Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS274389.roa
File: AS274389.roa (raw, json)
Hash identifier: OtUUiL9Xk3PHkNEYFtxgyUD2jieeDv42Qwpmo0/TNbs=
Subject key identifier: 9B:0B:EF:16:8A:EF:22:08:DB:F1:33:11:F9:8D:06:50:2C:3F:B3:42
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 473877D9BC91A97F847AB516B6098A8E40BEA020
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS274389.roa
Signing time: Mon 18 May 2026 07:01:06 +0000
ROA not before: Mon 18 May 2026 06:56:06 +0000
ROA not after: Mon 17 May 2027 07:01:06 +0000
asID: 274389
IP address blocks: 167.148.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:38:77:d9:bc:91:a9:7f:84:7a:b5:16:b6:09:8a:8e:40:be:a0:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 18 06:56:06 2026 GMT
Not After : May 17 07:01:06 2027 GMT
Subject: CN=9B0BEF168AEF2208DBF13311F98D06502C3FB342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b4:e2:ba:6c:4e:9f:45:2f:04:ff:d1:0d:4c:
7d:a3:9d:57:4d:ca:8b:ed:12:4f:d0:7e:51:ef:df:
18:82:91:46:c2:2f:9f:a7:94:a2:27:47:01:34:d1:
92:5d:06:8f:3c:8b:94:01:62:b5:76:44:6b:95:6e:
ab:67:69:e4:d9:85:42:27:0d:61:25:16:00:53:45:
40:e2:87:0e:71:a6:2b:c8:b1:3f:cc:18:bf:91:85:
ac:49:39:15:2b:fd:39:7a:41:1d:16:97:bd:fd:48:
67:16:f5:c9:54:99:d9:1f:5f:43:60:72:f5:01:c8:
94:c7:d4:7b:1b:76:76:5b:e9:94:c1:07:ba:25:9e:
66:18:27:2f:a1:77:7e:60:3f:97:63:bc:2e:2f:48:
b6:3a:9e:a2:bf:8a:f5:a5:27:3d:0a:78:c3:96:31:
f5:ea:a2:7c:e6:43:fe:a3:67:d9:9d:a9:58:54:0e:
eb:84:91:09:fd:91:af:b2:e3:c2:7c:a6:04:97:37:
05:72:61:57:97:a0:71:13:e6:1e:b5:de:eb:f9:77:
84:7d:cb:09:5f:c5:06:7a:d2:88:32:a0:70:58:06:
98:16:e6:dd:e3:b1:22:c9:96:f1:eb:d6:71:8a:98:
a4:0d:60:39:bf:b4:32:2f:a0:bc:f5:90:9b:ed:b8:
9f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:0B:EF:16:8A:EF:22:08:DB:F1:33:11:F9:8D:06:50:2C:3F:B3:42
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS274389.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.148.82.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b6:00:06:d4:4f:3f:85:e9:9c:99:f2:16:6e:30:b8:85:64:
56:03:75:ee:f4:62:db:67:87:1e:00:77:34:2a:cc:e7:58:2d:
f4:2f:43:b0:ce:82:d7:46:65:4d:01:3d:e0:f5:62:a4:c1:d0:
ec:9e:59:c2:24:63:fd:cb:02:e5:e6:cb:bd:ba:ea:ac:bb:3f:
8e:eb:f6:88:6b:35:77:2a:7e:d7:6f:31:37:56:ea:f0:56:9c:
7c:79:3e:cc:89:92:0f:a1:14:56:e9:96:d3:3f:20:d6:ce:f1:
ca:c3:e8:c7:8c:14:c5:0d:ff:b4:d7:ef:59:b8:ff:38:dc:93:
c7:59:fe:90:40:16:d8:aa:07:45:11:a6:dd:f6:84:ae:b2:79:
42:f0:dd:bb:ef:0a:74:4e:83:83:f0:e4:7b:0b:fd:6a:8a:af:
d4:0a:14:50:2d:20:20:96:3e:c8:60:78:19:05:e1:00:cd:e3:
5b:ac:2e:82:88:57:c9:6a:df:42:67:f9:1a:10:11:a6:63:e4:
a2:f5:0b:73:3f:aa:33:e1:cf:64:da:c1:33:94:89:7f:46:0d:
72:1f:2c:15:30:9a:25:24:51:97:1b:78:c2:c0:ec:a7:4d:52:
03:17:fd:76:78:58:ae:ca:57:9a:76:12:1e:de:f8:46:60:96:
85:a8:e7:25
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIURzh32byRqX+EerUWtgmKjkC+oCAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNjA1MTgwNjU2MDZaFw0yNzA1MTcwNzAxMDZaMDMxMTAvBgNV
BAMTKDlCMEJFRjE2OEFFRjIyMDhEQkYxMzMxMUY5OEQwNjUwMkMzRkIzNDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEtOK6bE6fRS8E/9ENTH2jnVdN
yovtEk/QflHv3xiCkUbCL5+nlKInRwE00ZJdBo88i5QBYrV2RGuVbqtnaeTZhUIn
DWElFgBTRUDihw5xpivIsT/MGL+RhaxJORUr/Tl6QR0Wl739SGcW9clUmdkfX0Ng
cvUByJTH1HsbdnZb6ZTBB7olnmYYJy+hd35gP5djvC4vSLY6nqK/ivWlJz0KeMOW
MfXqonzmQ/6jZ9mdqVhUDuuEkQn9ka+y48J8pgSXNwVyYVeXoHET5h613uv5d4R9
ywlfxQZ60ogyoHBYBpgW5t3jsSLJlvHr1nGKmKQNYDm/tDIvoLz1kJvtuJ/nAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUmwvvForvIgjb8TMR+Y0GUCw/s0IwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjc0Mzg5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAp5RS
MA0GCSqGSIb3DQEBCwUAA4IBAQABtgAG1E8/hemcmfIWbjC4hWRWA3Xu9GLbZ4ce
AHc0KsznWC30L0OwzoLXRmVNAT3g9WKkwdDsnlnCJGP9ywLl5su9uuqsuz+O6/aI
azV3Kn7XbzE3VurwVpx8eT7MiZIPoRRW6ZbTPyDWzvHKw+jHjBTFDf+01+9ZuP84
3JPHWf6QQBbYqgdFEabd9oSusnlC8N277wp0ToOD8OR7C/1qiq/UChRQLSAglj7I
YHgZBeEAzeNbrC6CiFfJat9CZ/kaEBGmY+Si9QtzP6oz4c9k2sEzlIl/Rg1yHywV
MJolJFGXG3jCwOynTVIDF/12eFiuyleadhIe3vhGYJaFqOcl
-----END CERTIFICATE-----
Generated at Thu Jun 4 01:15:17 2026 by rpki-client