Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS197583.roa
File: AS197583.roa (raw, json)
Hash identifier: i/PV3A4Tf8FEbnEym5Kxqdmg/LVdB1QHEyVqMnYtBB0=
Subject key identifier: 82:96:D7:33:88:AD:1C:57:AE:1A:24:CD:76:A6:F0:8D:62:2C:5E:BF
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 6ECFEC998DB9A18FBCA4C50014CC7C36622A9A37
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS197583.roa
Signing time: Fri 15 May 2026 14:33:03 +0000
ROA not before: Fri 15 May 2026 14:28:03 +0000
ROA not after: Fri 14 May 2027 14:33:03 +0000
asID: 197583
IP address blocks: 2a14:7580:eb00::/40 maxlen: 48
2a14:7581:9f80::/44 maxlen: 48
2a14:7586:e000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 17:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:cf:ec:99:8d:b9:a1:8f:bc:a4:c5:00:14:cc:7c:36:62:2a:9a:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: May 15 14:28:03 2026 GMT
Not After : May 14 14:33:03 2027 GMT
Subject: CN=8296D73388AD1C57AE1A24CD76A6F08D622C5EBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2e:42:1d:bd:58:4c:0a:ac:a2:84:e4:37:8c:
55:3e:db:80:3e:41:b0:56:6b:7c:29:f8:81:24:74:
8b:5a:c3:5d:4a:76:c7:b7:63:74:64:f5:e8:af:82:
67:97:15:78:45:9f:04:11:3e:4b:63:24:0d:90:80:
18:92:b1:cf:82:13:d8:3f:9e:2a:41:58:2e:be:7f:
3b:33:2f:81:8b:eb:56:03:b5:65:e7:65:1a:e3:9e:
57:66:cd:8b:14:94:05:6c:96:9e:c0:f0:ee:07:8a:
fc:2e:6f:8c:eb:46:0a:57:4d:1e:50:b0:51:6d:ce:
3b:af:5e:c1:50:d7:a5:4e:2d:b1:75:dd:7b:65:16:
60:13:5f:64:b0:32:4c:b2:86:30:c0:f1:85:01:93:
c5:ff:bd:81:f1:92:78:48:39:fa:b9:82:00:e7:63:
0a:75:58:d8:a3:40:07:1f:4e:81:4e:08:db:14:97:
71:66:94:e1:86:3d:f7:1e:a6:ec:39:97:02:7e:e1:
3e:47:12:04:ce:76:f6:58:f3:9a:37:4a:83:58:2d:
69:5c:61:97:4a:13:3c:e0:a0:ff:f8:1f:05:05:d2:
44:8b:59:1c:42:09:2b:53:50:27:fa:fb:d4:fd:75:
49:29:d7:0a:2c:ea:40:81:8f:e3:fe:a9:53:22:08:
84:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:96:D7:33:88:AD:1C:57:AE:1A:24:CD:76:A6:F0:8D:62:2C:5E:BF
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS197583.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:eb00::/40
2a14:7581:9f80::/44
2a14:7586:e000::/36
Signature Algorithm: sha256WithRSAEncryption
66:8e:68:13:af:3c:93:f1:bf:46:3c:49:8f:de:50:c6:47:47:
b8:94:ef:1a:af:04:82:36:89:a0:38:70:f6:b8:d3:ee:df:62:
96:53:f4:1d:a0:4c:d3:a6:92:32:d2:14:a2:ec:fe:a8:a1:73:
25:51:f0:c3:fe:e7:fb:eb:c6:87:01:c5:10:f5:41:e6:e7:11:
75:59:17:1f:aa:a5:cf:ff:cd:2e:62:eb:3e:e0:9d:7a:c6:de:
00:c1:d0:d8:28:d9:54:87:96:3e:ac:e8:0d:db:f4:4c:09:cc:
c2:4f:e1:04:10:a6:89:ad:2a:2e:88:d3:ab:f7:27:e2:00:2e:
92:a0:07:a8:07:a2:4e:0a:d7:d5:b9:79:4f:f9:33:68:02:b2:
a5:cb:0d:fa:a2:4b:de:71:a1:a9:6a:d6:b6:32:7c:55:7e:29:
6c:e9:48:d2:60:03:0d:22:d5:5b:1c:e3:04:57:37:1b:4a:fb:
72:05:ac:88:9a:49:c9:2b:16:b7:0e:8e:b1:d3:b0:89:09:b0:
9e:3f:6c:a0:50:c0:e5:f5:ad:51:d5:2c:f3:57:5e:ab:20:26:
4b:b1:6c:51:f1:e8:5c:2b:0b:84:9d:6c:83:65:61:3b:f4:6d:
ee:11:a3:83:8f:ec:32:fa:11:51:80:4d:40:5a:cd:7b:1b:7c:
60:15:76:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 02:27:39 2026 by rpki-client