Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS197555.roa
File: AS197555.roa (raw, json)
Hash identifier: HXQYo6OHtdTzw3c8MfVoGcscJT2/s5lb6IZToV1MCIw=
Subject key identifier: 18:9B:EC:21:D7:7F:B1:80:D0:A1:DA:3E:12:37:98:35:A0:AD:32:B1
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 4AF33871C942AB5C81336480207B3DE3B1B2A715
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS197555.roa
Signing time: Wed 17 Jun 2026 08:03:18 +0000
ROA not before: Wed 17 Jun 2026 07:58:18 +0000
ROA not after: Wed 16 Jun 2027 08:03:18 +0000
asID: 197555
IP address blocks: 185.231.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Jun 2026 07:25:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:f3:38:71:c9:42:ab:5c:81:33:64:80:20:7b:3d:e3:b1:b2:a7:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Jun 17 07:58:18 2026 GMT
Not After : Jun 16 08:03:18 2027 GMT
Subject: CN=189BEC21D77FB180D0A1DA3E12379835A0AD32B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bf:9c:97:db:f8:ac:c7:d9:f6:ef:62:d8:38:
28:d6:12:19:a4:ee:0d:15:21:4d:c9:f3:65:34:e5:
b4:f3:52:e1:92:cc:e7:49:54:99:21:16:0c:d0:73:
a3:09:09:79:6b:5f:da:51:b6:41:02:5e:4b:d6:ca:
93:71:a9:8d:21:41:df:a5:2a:2d:2e:00:64:5c:ce:
2f:5b:8f:e5:b6:ab:f9:ad:ba:37:5f:c7:a0:5b:88:
50:51:a5:19:9f:fd:70:25:2b:04:0e:7d:47:36:61:
cd:63:c0:7b:fe:db:68:d2:5d:aa:63:f6:d5:ac:c0:
41:17:e0:09:af:b8:8f:85:18:04:ec:eb:ca:80:5e:
34:d4:86:e1:7f:37:b4:92:2e:05:19:5d:2b:8b:ec:
8e:57:f6:1a:ce:8e:27:05:ce:ed:34:a4:44:b7:1b:
a3:bc:b7:59:2e:24:00:65:34:71:58:77:90:a4:6b:
b9:31:65:f5:06:1d:c1:fe:b6:1a:8b:84:48:a5:8c:
fc:d1:ba:d1:08:63:e1:5d:88:46:99:66:aa:df:d7:
9f:8b:46:cd:fe:5e:51:d5:18:63:9e:a8:b4:42:83:
35:67:ab:28:0c:52:45:e1:eb:4f:00:ff:9b:d3:c0:
19:ea:9a:43:50:65:1d:44:8c:81:2a:e9:07:80:e3:
f1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9B:EC:21:D7:7F:B1:80:D0:A1:DA:3E:12:37:98:35:A0:AD:32:B1
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS197555.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.226.0/24
Signature Algorithm: sha256WithRSAEncryption
78:78:05:db:9a:59:73:31:10:50:0e:40:47:be:31:e6:cd:ca:
d2:d4:51:02:24:ef:05:04:8d:ab:6d:71:d5:bf:ca:58:5d:42:
08:27:60:7c:1a:df:ea:2e:ce:4e:b9:68:71:06:75:a7:3d:c7:
41:f0:81:1f:98:8a:29:39:a4:b4:a1:43:97:c1:a3:cd:52:d8:
4c:29:f5:98:cc:a0:d8:45:ab:47:2b:54:b3:42:bb:d5:dc:1e:
e7:6b:34:46:d0:c7:98:3b:3d:47:3c:26:16:28:c8:ba:77:fc:
9f:79:78:8e:15:68:d4:02:a2:13:44:c4:6a:95:79:e8:10:a9:
bc:88:27:c9:1d:26:8f:54:9d:95:63:8a:3f:af:79:17:6e:4f:
ff:6d:56:b0:e1:c3:06:73:e7:bd:34:a6:55:60:9b:a3:aa:13:
4b:35:41:db:e1:9e:ce:0f:41:8f:c0:c1:18:3f:f3:5e:0d:c3:
d4:15:87:3f:a8:60:9e:bf:01:f5:c0:b1:d8:af:0c:bd:f8:16:
08:01:ac:c6:d4:66:58:4f:13:de:e6:26:40:b1:6a:98:eb:7c:
94:ce:f1:ed:2c:cb:75:05:f5:6b:02:4a:c3:fb:9c:46:38:10:
ea:93:31:37:ef:03:6d:e9:7f:a4:50:92:df:32:eb:58:15:b8:
d3:f5:c2:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 27 20:35:28 2026 by rpki-client