Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS44382.roa
File: AS44382.roa (raw, json)
Hash identifier: lm64dSc7UYgc1quLZeUj7xuYXq6NUe1RMR5lcoNKVIg=
Subject key identifier: 79:24:9B:D7:34:EB:CF:16:1D:3B:18:B9:DE:CF:09:02:4E:A5:15:2E
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 0ADDD1170440375465923068C10B28634E017999
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS44382.roa
Signing time: Mon 27 Apr 2026 09:28:02 +0000
ROA not before: Mon 27 Apr 2026 09:23:02 +0000
ROA not after: Mon 26 Apr 2027 09:28:02 +0000
asID: 44382
IP address blocks: 31.40.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:dd:d1:17:04:40:37:54:65:92:30:68:c1:0b:28:63:4e:01:79:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Apr 27 09:23:02 2026 GMT
Not After : Apr 26 09:28:02 2027 GMT
Subject: CN=79249BD734EBCF161D3B18B9DECF09024EA5152E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:10:4a:66:ad:3e:95:75:4b:b4:6d:d7:25:82:
6a:d0:fa:af:5e:c3:c3:05:d0:3d:5d:7a:8a:0f:92:
1a:a9:2f:eb:f3:df:1a:46:a8:86:1f:bd:f0:6e:cb:
eb:7b:60:8e:43:f4:84:0c:61:68:80:c5:90:7a:09:
a4:b6:b4:33:60:1b:dd:17:90:52:e9:cd:6f:59:4c:
14:92:d7:b2:36:72:90:c4:12:44:90:f8:97:d8:b3:
3f:11:9b:10:8e:2e:84:65:ba:76:43:ca:7a:e9:57:
d8:41:04:08:1f:7d:8a:25:2a:28:a4:f1:47:b6:35:
18:8f:98:d4:4c:ac:d6:fb:de:92:ed:f1:c0:f8:2f:
06:6e:45:2a:8a:a7:55:10:39:2c:2f:ae:81:0d:51:
f6:78:cf:1e:70:54:62:21:0a:37:61:53:35:46:ad:
bc:7b:c4:eb:c5:97:89:6b:63:b9:82:01:80:9d:81:
df:81:d8:17:fd:dc:d7:31:52:11:68:b7:2a:0d:00:
db:54:e2:a9:44:47:64:e7:d0:8c:6b:e8:cd:96:f8:
d0:d9:87:a8:26:4c:47:6b:6d:25:84:dc:7f:21:ac:
e0:4b:f8:f7:eb:93:ad:ce:8a:2c:1d:24:fd:0b:5a:
14:1c:4a:c5:10:24:17:20:18:ae:0b:70:ee:63:07:
a5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:24:9B:D7:34:EB:CF:16:1D:3B:18:B9:DE:CF:09:02:4E:A5:15:2E
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS44382.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.204.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:d9:56:56:0b:0d:e5:10:1e:21:8c:14:55:3f:e0:76:e8:78:
10:3c:32:c3:54:8f:39:e9:25:c7:79:d7:8f:ae:f4:3d:a6:8c:
d9:e3:4f:21:b5:01:60:bc:1b:f6:2d:6e:90:39:e4:60:a6:ff:
ea:e9:06:98:15:af:01:a7:87:1b:ca:ca:d6:e4:73:a9:e7:13:
2a:4b:09:de:a1:a8:32:90:16:ad:a1:f0:3a:bc:3d:2f:a7:ab:
4f:b0:11:ca:b5:ca:3f:c0:26:9f:5f:06:bf:17:b9:a2:31:a3:
01:88:83:2e:e4:6b:8f:77:68:e3:16:62:4c:8c:cb:1c:6e:3b:
f9:33:4a:2d:22:fb:d4:78:77:14:ff:d7:b9:0d:e0:de:79:77:
73:b4:e7:1c:53:d8:c1:a8:b5:87:6b:b7:7b:cc:5e:31:5a:54:
52:d4:83:e1:ec:59:4a:6e:cc:45:9e:11:11:f8:84:dd:c4:a5:
15:a0:33:92:75:65:4d:03:ef:d5:b7:bb:b1:dc:10:c8:a3:f0:
4c:27:5b:58:84:cb:38:08:42:c0:3b:ec:c5:0f:85:61:dc:23:
45:46:f2:f0:de:c1:ec:63:c1:9d:da:80:6f:90:33:3d:ad:d5:
65:61:75:5f:1f:a2:85:ce:07:cd:c5:72:67:ed:bb:84:9c:9a:
24:9d:f3:cb
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUCt3RFwRAN1RlkjBowQsoY04BeZkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWRmYmZmMjE3MTA1ZGY4ODc3ZDQ2M2Y2ZTliYWMyOGE0
MDg0ZDIwYzAeFw0yNjA0MjcwOTIzMDJaFw0yNzA0MjYwOTI4MDJaMDMxMTAvBgNV
BAMTKDc5MjQ5QkQ3MzRFQkNGMTYxRDNCMThCOURFQ0YwOTAyNEVBNTE1MkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWEEpmrT6VdUu0bdclgmrQ+q9e
w8MF0D1deooPkhqpL+vz3xpGqIYfvfBuy+t7YI5D9IQMYWiAxZB6CaS2tDNgG90X
kFLpzW9ZTBSS17I2cpDEEkSQ+JfYsz8RmxCOLoRlunZDynrpV9hBBAgffYolKiik
8Ue2NRiPmNRMrNb73pLt8cD4LwZuRSqKp1UQOSwvroENUfZ4zx5wVGIhCjdhUzVG
rbx7xOvFl4lrY7mCAYCdgd+B2Bf93NcxUhFotyoNANtU4qlER2Tn0Ixr6M2W+NDZ
h6gmTEdrbSWE3H8hrOBL+Pfrk63OiiwdJP0LWhQcSsUQJBcgGK4LcO5jB6WRAgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQUeSSb1zTrzxYdOxi53s8JAk6lFS4wHwYDVR0j
BBgwFoAUnfv/IXEF34h31GP26brCikCE0gwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTViNGQ5ZTgtNDExMS00Mzk0LWEzYTYtYmQ4MjUxZTdm
YmJkLzAvOURGQkZGMjE3MTA1REY4ODc3RDQ2M0Y2RTlCQUMyOEE0MDg0RDIwQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25mdl9JWEVGMzRoMzFHUDI2YnJDaWtD
RTBndy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzU1YjRkOWU4LTQxMTEt
NDM5NC1hM2E2LWJkODI1MWU3ZmJiZC8wL0FTNDQzODIucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAfKMww
DQYJKoZIhvcNAQELBQADggEBAOHZVlYLDeUQHiGMFFU/4HboeBA8MsNUjznpJcd5
14+u9D2mjNnjTyG1AWC8G/YtbpA55GCm/+rpBpgVrwGnhxvKytbkc6nnEypLCd6h
qDKQFq2h8Dq8PS+nq0+wEcq1yj/AJp9fBr8XuaIxowGIgy7ka493aOMWYkyMyxxu
O/kzSi0i+9R4dxT/17kN4N55d3O05xxT2MGotYdrt3vMXjFaVFLUg+HsWUpuzEWe
ERH4hN3EpRWgM5J1ZU0D79W3u7HcEMij8EwnW1iEyzgIQsA77MUPhWHcI0VG8vDe
wexjwZ3agG+QMz2t1WVhdV8fooXOB83Fcmftu4ScmiSd88s=
-----END CERTIFICATE-----
Generated at Wed May 13 10:42:54 2026 by rpki-client