Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS54252.roa
File: AS54252.roa (raw, json)
Hash identifier: E7Kaabh7LbJjA93Pi1TnJIFwyxmObg30XOhMc6E8JZs=
Subject key identifier: 78:88:19:0F:32:E6:A4:BA:63:73:93:5E:B3:B2:39:61:A7:B8:CE:4C
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 2D8332EF066203E3E1D0C9047D423018FF554BFE
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS54252.roa
Signing time: Fri 22 May 2026 06:37:56 +0000
ROA not before: Fri 22 May 2026 06:32:56 +0000
ROA not after: Fri 21 May 2027 06:37:56 +0000
asID: 54252
IP address blocks: 143.14.188.0/24 maxlen: 24
150.241.136.0/24 maxlen: 24
150.241.174.0/24 maxlen: 24
150.241.234.0/24 maxlen: 24
155.117.81.0/24 maxlen: 24
162.141.48.0/24 maxlen: 24
162.141.116.0/24 maxlen: 24
162.141.138.0/24 maxlen: 24
167.148.136.0/24 maxlen: 24
167.148.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:83:32:ef:06:62:03:e3:e1:d0:c9:04:7d:42:30:18:ff:55:4b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 22 06:32:56 2026 GMT
Not After : May 21 06:37:56 2027 GMT
Subject: CN=7888190F32E6A4BA6373935EB3B23961A7B8CE4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:2e:25:8c:5f:fc:29:f4:b3:27:68:43:a1:58:
d8:81:c2:f2:75:f3:f4:c4:80:52:9d:3f:56:bf:8e:
12:35:45:29:d6:52:aa:2f:25:26:34:ec:3e:17:34:
56:d8:74:a6:3e:c6:b9:c4:47:39:3e:26:61:61:fb:
9c:d4:cf:f1:ed:31:6a:ac:20:09:60:11:15:20:5f:
25:0c:21:55:29:76:a6:b1:da:30:b3:3c:b5:99:69:
28:36:3c:21:28:fb:a8:d1:cb:f5:f5:78:91:2e:af:
07:e0:31:67:57:43:c4:40:49:ae:94:81:65:3d:f8:
82:cd:1d:62:36:f7:24:02:7d:ca:f6:c7:af:8e:a0:
db:2f:b2:e1:71:94:a4:1d:72:36:b6:e9:6a:01:47:
75:b2:d5:09:64:ea:86:c1:90:ce:e2:fc:b3:a2:3b:
df:59:5f:07:4e:95:06:53:1e:3a:8a:53:44:a9:69:
91:83:e1:33:87:b7:17:ff:3f:da:96:5d:68:cb:97:
b0:35:56:53:72:83:bc:f5:50:0c:e0:70:7a:bc:30:
35:5a:9a:58:a6:e4:e7:ff:1c:81:dd:37:a7:db:be:
c8:d1:87:88:aa:68:2b:5f:58:be:bd:f1:49:0f:65:
5a:a5:98:c4:50:9f:21:05:c5:b8:e4:4b:3d:65:5c:
bd:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:88:19:0F:32:E6:A4:BA:63:73:93:5E:B3:B2:39:61:A7:B8:CE:4C
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS54252.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.14.188.0/24
150.241.136.0/24
150.241.174.0/24
150.241.234.0/24
155.117.81.0/24
162.141.48.0/24
162.141.116.0/24
162.141.138.0/24
167.148.136.0/24
167.148.162.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:a6:9e:0a:c5:02:7a:97:8d:da:55:58:1a:fa:3d:ee:88:0c:
02:b7:9a:c8:57:f8:27:64:ed:43:21:29:9b:ab:a2:b1:bb:99:
13:73:49:8b:b1:79:30:5d:b1:30:f9:65:ff:e1:11:a2:97:ef:
25:5a:1b:23:2b:c9:41:28:a3:23:a0:86:0a:d0:5b:d5:d8:a8:
5f:47:bf:f2:3a:66:ef:44:26:05:68:a6:8e:8b:8d:20:cf:48:
97:26:d6:e8:28:26:c7:0b:13:a8:77:32:39:7d:69:c3:5d:2e:
14:90:50:66:ed:d5:d1:7b:e6:5e:1c:79:49:fc:98:c0:11:c9:
d6:c4:0b:41:a6:2e:e2:dc:48:c0:1c:09:9a:82:cd:b3:57:7e:
b2:91:a9:4c:44:41:54:fe:8f:e6:9c:bd:8c:42:20:48:ee:e8:
3e:7e:de:45:1f:c4:84:b5:b5:45:64:8c:9f:ae:f8:19:ac:9b:
c4:40:10:63:9c:ba:ae:b5:d2:af:b9:3d:5c:42:f3:4d:3d:59:
38:e3:8e:ef:15:c8:49:1b:9a:26:3c:4d:61:1b:28:53:48:52:
1c:46:65:63:fa:06:1c:5a:92:11:c0:b1:94:92:ce:c3:3f:d2:
39:14:0e:db:b2:84:04:4f:da:11:b5:7b:2d:d6:7d:3e:ef:6e:
ec:17:e5:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 01:17:06 2026 by rpki-client