
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14935.roa
File: AS14935.roa (raw, json)
Hash identifier: yGCJAi8gYmfOayzDK/UNuEXYUJS8lNahceZySjV3u1c=
Subject key identifier: A9:9F:C3:D6:EF:F9:EA:8E:3E:1F:D7:D6:77:A9:1E:9B:F5:F5:8B:68
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 3E52AC78B327770EDC830336F38574BEE6E3A391
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14935.roa
Signing time: Wed 17 Jun 2026 15:47:40 +0000
ROA not before: Wed 17 Jun 2026 15:42:40 +0000
ROA not after: Wed 16 Jun 2027 15:47:40 +0000
asID: 14935
IP address blocks: 191.96.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Jul 2026 07:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:52:ac:78:b3:27:77:0e:dc:83:03:36:f3:85:74:be:e6:e3:a3:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 17 15:42:40 2026 GMT
Not After : Jun 16 15:47:40 2027 GMT
Subject: CN=A99FC3D6EFF9EA8E3E1FD7D677A91E9BF5F58B68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:13:ef:7b:2b:89:61:82:e9:d7:21:4f:33:1e:
6b:ab:56:42:09:af:5e:17:e3:58:c5:76:fb:09:59:
d3:c5:f5:f4:06:f9:41:64:cb:56:17:51:00:67:c0:
f0:f0:5c:57:17:8c:fc:3e:66:d8:ec:1d:c1:5d:e7:
a2:d6:b1:97:40:2d:4d:0f:60:f8:da:48:e8:e3:c0:
67:d5:22:a4:c1:79:7d:eb:24:6f:60:a2:7d:7b:88:
4d:e0:4c:e4:16:3f:18:14:fe:8a:9f:57:dd:f3:df:
d3:bb:4d:d7:36:76:aa:45:3e:3b:7f:66:d0:9d:bb:
0b:fb:34:56:e2:89:d4:25:6d:f6:aa:96:bf:f2:ef:
90:28:bd:de:06:dd:29:3a:d4:26:a4:46:d2:23:a6:
bb:dd:1b:dd:3e:cc:d8:21:92:64:7a:8b:fe:49:8f:
dc:f1:ef:88:ac:04:ea:80:da:ed:75:79:1d:f2:37:
6d:7f:9e:55:30:b1:19:39:09:fe:f2:2f:f2:95:0a:
eb:e0:12:06:0e:a6:84:a7:65:e6:e9:cb:98:37:8e:
c0:28:b8:2b:24:b4:ad:79:c7:68:eb:d3:8b:ca:10:
f5:8e:1a:9d:d5:c4:6e:a6:f9:5a:2d:15:de:4c:18:
f9:37:de:f0:3b:1c:2b:ab:f4:00:9c:3b:72:8e:ca:
9a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:9F:C3:D6:EF:F9:EA:8E:3E:1F:D7:D6:77:A9:1E:9B:F5:F5:8B:68
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.30.0/24
Signature Algorithm: sha256WithRSAEncryption
93:59:60:db:6c:90:d3:d6:e4:ca:72:a2:2b:bc:6a:08:94:f5:
50:e7:0e:61:09:79:ae:76:32:61:f3:ec:c7:2f:67:ca:55:60:
38:0d:34:37:45:5b:2c:38:57:7f:18:44:e6:7e:db:30:11:fb:
f5:8f:0c:3e:2c:00:bc:1a:fc:f4:26:af:70:eb:9a:4c:7d:bb:
d2:2a:e6:65:39:3c:b0:32:fc:e7:4d:11:16:53:9a:1b:bf:29:
21:a7:45:85:4c:15:6e:6d:69:1b:af:09:f3:2e:42:05:00:a2:
94:af:08:8d:16:51:f4:7c:ad:75:02:47:ae:63:39:ef:ca:2a:
f3:6a:6b:5e:c0:d2:76:c0:11:31:ee:32:b1:c9:26:0e:b6:46:
b7:ef:52:83:95:76:71:01:62:e0:7a:1b:cc:1f:e1:9c:e2:1a:
fc:03:5f:07:01:78:53:54:53:5e:58:d7:b9:37:6c:19:ce:7e:
63:9a:65:58:83:9f:3a:ab:12:4e:6d:6a:8b:76:18:7d:c1:04:
bf:05:5f:67:37:4a:11:3d:29:00:da:96:90:d4:49:e9:ab:c7:
bb:ac:5a:2c:37:3a:13:b2:9c:86:8d:ec:d2:18:a5:58:4e:aa:
6c:4d:8a:1e:4c:89:6b:10:d4:73:5a:de:d0:6d:d4:56:34:b3:
26:db:d1:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 16:38:44 2026 by rpki-client