Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS14293.roa
File: AS14293.roa (raw, json)
Hash identifier: UazqLYUGafGn3h/bkVf67vozLS5n8hJivajdvaPYu3o=
Subject key identifier: A7:2D:A9:64:CC:0F:68:E7:BE:FA:3B:25:E0:E9:BD:23:0F:82:37:6F
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 6B4798AFE07CFC149993D8D5E25CD45360BD5D
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS14293.roa
Signing time: Fri 15 May 2026 12:00:07 +0000
ROA not before: Fri 15 May 2026 11:55:07 +0000
ROA not after: Fri 14 May 2027 12:00:07 +0000
asID: 14293
IP address blocks: 140.150.226.0/24 maxlen: 24
146.103.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:47:98:af:e0:7c:fc:14:99:93:d8:d5:e2:5c:d4:53:60:bd:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 15 11:55:07 2026 GMT
Not After : May 14 12:00:07 2027 GMT
Subject: CN=A72DA964CC0F68E7BEFA3B25E0E9BD230F82376F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d8:05:45:06:79:8b:da:14:b7:0c:27:8b:e7:
4e:e0:37:dd:d9:82:db:03:50:fd:f2:42:90:a2:24:
54:e3:c7:cb:1c:0d:41:c6:38:5d:77:63:6f:05:d2:
14:37:98:d0:52:51:89:7b:94:08:4f:88:d3:a5:f1:
56:96:77:ba:80:99:de:ad:0a:6c:49:09:5f:0e:b9:
a3:ba:14:58:9c:55:f7:6c:c7:c9:f2:d0:c3:f3:3e:
ec:c8:1b:23:b3:20:76:1c:ca:83:be:37:9f:00:e1:
99:3c:34:b3:f0:c1:fb:32:e2:a9:59:f7:18:07:e1:
6a:71:42:6a:1e:43:a0:7b:4a:5b:d8:2d:f3:cb:d7:
c0:9a:2d:9e:cb:6a:2f:34:04:e8:0a:86:f6:19:9c:
86:98:32:6a:84:eb:df:96:82:21:4b:7e:22:3f:75:
e2:df:97:3c:66:fd:c0:82:c3:f2:4f:5b:b7:ea:46:
aa:71:84:0a:7e:9b:11:24:29:97:15:92:13:b5:25:
f8:7e:5a:bf:10:40:9d:40:fa:c9:df:0e:73:f6:9c:
20:5c:f8:89:9f:aa:3f:7f:5e:d0:4b:ef:dc:67:b8:
aa:5e:af:8c:7a:6c:13:42:85:32:d5:5d:40:1c:20:
f6:a9:58:77:ae:10:b5:2d:33:e6:b8:15:f8:cb:23:
6f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2D:A9:64:CC:0F:68:E7:BE:FA:3B:25:E0:E9:BD:23:0F:82:37:6F
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS14293.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.226.0/24
146.103.59.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:07:65:83:0f:f1:fd:a3:d3:82:da:85:3d:45:11:9e:73:de:
22:c7:73:a9:c4:5c:63:59:80:f5:bc:ca:51:04:7e:a2:32:6e:
6c:78:d9:ec:b4:e1:7b:f7:f4:47:ad:38:77:d8:78:22:47:5d:
5f:83:72:30:1c:fc:38:f6:f5:f3:43:22:cb:0a:02:f2:f1:60:
38:06:10:70:41:f3:dc:49:fd:42:c1:6f:53:1d:d2:31:d1:41:
c2:f7:79:71:8b:49:38:ff:96:11:e7:1a:72:f6:01:f1:df:44:
c9:5e:37:81:45:47:d3:69:ac:aa:ba:65:df:b4:b0:1e:f2:f3:
a8:8e:51:7f:e7:f4:ff:87:0f:48:09:17:33:94:3a:1e:82:28:
c9:79:49:53:14:25:2d:4e:d4:4f:08:d0:34:5f:bb:22:de:ea:
03:0d:ee:c4:f8:d1:5e:3c:38:00:9a:0a:f6:56:92:52:2d:52:
f9:a2:d1:8b:6d:ad:38:59:1c:e0:ec:38:44:df:ea:7b:5c:58:
d7:04:19:09:5b:ff:99:73:9f:8c:17:87:a6:5c:36:f0:8d:34:
ec:a8:5b:cf:a3:8a:40:ec:70:a2:7f:2f:95:33:0c:c7:72:11:
3b:8b:28:95:09:04:32:53:2d:88:ae:89:42:6e:4b:1f:99:b6:
5d:9d:ba:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 01:15:25 2026 by rpki-client