
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215152.roa
File: AS215152.roa (raw, json)
Hash identifier: Q/jdn2m/vIWI3t6E+uSDcSlrBrSCOtvj2kAe+vI2g6A=
Subject key identifier: 54:01:1F:FC:57:82:18:54:D2:87:A1:86:51:6D:26:50:0A:6B:7E:E4
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 73E58F80839C24397F70D14E3F848E8F0A76BE72
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215152.roa
Signing time: Thu 09 Jul 2026 18:35:47 +0000
ROA not before: Thu 09 Jul 2026 18:30:47 +0000
ROA not after: Thu 08 Jul 2027 18:35:47 +0000
asID: 215152
IP address blocks: 96.62.217.0/24 maxlen: 24
146.103.29.0/24 maxlen: 24
150.241.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 14:46:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:e5:8f:80:83:9c:24:39:7f:70:d1:4e:3f:84:8e:8f:0a:76:be:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jul 9 18:30:47 2026 GMT
Not After : Jul 8 18:35:47 2027 GMT
Subject: CN=54011FFC57821854D287A186516D26500A6B7EE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c3:88:fb:37:49:2e:81:33:09:3b:bd:ab:c4:
ed:58:04:f6:02:a4:4b:df:4e:3d:18:ab:42:11:c4:
ee:e6:3d:77:91:2d:41:6d:19:3f:6f:24:c5:89:82:
9e:15:2c:b6:4d:c1:46:0c:6c:1c:d6:ab:50:ae:28:
69:12:dc:c9:3b:27:0e:ab:9a:bd:60:1c:34:da:d9:
23:0b:cd:e4:c0:e8:15:34:0d:04:cf:8a:7d:30:53:
b6:88:03:22:5c:10:c2:9a:58:85:a8:9f:98:7f:02:
3c:d1:e7:25:e4:56:5c:15:67:5d:e2:d0:44:83:ac:
25:3d:0a:da:dd:3d:24:5b:15:a5:01:d4:f1:01:47:
10:8f:65:76:f1:54:50:b5:fb:f0:08:90:98:d6:fe:
3a:23:d8:15:86:d1:51:4e:ce:6c:e0:dc:b4:6b:ce:
a6:70:f3:e2:c2:af:4e:d2:99:dc:6e:f9:1e:67:11:
ef:01:16:f9:0e:f2:ad:0d:33:f2:f1:59:06:7c:87:
6d:5a:dc:27:60:18:c8:ab:e6:96:db:57:40:55:d2:
c5:d1:97:76:e5:7f:92:4e:46:8f:72:16:42:5c:f7:
c6:d5:c7:8c:ed:5e:2c:ef:a9:89:db:62:28:8c:90:
fa:1d:59:af:d2:31:9a:79:12:2b:c9:ce:cd:a3:9d:
10:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:01:1F:FC:57:82:18:54:D2:87:A1:86:51:6D:26:50:0A:6B:7E:E4
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215152.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.217.0/24
146.103.29.0/24
150.241.254.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:35:5f:73:0c:ff:44:d1:09:72:71:d4:83:6a:0d:71:5d:17:
32:2d:d5:c0:0c:e7:44:66:94:6b:0f:52:c9:ba:eb:5a:0a:f6:
e4:df:17:03:d1:26:45:7b:04:ce:57:0e:30:d1:f5:6a:6b:48:
63:8a:a6:c4:4d:a2:3c:d2:21:b7:2e:82:67:31:07:03:d5:b5:
07:69:20:f9:03:d7:a8:e1:5d:72:c0:d6:a9:dc:ce:5e:74:b4:
71:3c:1c:76:f0:24:26:f0:59:f1:e0:bc:d9:81:2a:80:3e:81:
f8:13:32:bb:a2:ac:0e:9d:76:9c:6d:4c:50:04:0c:53:5b:f6:
52:b1:c5:9d:cc:62:f4:9b:a1:14:de:bb:2b:45:fb:56:ba:30:
0f:ae:03:f8:0b:d1:4e:4a:df:b5:f6:a0:41:3e:03:dc:3f:42:
04:03:06:d4:f2:fa:2e:f8:9a:ff:3d:80:57:1e:4e:f5:92:c5:
2d:e5:4e:34:82:c2:10:0f:f2:91:36:fb:36:dc:90:28:1e:35:
2a:d4:12:66:5a:59:d8:63:a7:6b:3c:70:fb:82:de:2f:21:ff:
ee:bc:47:02:42:75:80:3d:3b:8d:e0:a4:a2:43:47:37:1a:88:
f5:33:8a:c8:24:2e:2e:f5:4d:f6:20:07:e6:a1:66:ca:e6:1a:
bb:e8:7d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:09:32 2026 by rpki-client