Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: t3PDnJEHVW6FaDe0Qitmzh/oQpWcdmdl0IBHau/mlvg=
Subject key identifier: 48:DD:48:E1:40:27:92:DA:7F:54:37:10:C7:E5:53:B9:73:DA:F7:CF
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 4174BA1222FE6E84FB30AEE9582B5E5149E8E082
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa
Signing time: Fri 20 Feb 2026 00:04:13 +0000
ROA not before: Thu 19 Feb 2026 23:59:13 +0000
ROA not after: Fri 19 Feb 2027 00:04:13 +0000
asID: 174
IP address blocks: 96.62.32.0/24 maxlen: 24
96.62.33.0/24 maxlen: 24
96.62.34.0/24 maxlen: 24
96.62.35.0/24 maxlen: 24
96.62.36.0/24 maxlen: 24
96.62.38.0/24 maxlen: 24
96.62.39.0/24 maxlen: 24
96.62.40.0/24 maxlen: 24
96.62.41.0/24 maxlen: 24
96.62.42.0/24 maxlen: 24
96.62.43.0/24 maxlen: 24
96.62.44.0/24 maxlen: 24
96.62.46.0/24 maxlen: 24
96.62.64.0/24 maxlen: 24
96.62.65.0/24 maxlen: 24
96.62.66.0/24 maxlen: 24
96.62.67.0/24 maxlen: 24
96.62.68.0/24 maxlen: 24
96.62.70.0/24 maxlen: 24
96.62.102.0/24 maxlen: 24
96.62.104.0/24 maxlen: 24
96.62.106.0/24 maxlen: 24
96.62.107.0/24 maxlen: 24
96.62.108.0/24 maxlen: 24
96.62.109.0/24 maxlen: 24
96.62.110.0/24 maxlen: 24
96.62.112.0/24 maxlen: 24
96.62.113.0/24 maxlen: 24
96.62.116.0/24 maxlen: 24
96.62.117.0/24 maxlen: 24
96.62.118.0/24 maxlen: 24
96.62.119.0/24 maxlen: 24
96.62.120.0/24 maxlen: 24
96.62.121.0/24 maxlen: 24
96.62.122.0/24 maxlen: 24
96.62.123.0/24 maxlen: 24
96.62.124.0/24 maxlen: 24
96.62.125.0/24 maxlen: 24
96.62.126.0/24 maxlen: 24
96.62.132.0/24 maxlen: 24
96.62.133.0/24 maxlen: 24
96.62.134.0/24 maxlen: 24
96.62.136.0/24 maxlen: 24
96.62.137.0/24 maxlen: 24
96.62.138.0/24 maxlen: 24
96.62.139.0/24 maxlen: 24
96.62.141.0/24 maxlen: 24
96.62.142.0/24 maxlen: 24
96.62.143.0/24 maxlen: 24
96.62.146.0/24 maxlen: 24
96.62.147.0/24 maxlen: 24
96.62.160.0/24 maxlen: 24
96.62.161.0/24 maxlen: 24
96.62.162.0/24 maxlen: 24
96.62.163.0/24 maxlen: 24
96.62.164.0/24 maxlen: 24
96.62.165.0/24 maxlen: 24
96.62.166.0/24 maxlen: 24
96.62.167.0/24 maxlen: 24
96.62.168.0/24 maxlen: 24
96.62.169.0/24 maxlen: 24
96.62.170.0/24 maxlen: 24
96.62.171.0/24 maxlen: 24
96.62.172.0/24 maxlen: 24
96.62.173.0/24 maxlen: 24
96.62.174.0/24 maxlen: 24
96.62.175.0/24 maxlen: 24
96.62.177.0/24 maxlen: 24
96.62.178.0/24 maxlen: 24
96.62.179.0/24 maxlen: 24
96.62.188.0/24 maxlen: 24
96.62.189.0/24 maxlen: 24
96.62.196.0/24 maxlen: 24
96.62.198.0/24 maxlen: 24
96.62.199.0/24 maxlen: 24
96.62.212.0/24 maxlen: 24
96.62.213.0/24 maxlen: 24
96.62.215.0/24 maxlen: 24
96.62.225.0/24 maxlen: 24
96.62.226.0/24 maxlen: 24
96.62.230.0/24 maxlen: 24
96.62.236.0/24 maxlen: 24
96.62.237.0/24 maxlen: 24
96.62.238.0/24 maxlen: 24
96.62.239.0/24 maxlen: 24
96.62.240.0/24 maxlen: 24
96.62.241.0/24 maxlen: 24
96.62.245.0/24 maxlen: 24
96.62.246.0/24 maxlen: 24
96.62.252.0/24 maxlen: 24
140.233.160.0/22 maxlen: 22
143.14.33.0/24 maxlen: 24
143.14.66.0/24 maxlen: 24
143.14.132.0/24 maxlen: 24
143.14.146.0/24 maxlen: 24
143.14.148.0/24 maxlen: 24
143.14.153.0/24 maxlen: 24
143.14.155.0/24 maxlen: 24
143.14.195.0/24 maxlen: 24
143.14.197.0/24 maxlen: 24
143.14.245.0/24 maxlen: 24
155.117.23.0/24 maxlen: 24
155.117.86.0/24 maxlen: 24
155.117.97.0/24 maxlen: 24
155.117.102.0/24 maxlen: 24
155.117.105.0/24 maxlen: 24
155.117.106.0/24 maxlen: 24
155.117.116.0/24 maxlen: 24
155.117.218.0/24 maxlen: 24
162.141.37.0/24 maxlen: 24
162.141.38.0/24 maxlen: 24
162.141.51.0/24 maxlen: 24
162.141.54.0/24 maxlen: 24
162.141.55.0/24 maxlen: 24
162.141.103.0/24 maxlen: 24
162.141.118.0/24 maxlen: 24
162.141.128.0/24 maxlen: 24
162.141.129.0/24 maxlen: 24
162.141.153.0/24 maxlen: 24
162.141.155.0/24 maxlen: 24
162.141.164.0/24 maxlen: 24
167.148.135.0/24 maxlen: 24
167.148.138.0/24 maxlen: 24
167.148.147.0/24 maxlen: 24
167.148.148.0/24 maxlen: 24
167.148.150.0/24 maxlen: 24
167.148.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Feb 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:74:ba:12:22:fe:6e:84:fb:30:ae:e9:58:2b:5e:51:49:e8:e0:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 19 23:59:13 2026 GMT
Not After : Feb 19 00:04:13 2027 GMT
Subject: CN=48DD48E1402792DA7F543710C7E553B973DAF7CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:29:13:74:cc:58:f3:da:d7:9c:7e:85:e3:31:
22:ac:b5:ad:5a:5b:9e:49:44:8b:1d:cf:d7:6e:df:
c4:ef:66:5f:ea:2d:3f:7b:f6:8a:b8:e2:68:2c:bd:
dd:46:a1:e0:f4:12:11:26:ff:47:e7:66:3c:ff:42:
95:db:56:03:2c:91:00:15:ea:ce:5b:19:8b:08:fd:
f1:c1:b4:86:09:3f:1c:7b:29:68:be:6b:a0:e7:52:
5b:13:4e:82:1c:a6:2d:21:cf:cd:48:74:37:5d:48:
06:12:04:5c:e8:5f:7d:aa:0a:b0:25:63:06:a9:38:
80:e7:46:56:80:04:38:33:e8:0d:14:d8:b5:8e:c4:
f6:3f:c3:9f:d8:1e:09:29:25:00:82:d7:31:13:41:
22:a2:d1:2b:76:0e:de:31:37:dc:eb:dc:74:43:ad:
7f:87:7c:42:a5:e6:c5:c1:f8:f8:d0:64:c6:55:3b:
0a:63:98:e9:0f:d0:5c:db:e0:ad:8d:c4:b3:f6:96:
12:27:ee:a3:3c:1d:47:ae:fb:e3:13:e0:c7:73:b0:
e3:42:60:f3:f5:16:fa:4e:af:d0:2a:a4:0b:6b:73:
81:2b:63:44:df:00:4f:2f:0b:4b:a3:82:cd:80:6b:
56:93:72:78:90:da:da:9a:04:10:c4:6f:c6:59:aa:
ea:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DD:48:E1:40:27:92:DA:7F:54:37:10:C7:E5:53:B9:73:DA:F7:CF
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.32.0-96.62.36.255
96.62.38.0-96.62.44.255
96.62.46.0/24
96.62.64.0-96.62.68.255
96.62.70.0/24
96.62.102.0/24
96.62.104.0/24
96.62.106.0-96.62.110.255
96.62.112.0/23
96.62.116.0-96.62.126.255
96.62.132.0-96.62.134.255
96.62.136.0/22
96.62.141.0-96.62.143.255
96.62.146.0/23
96.62.160.0/20
96.62.177.0-96.62.179.255
96.62.188.0/23
96.62.196.0/24
96.62.198.0/23
96.62.212.0/23
96.62.215.0/24
96.62.225.0-96.62.226.255
96.62.230.0/24
96.62.236.0-96.62.241.255
96.62.245.0-96.62.246.255
96.62.252.0/24
140.233.160.0/22
143.14.33.0/24
143.14.66.0/24
143.14.132.0/24
143.14.146.0/24
143.14.148.0/24
143.14.153.0/24
143.14.155.0/24
143.14.195.0/24
143.14.197.0/24
143.14.245.0/24
155.117.23.0/24
155.117.86.0/24
155.117.97.0/24
155.117.102.0/24
155.117.105.0-155.117.106.255
155.117.116.0/24
155.117.218.0/24
162.141.37.0-162.141.38.255
162.141.51.0/24
162.141.54.0/23
162.141.103.0/24
162.141.118.0/24
162.141.128.0/23
162.141.153.0/24
162.141.155.0/24
162.141.164.0/24
167.148.135.0/24
167.148.138.0/24
167.148.147.0-167.148.148.255
167.148.150.0/24
167.148.153.0/24
Signature Algorithm: sha256WithRSAEncryption
07:e1:6b:2c:9e:71:e8:25:de:ee:c0:d4:d4:a8:6f:80:ad:83:
82:cc:5a:b9:49:a9:6b:a7:da:3e:14:f4:d1:8f:a3:42:01:5f:
db:6b:47:ec:c0:86:37:32:90:c5:6a:d4:a3:01:85:a0:af:c0:
1a:f9:11:78:0f:6c:e2:02:43:ed:ff:bb:ca:08:9f:d1:16:9c:
97:f9:0b:a7:0f:1f:59:d4:ba:3f:14:57:df:b4:9c:88:8d:4b:
1f:e7:3b:c3:08:a3:2a:15:ca:ef:28:19:38:9a:54:5c:e8:53:
5b:99:86:30:4f:47:26:61:e0:b5:b2:97:81:16:6c:2c:d4:14:
be:c3:95:4a:b3:5b:6d:c9:b0:66:86:f9:c1:3c:75:47:88:a4:
8a:8d:62:3d:02:d0:65:7f:99:e6:a8:90:bf:8a:ef:16:23:57:
53:83:9b:f9:d5:6a:e2:26:7f:0a:66:df:69:44:89:ba:6b:16:
6b:e0:b2:12:65:9e:1f:0e:a2:56:45:5c:df:35:51:84:66:af:
92:3a:53:db:b8:4c:8e:32:af:ac:28:b5:d6:8e:ea:b1:cd:df:
15:07:18:46:43:9f:c2:d0:71:0b:e7:ca:df:1d:b3:63:e3:fc:
00:f2:b2:1e:06:a2:38:c1:ea:72:da:fd:40:67:a8:e2:b6:8c:
62:6d:bc:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 26 09:24:54 2026 by rpki-client