Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS30058.roa
File: AS30058.roa (raw, json)
Hash identifier: /J7InQ85YvjsQIx2XuhjE/5FNuFn8m0I+oyuwIlu4wA=
Subject key identifier: 9C:76:50:9E:AD:3E:9B:18:D7:4A:68:D5:0C:F2:ED:25:2F:4D:7B:42
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 01A2B05D3DEFB9784686ED42398992C09969C7C1
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS30058.roa
Signing time: Wed 27 May 2026 05:48:14 +0000
ROA not before: Wed 27 May 2026 05:43:14 +0000
ROA not after: Wed 26 May 2027 05:48:14 +0000
asID: 30058
IP address blocks: 96.62.243.0/24 maxlen: 24
148.135.187.0/24 maxlen: 24
150.241.199.0/24 maxlen: 24
155.117.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 17:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:a2:b0:5d:3d:ef:b9:78:46:86:ed:42:39:89:92:c0:99:69:c7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 27 05:43:14 2026 GMT
Not After : May 26 05:48:14 2027 GMT
Subject: CN=9C76509EAD3E9B18D74A68D50CF2ED252F4D7B42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:91:78:c0:42:47:8d:76:39:fe:8c:24:31:39:
c3:0d:e9:4a:bb:fe:f1:ba:ec:12:1a:7e:01:ca:06:
1c:4d:3f:14:c4:71:25:58:91:43:9c:9a:35:56:14:
f0:83:2a:81:8a:09:73:49:18:7a:a7:6c:36:b0:45:
ac:d9:c6:c1:19:eb:93:4f:04:b0:40:24:36:2d:6d:
60:47:1a:a5:79:ee:e4:9a:f6:19:20:1e:e1:02:71:
1b:26:0f:7a:ac:7d:eb:ae:54:9f:33:d8:00:a9:09:
26:76:28:3e:aa:b5:b4:14:23:87:1a:8b:3b:2e:78:
a2:d1:4f:35:33:c9:c1:56:11:92:40:38:69:57:26:
45:36:d5:7d:2f:15:09:53:4d:1f:e5:f4:1e:dc:7e:
38:44:8b:92:59:33:67:ad:ef:30:a5:bb:cd:48:94:
91:1b:11:f2:32:6f:ae:bc:c4:7c:da:95:82:33:f2:
f1:08:5c:16:64:5b:12:b2:a2:6a:9e:a1:ed:6a:c4:
21:25:52:bd:ea:25:a3:38:0b:ad:8b:a3:9d:7d:df:
b1:a3:d8:34:71:fb:53:60:68:f5:38:1e:c1:ee:9f:
26:24:13:e2:a8:c8:6f:0d:90:40:67:0b:ae:16:63:
af:a2:39:d1:3d:27:dc:85:79:d2:f8:0f:1e:e4:2c:
ec:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:76:50:9E:AD:3E:9B:18:D7:4A:68:D5:0C:F2:ED:25:2F:4D:7B:42
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS30058.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.243.0/24
148.135.187.0/24
150.241.199.0/24
155.117.147.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:b3:37:0a:d2:0d:b8:f4:8a:b8:58:b2:55:d5:28:08:ce:39:
b3:02:32:fe:16:48:1c:30:d1:7c:bc:65:05:09:30:f5:76:1e:
ec:5c:ba:50:30:b2:8f:3b:da:61:f0:38:6e:3a:58:51:a1:a6:
49:c0:0b:58:65:91:5c:fa:da:8b:02:ed:c8:6b:e3:1a:05:ca:
81:cd:6c:21:47:ac:58:22:c2:97:c3:83:b5:74:6e:7b:f5:c8:
a2:22:a1:1c:66:de:41:4d:26:3e:fe:c8:dc:91:6c:db:6f:33:
ee:a6:83:d4:ef:88:ac:1f:c6:73:66:80:a3:7d:10:50:bf:10:
d5:eb:11:41:84:56:2a:d6:13:26:88:5e:f7:e3:70:57:69:c5:
fb:61:9f:6d:60:05:d8:89:f7:88:11:70:ee:55:c8:fe:90:d6:
71:70:b5:7b:56:46:98:26:c5:be:76:ea:f0:9b:5a:85:73:7e:
8d:40:22:36:3b:06:7e:9a:99:ae:ac:09:64:84:b3:df:18:0c:
cf:7e:f3:46:9f:77:8a:8a:8a:70:2b:2f:03:48:e1:3e:99:7d:
2a:41:52:13:fe:a9:fa:51:9e:2d:99:27:38:43:3e:41:6c:0d:
09:61:04:e2:03:68:f1:cd:ed:0a:19:2f:d8:ce:0a:e5:be:ef:
93:7b:8f:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 5 23:33:56 2026 by rpki-client