Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS401163.roa
File: AS401163.roa (raw, json)
Hash identifier: pNndT3cehRJ5zWvcrxFwxidZoAB1BzGvnTjE/sn62Vw=
Subject key identifier: FB:80:E4:D4:8D:7E:86:76:EE:33:F9:37:8D:E6:FA:40:9E:9A:54:C5
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 1AF7C6C3632371FEA697AC4BBC92E171FB00CF66
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS401163.roa
Signing time: Mon 18 Aug 2025 18:42:36 +0000
ROA not before: Mon 18 Aug 2025 18:37:36 +0000
ROA not after: Mon 17 Aug 2026 18:42:36 +0000
asID: 401163
IP address blocks: 155.117.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 23:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:f7:c6:c3:63:23:71:fe:a6:97:ac:4b:bc:92:e1:71:fb:00:cf:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Aug 18 18:37:36 2025 GMT
Not After : Aug 17 18:42:36 2026 GMT
Subject: CN=FB80E4D48D7E8676EE33F9378DE6FA409E9A54C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d2:61:1e:fe:3d:b7:f9:bd:18:73:3b:e1:55:
8d:9e:c7:11:5e:ca:72:65:0d:b4:60:2b:fd:0b:17:
85:6e:a4:1b:83:52:20:25:6f:a2:67:ee:4a:4d:f4:
9a:29:86:58:c1:1c:f2:2f:c2:52:02:96:68:b4:50:
fb:0b:4d:1f:9e:9c:25:f2:d7:ca:f5:0f:e9:0d:2e:
cc:92:67:31:2c:9b:64:21:fa:db:f6:aa:26:5d:bd:
32:3a:45:0c:0b:5b:78:74:29:1c:f0:b8:49:07:6d:
dc:11:35:54:75:b4:ec:97:21:5d:96:5d:37:04:b3:
2e:da:05:1e:0c:d1:9e:9b:83:93:95:3b:59:b3:e7:
a9:7c:82:7c:82:e8:89:89:50:32:9e:30:79:e4:6d:
08:28:86:e7:9e:42:3e:94:c3:78:37:b8:79:bf:e2:
a5:65:c5:f3:6f:fa:d3:3a:ec:15:b0:26:6b:2d:c0:
73:1d:08:2a:3f:f7:d8:6f:18:89:a1:95:75:88:4e:
95:58:23:32:5a:13:02:f7:97:e4:56:1d:9d:75:d3:
0c:11:38:92:d4:05:5c:89:43:dd:54:03:ee:2b:95:
b2:ab:c6:3e:5b:21:b6:25:59:63:b7:b2:38:a5:20:
d0:bc:cf:05:7a:9c:21:4b:22:6c:e6:23:78:b4:0b:
48:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:80:E4:D4:8D:7E:86:76:EE:33:F9:37:8D:E6:FA:40:9E:9A:54:C5
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS401163.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.117.0.0/24
Signature Algorithm: sha256WithRSAEncryption
50:e3:3e:d4:6b:71:17:59:9b:23:34:0b:c8:e2:fe:90:1c:49:
c2:a9:38:05:4c:68:8e:72:66:9d:ae:f2:65:b2:c8:f0:38:ce:
ff:75:3b:fd:8d:e9:a3:7e:78:2b:f6:3c:aa:01:00:fe:3e:bb:
74:f6:8b:29:f2:06:90:f2:fc:3f:9c:b6:6a:bf:70:dc:bf:57:
bb:56:f9:de:80:3a:12:86:4f:c3:51:1d:5b:81:25:da:59:17:
01:2a:d8:b8:4b:79:f1:90:57:dc:94:bc:ac:cd:c5:b6:7d:7f:
70:03:2a:91:05:1a:bf:8f:b2:a5:bd:6e:ba:ce:f7:9c:0c:38:
0e:b8:a7:3e:60:8f:51:58:aa:c8:72:be:0b:e8:72:2e:f1:ab:
e7:79:19:be:b9:ee:f5:24:6e:db:e8:d3:c1:c7:1a:49:52:0b:
f0:83:ea:20:c7:36:b6:a2:80:b3:56:9e:66:35:93:54:e1:62:
04:f4:b0:80:c7:b9:f2:19:3d:e6:d7:2f:95:59:ba:25:2f:2f:
65:2d:97:41:d9:18:c0:8d:e2:f7:a7:ed:52:10:2d:5d:71:d6:
18:b8:6b:d6:fd:25:f6:c5:38:99:2b:d8:66:eb:7a:a9:96:d2:
76:21:40:07:5d:a1:e0:d7:e2:40:08:bb:6d:79:a1:d9:71:72:
a8:ba:8d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 04:51:31 2025 by rpki-client