Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198805.roa
File: AS198805.roa (raw, json)
Hash identifier: oMcNTMd13Ct31BG7AiPOWIqWepVi470hF4DkzUH9zm8=
Subject key identifier: 18:4E:B7:F9:20:06:2B:AC:39:F9:25:56:98:CB:2D:A2:49:FC:A2:EC
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7DF50080E3100EA44426CAFC7389270EB63E4EB7
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198805.roa
Signing time: Wed 27 May 2026 19:20:24 +0000
ROA not before: Wed 27 May 2026 19:15:24 +0000
ROA not after: Wed 26 May 2027 19:20:24 +0000
asID: 198805
IP address blocks: 191.101.116.0/24 maxlen: 24
191.101.124.0/24 maxlen: 24
191.101.209.0/24 maxlen: 24
191.101.236.0/24 maxlen: 24
191.101.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 14:59:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:f5:00:80:e3:10:0e:a4:44:26:ca:fc:73:89:27:0e:b6:3e:4e:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 27 19:15:24 2026 GMT
Not After : May 26 19:20:24 2027 GMT
Subject: CN=184EB7F920062BAC39F9255698CB2DA249FCA2EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:2b:ec:78:99:dd:22:ab:7a:8c:b7:e5:2a:c6:
9c:27:34:88:dc:fc:5b:6c:b9:ee:b2:41:c7:b9:b5:
e7:f8:88:d7:53:13:c8:29:86:16:e5:a6:51:6e:f0:
14:90:69:4b:23:7f:77:3d:de:f9:c6:0d:68:f6:4b:
c4:80:91:54:b3:eb:77:94:30:80:39:1d:b0:82:0b:
ae:0a:a7:23:4b:49:ea:9e:8a:96:fe:99:83:56:9a:
f9:11:d8:83:8e:4f:fb:19:54:3f:a0:71:ff:d3:7c:
b5:b0:a8:e2:d3:26:24:6b:a1:cd:99:fa:c0:87:91:
66:f5:79:5a:4f:33:c8:75:c8:1c:d8:1d:3a:2b:2c:
6b:72:d1:ad:ea:94:bc:74:5c:2b:83:b1:fa:e7:d9:
2b:0a:41:c6:f3:c3:c1:02:0e:7b:a3:57:0c:b6:23:
f6:36:f3:76:20:45:26:7f:7e:5a:1a:be:2e:75:b4:
58:ea:a9:ec:7d:8d:bc:ff:64:10:fb:01:88:28:8c:
18:f2:e7:fa:06:20:a8:39:cd:3c:35:b4:e0:be:73:
8f:d1:6d:7e:a9:d8:53:6c:e5:96:c6:90:de:45:e0:
aa:85:37:cc:85:82:55:18:fc:78:a2:32:4b:9d:e8:
c1:dd:04:35:60:7d:ca:99:1b:35:05:7f:98:65:c1:
61:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4E:B7:F9:20:06:2B:AC:39:F9:25:56:98:CB:2D:A2:49:FC:A2:EC
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198805.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.116.0/24
191.101.124.0/24
191.101.209.0/24
191.101.236.0/24
191.101.240.0/24
Signature Algorithm: sha256WithRSAEncryption
12:6b:94:ea:9e:fb:8d:ff:80:dc:71:eb:b3:67:d0:e2:55:7d:
32:68:f3:cb:02:92:0d:86:af:92:c7:e6:1b:59:bc:1a:06:4d:
bd:e2:f0:da:99:eb:9d:97:68:c6:04:cf:03:d8:f4:25:cc:2a:
f8:15:1c:54:e4:a8:41:c5:ad:e6:86:5c:0a:df:31:90:ed:f6:
8b:07:cf:b8:0a:af:c2:e2:8d:a8:9f:f7:3b:61:27:f7:f0:91:
ee:e3:d4:c0:a6:8a:26:16:86:61:d0:31:50:f2:9d:19:1d:8b:
b8:26:f7:ce:a3:09:f9:5a:45:5d:9e:a4:2d:82:ef:26:8a:a2:
51:67:7e:a1:25:fc:e9:e4:18:77:85:b7:0b:64:f6:99:69:1d:
64:5f:cb:db:d2:35:65:9d:b4:71:24:a2:33:0d:47:9d:31:27:
bd:23:60:a2:89:d7:ee:48:9f:32:3a:d1:f9:92:67:d0:77:b6:
69:e4:71:82:d0:cf:42:1c:c2:02:19:0c:dd:81:99:5f:15:7a:
9d:38:09:19:9a:02:2c:c7:c3:6e:48:c0:cc:5a:79:30:36:88:
65:b0:6d:e0:59:24:45:87:25:b6:a8:d9:6c:80:e0:6b:63:c5:
ca:c7:b7:f2:b8:ae:2e:6d:44:1e:de:b7:5e:0e:f8:fd:92:27:
7d:e2:de:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 01:16:17 2026 by rpki-client