Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS199737.roa
File: AS199737.roa (raw, json)
Hash identifier: bYgo60kbSox9i7B0Fu/m5He+ttNfDwjfA9S98nAYMcM=
Subject key identifier: 4E:0F:68:58:D9:06:8E:89:35:3C:A7:CD:E5:5F:9B:C4:31:EB:40:99
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 1B9471440ED486672E90EFF8BAAAE05587957418
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS199737.roa
Signing time: Fri 29 May 2026 17:47:18 +0000
ROA not before: Fri 29 May 2026 17:42:18 +0000
ROA not after: Fri 28 May 2027 17:47:18 +0000
asID: 199737
IP address blocks: 45.154.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:13:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:94:71:44:0e:d4:86:67:2e:90:ef:f8:ba:aa:e0:55:87:95:74:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: May 29 17:42:18 2026 GMT
Not After : May 28 17:47:18 2027 GMT
Subject: CN=4E0F6858D9068E89353CA7CDE55F9BC431EB4099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:92:28:21:11:cc:3e:9f:a8:8b:79:37:2f:bc:
39:02:63:48:f7:d8:51:4d:a2:d6:79:f9:d6:3e:e8:
23:c4:62:c4:71:4f:4a:41:e7:a3:0e:44:61:28:53:
3a:b2:80:89:6d:5e:3a:f7:59:da:f1:d5:50:e8:0a:
c5:cb:ee:95:b3:47:d9:c3:72:c5:f1:3b:65:67:95:
7a:3e:16:60:38:c0:eb:51:a8:3b:9b:8c:ee:60:a1:
76:21:90:4a:0c:79:08:91:77:a8:0c:f4:2a:8f:2f:
df:e1:7f:55:27:7e:7a:f1:10:26:38:b7:a5:5d:e3:
41:b4:14:d4:6c:69:93:bf:5c:4d:24:18:da:c5:7c:
b2:e3:bc:e6:6a:25:60:89:27:23:a5:9f:63:31:2e:
44:19:87:df:e0:a3:92:ef:35:a3:68:db:7f:09:d8:
2c:ba:14:2d:1c:81:cb:f0:c3:78:4d:e9:28:e1:90:
e9:77:36:2f:db:ec:8b:db:31:01:c7:67:c4:4e:a1:
35:a7:0e:15:d6:c7:6a:38:50:3e:02:d8:ca:71:00:
3a:d1:11:6e:9b:8d:77:da:2b:e3:d6:70:b3:16:a2:
b3:18:ea:fc:66:5e:0b:e5:9a:6e:e4:ee:49:b2:89:
f8:99:95:15:68:20:84:f7:26:47:ac:22:95:a5:ca:
36:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:0F:68:58:D9:06:8E:89:35:3C:A7:CD:E5:5F:9B:C4:31:EB:40:99
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS199737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.107.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:7e:23:ae:65:91:f8:71:0e:44:e3:e9:ce:e8:37:1e:26:fc:
2f:d6:e1:71:ad:09:e9:4e:34:7a:fe:a7:86:b0:5e:3b:34:27:
b7:a2:e5:23:98:ce:19:5e:43:5d:0d:8e:8e:74:de:d8:43:ee:
f8:ad:e3:b2:fb:a5:b5:cc:b5:5e:ce:59:b8:49:83:06:a5:a6:
49:f4:05:b0:a4:e9:4e:72:3a:08:aa:6c:92:02:ec:df:da:85:
ed:ae:51:25:0f:52:17:4f:01:44:ba:5a:bb:68:0e:3d:6b:70:
6e:ab:47:6b:de:b4:f3:eb:dc:eb:f1:fa:52:13:b2:e2:44:41:
23:be:d7:63:12:d2:e2:84:75:2a:3a:55:7e:ac:1e:de:ca:a9:
ae:c3:1c:62:11:ad:8b:22:64:7b:07:0b:9a:42:76:4a:b7:65:
fb:a5:f1:3d:97:5d:a4:15:61:da:f2:11:c7:c3:79:0d:fe:3c:
1b:a7:1d:95:92:3f:43:95:3d:ab:fe:3f:39:6b:31:c9:03:ab:
56:67:65:2f:71:91:00:b4:7c:7b:0f:73:85:e1:31:23:49:ef:
ca:8a:e7:c0:07:ea:1b:1b:63:a2:b0:71:73:2a:a5:59:6e:5d:
94:58:d4:36:0b:a5:9a:ce:58:ca:21:ae:c6:1a:4f:77:ea:fc:
fc:44:2a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 09:01:45 2026 by rpki-client