Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38342e302f32342d3234203d3e203633343733.roa
File: 3137362e3132362e38342e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: 8U1vN8mHjxBBoxuXvxDmvzRkBOhzpX2+8r9rdhOewJg=
Subject key identifier: EE:78:86:BD:69:AB:95:ED:FA:D7:B1:13:3A:65:62:2B:69:E4:17:0D
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1EA4C72EE8F27517021A913D0D46E980E60F0469
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38342e302f32342d3234203d3e203633343733.roa
Signing time: Sun 24 May 2026 09:24:29 +0000
ROA not before: Sun 24 May 2026 09:19:29 +0000
ROA not after: Sun 23 May 2027 09:24:29 +0000
asID: 63473
IP address blocks: 176.126.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:52:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:a4:c7:2e:e8:f2:75:17:02:1a:91:3d:0d:46:e9:80:e6:0f:04:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 24 09:19:29 2026 GMT
Not After : May 23 09:24:29 2027 GMT
Subject: CN=EE7886BD69AB95EDFAD7B1133A65622B69E4170D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:63:35:af:d1:a5:ab:3f:6d:6f:9c:00:6c:31:
c7:d3:75:66:a9:54:ea:73:ab:f3:9a:c2:5b:63:2c:
2b:5e:12:ee:89:91:f6:4e:76:14:47:6e:e3:32:06:
b2:2a:1a:a4:89:23:99:2b:70:63:80:4e:32:6b:1a:
50:22:ea:1a:f2:56:f2:70:87:5a:7d:1a:64:50:df:
2d:ec:7a:e1:ac:0c:c3:ce:39:da:c8:27:45:bd:c9:
ed:42:4b:57:82:02:c9:17:bb:ef:1c:28:11:df:1e:
f2:34:12:a0:29:66:8f:e8:98:de:b1:25:04:81:04:
1a:09:c0:6b:15:bc:af:d1:64:f9:76:9d:27:40:97:
b6:cb:c3:d9:bf:2e:87:65:a7:0a:64:cb:2e:85:80:
c9:b5:1f:b2:71:7b:7a:3a:47:37:77:06:d4:a3:ab:
dc:46:88:29:1f:36:60:7b:51:08:5d:9b:15:6e:cf:
43:ee:a3:60:36:00:f8:0d:8b:b3:0f:e1:64:c6:db:
64:9e:0d:98:b1:95:7c:61:0f:e3:23:29:e2:f3:29:
b3:f8:f2:15:b7:62:6d:5e:c8:a8:ea:ac:75:da:26:
8a:66:39:85:af:76:a4:ac:38:4b:26:3d:0b:18:31:
f8:f6:fb:e0:a8:40:b2:39:44:bb:0c:2e:4e:fc:5b:
c8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:78:86:BD:69:AB:95:ED:FA:D7:B1:13:3A:65:62:2B:69:E4:17:0D
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38342e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.84.0/24
Signature Algorithm: sha256WithRSAEncryption
05:c6:17:41:f1:e7:57:62:4b:47:ee:10:a7:7d:6a:70:a2:02:
55:52:0c:0b:85:17:6b:19:8f:a4:b3:6a:e5:c7:ab:80:dc:9c:
2e:64:60:b6:70:92:92:e2:e3:be:d4:33:5e:a1:c0:5e:19:79:
d8:87:24:64:54:e8:65:3f:2b:2a:32:0c:42:b4:4d:92:fe:d5:
2b:a3:d5:41:bf:7f:ab:0b:6a:64:b3:57:03:ad:81:e0:4a:e6:
d6:7c:bc:fd:92:f4:1b:dd:eb:12:4b:61:ef:ea:0b:e0:22:b6:
8b:30:be:29:c6:a6:c4:b9:bf:d3:5c:4d:63:cc:d4:e2:9c:0a:
44:f3:fd:e9:0e:f4:d4:2c:d7:67:f6:8f:56:03:3c:9c:43:ef:
93:cc:db:7f:78:6f:6c:84:8f:a6:2c:01:1f:08:73:dc:1c:6a:
3e:c0:31:51:90:85:50:46:19:a9:0f:ef:fc:40:91:43:fa:fe:
56:a9:24:84:df:ad:fb:3b:e2:11:a2:77:b9:02:00:e6:a4:23:
3f:71:cc:02:3f:58:95:da:73:43:5e:31:5b:33:48:52:8c:7e:
98:4a:6a:10:86:49:8f:e5:55:3b:e9:8c:66:53:2d:91:37:36:
d2:85:d5:ac:99:8d:37:57:82:c5:19:ba:30:b9:4f:91:57:7a:
11:de:7a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 06:12:27 2026 by rpki-client