Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS44382.roa
File: AS44382.roa (raw, json)
Hash identifier: syS79YDUXjKitMgeOZp19dr4f2TAOllFzQA/5VWB5jY=
Subject key identifier: 05:CB:ED:92:4C:A8:D4:09:D8:78:F4:E8:74:E2:12:77:6E:68:7E:E8
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 58E324FB62E22600D8D5C9E12F66D36487FEE59C
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS44382.roa
Signing time: Sat 27 Jun 2026 07:20:19 +0000
ROA not before: Sat 27 Jun 2026 07:15:19 +0000
ROA not after: Sat 26 Jun 2027 07:20:19 +0000
asID: 44382
IP address blocks: 31.40.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Jun 2026 07:25:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:e3:24:fb:62:e2:26:00:d8:d5:c9:e1:2f:66:d3:64:87:fe:e5:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Jun 27 07:15:19 2026 GMT
Not After : Jun 26 07:20:19 2027 GMT
Subject: CN=05CBED924CA8D409D878F4E874E212776E687EE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6f:83:1d:23:1e:7f:52:8d:53:7e:0d:d3:7e:
7a:81:cf:db:b9:bc:b3:88:75:7b:e4:05:28:92:0e:
9c:c3:92:4a:10:81:54:37:af:9a:19:1f:df:55:69:
28:2e:cd:ce:ec:76:86:1d:de:e1:b5:4e:24:3a:59:
6b:fb:6f:27:3f:00:55:91:de:2e:f3:7f:ba:c2:92:
7a:93:53:7c:9f:7c:1e:09:54:f9:1c:c6:9e:24:4d:
e5:2c:45:02:86:5f:46:8e:7a:d2:36:72:94:89:83:
39:7b:98:3a:33:8a:f1:d6:72:2a:65:cb:73:57:1d:
13:89:fa:fb:d6:2e:9f:38:50:32:f8:d5:be:43:97:
6b:0c:e1:f5:70:1e:e6:88:74:88:1e:9f:a4:68:0f:
0a:fa:4e:2d:82:a1:47:22:5c:c9:6c:0a:fb:5b:86:
86:ea:2b:5a:24:39:6c:d1:2d:cd:c6:66:81:94:cc:
87:a0:db:56:9b:ce:82:5a:52:6e:fb:a2:43:f9:f7:
92:80:d1:c4:be:53:50:24:3d:d8:00:e8:a1:00:1c:
72:e8:f1:6e:97:c7:93:db:2d:06:b2:bb:93:12:8d:
0d:e9:e6:e5:db:ab:08:b3:d3:2d:05:63:a0:5e:c3:
c7:24:8b:1b:e9:79:e7:f7:e3:0c:07:ff:cc:ea:47:
12:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:CB:ED:92:4C:A8:D4:09:D8:78:F4:E8:74:E2:12:77:6E:68:7E:E8
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS44382.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.204.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:ab:09:03:55:88:39:45:e8:d8:0f:1e:3a:fb:a5:3c:a5:cd:
d1:69:68:40:1f:4c:6a:51:f1:96:84:10:16:54:ac:1b:4c:c7:
6b:56:3d:5f:2b:de:07:a7:9c:46:10:5e:62:66:6e:8c:76:d7:
dc:ac:e0:5c:91:ee:fc:47:ad:e5:cc:ce:3f:24:d4:d1:2d:c1:
7f:44:c8:06:ce:6d:50:dc:6f:48:d6:cd:d5:09:cd:04:97:9e:
c8:20:52:3f:28:69:a8:97:6c:87:5b:6e:de:d5:9d:a8:ba:3f:
94:ef:03:f0:31:83:92:9b:82:07:85:f5:33:21:2f:14:bd:73:
03:b5:1f:39:f9:c9:4e:c4:0e:62:42:b8:ec:dd:56:ba:82:54:
47:b0:61:2b:b4:ae:2f:87:f9:41:d9:bb:2d:f7:a3:5e:0e:ee:
27:b4:2d:a6:fa:17:5f:33:af:f0:1a:b1:84:f1:c8:96:d0:6d:
26:73:ff:3f:32:3a:b3:21:c4:c2:3c:6e:61:74:d2:20:85:03:
f1:07:6b:11:aa:c3:ed:c0:c2:4d:0f:e7:6c:f2:70:a0:7e:b5:
96:10:2d:d0:ba:b0:d1:fd:a3:df:c7:77:3d:82:67:24:2b:d7:
96:c7:ba:b0:30:0d:a7:fb:e0:06:2f:75:52:6f:29:cf:bd:7b:
1e:f2:38:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 27 20:33:49 2026 by rpki-client