Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS51847.roa
File: AS51847.roa (raw, json)
Hash identifier: i5y/eoBDKk5btkHACLSihstrypMjPU5IBYrhoo66bSs=
Subject key identifier: 61:23:9A:E4:36:7D:D1:09:49:11:7E:90:1D:D4:D7:FA:F0:F8:40:EC
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 3E43CF4370A5C5984757A93E79987D7E8661A90F
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS51847.roa
Signing time: Wed 08 Oct 2025 11:37:33 +0000
ROA not before: Wed 08 Oct 2025 11:32:33 +0000
ROA not after: Wed 07 Oct 2026 11:37:33 +0000
asID: 51847
IP address blocks: 140.233.191.0/24 maxlen: 24
147.79.59.0/24 maxlen: 24
148.135.253.0/24 maxlen: 24
150.241.210.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:43:cf:43:70:a5:c5:98:47:57:a9:3e:79:98:7d:7e:86:61:a9:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Oct 8 11:32:33 2025 GMT
Not After : Oct 7 11:37:33 2026 GMT
Subject: CN=61239AE4367DD10949117E901DD4D7FAF0F840EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:07:20:e8:ca:33:c8:5f:13:5f:16:67:a7:97:
54:ec:c3:b3:1e:b8:fb:92:67:b5:2a:68:17:0c:2f:
d2:2e:e1:41:e6:2f:ba:86:89:a0:cf:8f:ea:5f:25:
8f:6e:a3:e3:6d:ae:aa:dd:1a:36:7b:7f:4f:92:11:
e5:a6:e9:ee:af:0f:c2:94:33:70:c3:df:c6:f6:f3:
71:c1:a3:c2:76:09:b3:04:59:cf:c9:e2:36:77:47:
15:53:00:d1:34:2b:95:f7:1c:89:7a:2d:9c:52:56:
2c:b9:a2:d7:d2:4d:5f:76:a8:b2:62:08:02:64:9e:
fd:95:5f:0e:5d:02:16:9a:b7:06:04:81:c4:53:60:
ba:de:08:5e:d7:38:ed:c8:bd:83:a5:85:f7:97:0d:
d6:5c:f8:fe:61:6f:a4:5d:c2:80:e7:de:cf:eb:a4:
83:9c:a6:12:ce:bf:5f:f1:60:90:49:b6:ee:ea:01:
78:13:91:54:65:ed:1a:d9:be:75:3d:d0:16:49:3d:
2f:3a:1a:50:6a:4c:36:96:8f:0a:6e:9a:81:c1:f7:
50:ec:8f:34:90:18:a4:41:4c:f8:a7:e4:1d:2c:67:
cf:9b:24:df:cd:e9:ce:e0:5f:a9:ff:b6:52:d6:64:
d6:41:65:23:75:f8:c6:b5:2b:82:a3:7e:9f:c3:05:
b2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:23:9A:E4:36:7D:D1:09:49:11:7E:90:1D:D4:D7:FA:F0:F8:40:EC
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS51847.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.191.0/24
147.79.59.0/24
148.135.253.0/24
150.241.210.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:5c:17:be:bd:e9:41:a2:24:70:57:d4:38:21:e4:19:e1:77:
63:37:75:3a:3e:88:d9:b7:b7:a5:8e:fc:f7:d1:bf:59:43:6a:
b9:ee:76:a2:b0:a2:d5:93:a0:1c:c0:e6:3b:f2:a2:9f:99:d1:
ef:c3:49:f5:6e:e9:af:78:26:57:b3:a2:e9:c7:83:7b:10:73:
90:89:64:a3:92:8d:10:53:7b:51:5d:4b:d9:7a:87:4e:93:a2:
00:4f:99:80:cf:25:1f:73:63:59:38:92:1f:c5:cc:33:9f:53:
8a:b0:59:d0:63:a9:5d:1c:c7:86:ae:f1:0e:40:1e:c7:b0:21:
4c:6f:d8:62:5d:fc:0e:eb:05:c1:86:25:17:9b:60:f5:c5:49:
54:86:cd:f1:b9:51:02:38:20:db:19:80:7b:34:ce:09:f1:13:
95:ca:38:c2:9f:e1:94:6e:da:78:ac:51:9d:83:76:3a:76:1c:
d8:e4:7a:e5:73:78:1f:5a:3d:83:c9:1e:d9:81:b7:d7:5a:61:
8b:1d:a4:d2:a2:52:b8:c9:35:0a:cd:bc:e4:06:6d:7f:04:96:
6b:15:ab:ac:42:31:2a:38:bd:71:9f:8e:27:a4:cc:4b:bf:5a:
5b:74:9e:27:f6:a0:e2:57:c3:cf:88:9f:5f:05:ae:f7:12:fd:
92:01:88:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 16:08:31 2025 by rpki-client