Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS400866.roa
File: AS400866.roa (raw, json)
Hash identifier: UZzFKHEdMLkr7BL3xekRZRZD3LUmNUWcVxdEn2ilvcs=
Subject key identifier: A6:6D:9A:C3:73:FD:0B:C9:AA:80:93:17:76:95:25:1A:08:4E:D1:6B
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 7A3E3D335E7BD487697C19DBABAC83A4D34437E2
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS400866.roa
Signing time: Sat 23 May 2026 01:47:16 +0000
ROA not before: Sat 23 May 2026 01:42:16 +0000
ROA not after: Sat 22 May 2027 01:47:16 +0000
asID: 400866
IP address blocks: 147.79.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:3e:3d:33:5e:7b:d4:87:69:7c:19:db:ab:ac:83:a4:d3:44:37:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 23 01:42:16 2026 GMT
Not After : May 22 01:47:16 2027 GMT
Subject: CN=A66D9AC373FD0BC9AA8093177695251A084ED16B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:78:b9:4c:f6:bf:f0:03:81:ed:13:93:89:87:
bc:49:1f:9b:ff:5c:d7:03:1d:df:0a:7b:e2:2a:4b:
6e:df:da:3f:90:89:e9:56:1c:30:a0:2f:28:10:91:
73:c4:35:52:be:3d:9b:49:43:32:cf:e0:3f:2f:16:
8e:ae:48:01:cd:00:60:c6:fd:a8:a3:8f:c3:25:6a:
0a:50:fe:2d:cb:5c:34:a3:da:3a:d0:3e:83:53:ee:
66:5f:20:a4:6c:c7:05:2a:5a:42:76:c7:df:ef:8a:
40:d2:e2:6c:a6:6e:94:c9:56:d3:9a:7f:63:77:61:
d3:06:31:ab:98:95:c5:39:5b:01:4d:99:63:1e:62:
87:1f:f1:fd:90:b9:af:ec:56:2c:d0:d5:f0:ec:54:
a5:0f:11:14:f8:21:e6:39:77:b6:95:ff:1b:62:e6:
46:42:16:b9:26:0d:ab:d9:22:cc:05:ba:3b:83:84:
11:6a:e9:4f:40:36:cc:91:1b:1e:2f:43:1c:b1:b3:
7a:30:5f:ba:2e:fb:cd:7d:c0:39:e4:73:86:36:f6:
cb:36:5d:7b:c6:94:6e:af:24:5d:a7:5b:66:cd:40:
d1:4e:92:1a:35:0d:86:0c:25:33:6c:2c:4c:d5:f5:
49:12:bc:57:b2:70:24:63:9a:eb:5b:d7:4c:12:d6:
b2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6D:9A:C3:73:FD:0B:C9:AA:80:93:17:76:95:25:1A:08:4E:D1:6B
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS400866.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.23.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:1a:77:c1:c3:c6:9b:87:54:05:3d:f0:4e:14:08:1b:40:d1:
d6:8b:90:c0:b2:a1:4a:0f:96:f8:b3:b0:22:79:2a:eb:63:0c:
6c:fc:ae:4f:0c:ab:0a:50:7b:02:a8:d8:14:ee:3c:e3:ef:74:
fc:35:41:cb:fc:ff:a5:b3:c2:b7:ef:ee:33:de:45:c0:4f:ec:
c7:ff:a9:20:8e:4b:f2:ef:58:07:55:db:bc:2c:3e:1f:c9:ae:
57:69:18:7d:62:44:68:a1:6d:21:5a:c1:f1:8b:7c:5c:62:fd:
2c:53:58:b7:c3:d9:2c:7f:8b:76:e2:bf:ef:47:1e:b6:5c:cc:
1b:95:03:f0:c0:eb:59:dc:7c:1e:47:7c:6d:6a:c1:bb:3e:f9:
7d:e9:c5:e6:78:cf:54:56:56:76:88:1a:7e:34:d1:01:ce:97:
58:4e:fb:9b:f3:dc:a8:01:03:31:a8:e1:3f:e7:61:4c:71:f0:
4c:17:98:ca:fd:7f:26:86:ff:e8:9e:f6:bf:df:73:a0:d1:48:
0c:ee:d5:c6:48:dd:27:43:05:de:2f:ed:01:c1:f5:78:5f:2b:
aa:77:9e:fc:bc:dd:c8:e5:69:9b:b6:bd:02:17:21:3d:ea:53:
83:ab:ba:a8:b2:1e:45:8e:ba:ff:0c:1a:94:4f:21:ab:f4:f3:
ae:0a:14:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 06:50:13 2026 by rpki-client