Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38362e302f32342d3234203d3e203633343733.roa
File: 3137362e3132362e38362e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: 8xVvQPJ+oM73qL4XwGN8hM+WchC+Ymd6LWkcLonjh0U=
Subject key identifier: E1:56:E0:55:0E:B5:28:24:D0:D7:61:04:87:7F:63:9E:44:A1:D2:A3
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 30763801937D179DAC8E00DB519B6D85C7E82C28
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38362e302f32342d3234203d3e203633343733.roa
Signing time: Sun 24 May 2026 09:24:28 +0000
ROA not before: Sun 24 May 2026 09:19:28 +0000
ROA not after: Sun 23 May 2027 09:24:28 +0000
asID: 63473
IP address blocks: 176.126.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:52:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:76:38:01:93:7d:17:9d:ac:8e:00:db:51:9b:6d:85:c7:e8:2c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 24 09:19:28 2026 GMT
Not After : May 23 09:24:28 2027 GMT
Subject: CN=E156E0550EB52824D0D76104877F639E44A1D2A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:51:79:c5:f9:f7:5d:3d:49:cf:8a:de:b6:2d:
ee:36:fc:b7:48:a2:73:66:0b:33:26:73:a2:60:6c:
c9:78:31:0a:fc:0e:c1:48:df:f0:11:b0:70:9b:92:
e7:dc:cd:4b:53:ea:2d:04:ca:35:90:b4:1b:51:e8:
07:e0:a5:ec:c6:5c:8c:5e:59:e4:8f:50:c3:5e:41:
9b:db:00:a2:42:41:8a:05:8f:d4:56:d8:7a:e4:29:
2b:aa:02:04:aa:1a:50:db:f2:b3:7f:45:bd:41:e0:
33:55:ea:68:4f:80:12:bc:1b:03:96:68:c9:8d:e0:
4e:6c:7e:0b:9c:17:f9:95:d9:8a:20:a1:2a:33:7d:
0a:ac:c5:24:20:bc:78:76:1a:7f:4e:81:2b:46:69:
67:23:e1:9b:31:91:f2:84:af:ab:15:67:2a:e7:08:
b6:ed:9a:3b:10:74:47:63:78:11:35:34:23:d9:15:
3d:2f:b4:94:80:1c:33:5e:9e:5e:73:60:b9:bc:4f:
73:76:1c:ae:ae:1e:fa:00:f6:f9:20:5e:e4:4b:47:
9b:63:50:8b:40:62:3e:e1:93:38:46:51:df:a6:cf:
11:c8:75:70:9b:a9:f3:df:6b:d2:7e:06:0c:02:c8:
a5:be:0b:6f:4f:77:77:af:36:34:94:62:da:5d:bd:
63:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:56:E0:55:0E:B5:28:24:D0:D7:61:04:87:7F:63:9E:44:A1:D2:A3
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38362e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.86.0/24
Signature Algorithm: sha256WithRSAEncryption
48:a4:4a:33:b6:1c:5b:68:0d:48:bd:a5:a8:67:58:21:4f:f5:
bc:d1:5f:fc:55:3d:90:a2:0c:e8:7e:63:76:ca:2b:a4:9e:5f:
7a:80:61:4a:4d:21:00:2e:c9:dc:c9:40:df:64:62:fd:c0:9d:
bb:05:97:13:9f:66:91:26:98:af:ee:5c:bd:94:d7:cd:80:4f:
ab:71:cd:bc:aa:79:92:8c:78:35:9c:aa:53:dd:7f:bd:16:95:
bc:eb:03:4e:1d:16:cb:d3:7e:73:59:fc:ae:7f:d8:7e:30:a5:
56:39:3b:f9:6b:a4:05:0c:39:3f:6c:70:48:38:00:a5:90:82:
ed:4f:9c:ea:0d:97:d2:42:1b:e8:45:70:39:92:99:5a:50:7a:
29:39:32:ff:a0:3e:b5:26:15:38:9c:68:a9:2d:54:78:1b:af:
b7:a3:f0:0d:ad:04:71:f0:53:9b:7d:78:ad:bc:30:b7:cb:e9:
52:e6:0f:a1:dc:72:13:5a:69:c8:93:1e:8f:47:72:dc:b9:dc:
c4:f4:1b:2c:6b:af:6c:af:ad:f8:53:a9:93:a2:3d:22:1a:d3:
35:2b:a5:ba:6d:eb:ec:74:ac:45:a4:17:13:48:09:dd:d8:78:
18:15:70:7b:08:2a:a0:28:96:8d:7c:67:4f:57:1c:5e:09:9a:
33:b4:54:41
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUMHY4AZN9F52sjgDbUZtthcfoLCgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNjA1MjQwOTE5MjhaFw0yNzA1MjMwOTI0MjhaMDMxMTAvBgNV
BAMTKEUxNTZFMDU1MEVCNTI4MjREMEQ3NjEwNDg3N0Y2MzlFNDRBMUQyQTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVUXnF+fddPUnPit62Le42/LdI
onNmCzMmc6JgbMl4MQr8DsFI3/ARsHCbkufczUtT6i0EyjWQtBtR6AfgpezGXIxe
WeSPUMNeQZvbAKJCQYoFj9RW2HrkKSuqAgSqGlDb8rN/Rb1B4DNV6mhPgBK8GwOW
aMmN4E5sfgucF/mV2YogoSozfQqsxSQgvHh2Gn9OgStGaWcj4ZsxkfKEr6sVZyrn
CLbtmjsQdEdjeBE1NCPZFT0vtJSAHDNenl5zYLm8T3N2HK6uHvoA9vkgXuRLR5tj
UItAYj7hkzhGUd+mzxHIdXCbqfPfa9J+BgwCyKW+C29Pd3evNjSUYtpdvWNjAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU4VbgVQ61KCTQ12EEh39jnkSh0qMwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNzM2MmUzMTMyMzYyZTM4
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzNzMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
sH5WMA0GCSqGSIb3DQEBCwUAA4IBAQBIpEozthxbaA1IvaWoZ1ghT/W80V/8VT2Q
ogzofmN2yiuknl96gGFKTSEALsncyUDfZGL9wJ27BZcTn2aRJpiv7ly9lNfNgE+r
cc28qnmSjHg1nKpT3X+9FpW86wNOHRbL035zWfyuf9h+MKVWOTv5a6QFDDk/bHBI
OAClkILtT5zqDZfSQhvoRXA5kplaUHopOTL/oD61JhU4nGipLVR4G6+3o/ANrQRx
8FObfXitvDC3y+lS5g+h3HITWmnIkx6PR3LcudzE9Bssa69sr634U6mToj0iGtM1
K6W6bevsdKxFpBcTSAnd2HgYFXB7CCqgKJaNfGdPVxxeCZoztFRB
-----END CERTIFICATE-----
Generated at Thu Jun 4 05:18:25 2026 by rpki-client