64:41:a1:fe:df:f4:3e:f1:85:
7c:1b:24:9a:e3:e8:e4:a6:d8:28:43:27:5b:aa:cd:59:32:7e:
7f:40:eb:7f:72:9e:f0:d2:7b:4d:ce:c2:45:cf:cc:f1:d1:73:
c5:89:21:a3:95:d5:41:32:2b:a3:48:c7:74:0d:73:52:08:f1:
5e:e7:d1:6b
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUPFAYPka2TweTGD/B1T017IF+uO4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNjA1MTkxODE4NTNaFw0yNzA1MTgxODIzNTNaMDMxMTAvBgNV
BAMTKDc0MDY1MjMzRDI4M0FCRUNGRUUxODkwM0I3QzgxNDFBQjA0NEQ1NEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEgaMQac2LwSh8vy/5p9qLEeNC
wI9B01slHB8bcpD7XaLbM19Swy/Auj1qM2c7NOc8tV0ytE+Bw16Yx8o/PELfk8ja
+6q5EsUkxcq3qArZWrvw/Ny0ZiGOVvDXDsTBOlEGHCbYX0WwkHhcif/wbSHdfTSz
RuDFhCwFOZt4W7jLGt4CwhPfebK2zfeMcgWb/dmSIP+iAR9r5XKSgCFfIJBqxi6n
dzHAnpfEphnOnT8VPAmQo8kJE6nXgJkW/r6FadLa35CBCWTjpaf4nkUvEF8siz3k
drlxdBthMbYcdE+oZK0oj6DPCYD/u5ItrozCdcPVJn/YQrg3rZcbFNVWGGFXAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUdAZSM9KDq+z+4YkDt8gUGrBE1UowHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNDM1MmUzNzM5MmUzMTMw
MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzIzMDMzMzYucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACRT2gwDQYJKoZIhvcNAQELBQADggEBAI1jO/ZSBl/D9+asNa2SvSXJZ+wWWsXy
6h6WYqx4XIKt/7sPDLcrDLvrESr3BfojWzbdj7PwrBRmaIA/WI0+d+YoHAT1usf6
tP4OgIQBaZNFruNVt4Hda07iVN/fLL0jdcgQVke8u+uVs2tJzjE6zQxpsaby9ZAb
jkyj/Ei/KHdazpF7ag5nUSRLr4JKKuA7eLLCZWYHfq1Z6k9U5xRSXuijOm1T+Ex7
t2Cue53Yfypo6HwpR8Cr78j+zHEcj2RBof7f9D7xhXwbJJrj6OSm2ChDJ1uqzVky
fn9A639ynvDSe03OwkXPzPHRc8WJIaOV1UEyK6NIx3QNc1II8V7n0Ws=
-----END CERTIFICATE-----
Generated at Thu Jun 4 05:17:02 2026 by rpki-client