Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS199277.roa
File: AS199277.roa (raw, json)
Hash identifier: ZTMw8BcgLX4yKlKewAK41EM4sFeAxtTY3bHqd0dAVQ8=
Subject key identifier: C3:0F:37:29:8C:41:0B:56:5F:D3:80:C2:A0:42:7C:CC:D5:6B:68:2E
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 5740A3707938623ED58320F0146588DC8FC04894
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS199277.roa
Signing time: Thu 28 May 2026 12:06:35 +0000
ROA not before: Thu 28 May 2026 12:01:35 +0000
ROA not after: Thu 27 May 2027 12:06:35 +0000
asID: 199277
IP address blocks: 2a14:7583:ef40::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 17:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:40:a3:70:79:38:62:3e:d5:83:20:f0:14:65:88:dc:8f:c0:48:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: May 28 12:01:35 2026 GMT
Not After : May 27 12:06:35 2027 GMT
Subject: CN=C30F37298C410B565FD380C2A0427CCCD56B682E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ad:6d:55:84:26:12:c7:16:38:ae:dd:8c:a9:
17:43:22:5a:1a:79:63:1b:65:ec:a4:87:54:2d:6e:
2e:cd:47:1a:99:34:00:4d:a9:b6:6c:ce:78:4f:c5:
f1:ca:93:85:70:30:26:b4:b6:2e:5b:48:10:59:88:
0b:d2:f3:2c:8f:3c:ec:0e:11:3c:39:8e:f0:80:7a:
00:39:dc:c8:c9:85:a2:14:82:19:e6:20:03:ce:31:
a9:4a:ec:8c:34:88:54:4b:b5:02:6d:6a:be:c2:c4:
58:f1:12:5d:1c:10:ae:ff:db:2d:a1:8b:4d:da:5e:
45:04:f9:75:d5:ad:97:1f:48:47:54:f5:88:b1:69:
1c:b2:4e:dd:37:25:5a:ed:01:24:2e:03:3d:23:43:
1f:f4:26:1f:8c:88:a4:55:6f:49:41:9f:08:9f:76:
90:21:35:27:27:49:6e:56:6a:53:a9:8e:e4:e1:7e:
f8:c2:56:fa:7e:f9:77:ca:9f:79:ab:82:40:b6:ea:
0d:4f:80:f0:56:ac:1a:d7:33:e4:b5:d7:6c:26:b2:
0a:41:a8:c8:4c:59:a5:01:47:6c:81:b3:10:e4:9f:
49:a1:2c:f4:79:ac:34:18:43:37:b6:20:52:a5:e9:
4a:08:24:b1:4d:2f:c5:b0:de:6d:f5:96:ad:81:7c:
dc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0F:37:29:8C:41:0B:56:5F:D3:80:C2:A0:42:7C:CC:D5:6B:68:2E
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS199277.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7583:ef40::/44
Signature Algorithm: sha256WithRSAEncryption
27:b6:bc:bc:26:b7:52:c6:1c:b8:df:d6:bf:97:08:16:e3:c1:
e9:65:18:10:1a:90:0c:db:64:a1:86:5d:2f:81:15:99:c2:30:
98:30:0c:ba:81:c7:e7:0f:b8:36:31:b5:a9:f2:06:e7:ee:41:
de:3b:51:c6:71:5c:f6:6a:2c:32:62:8a:f0:e1:22:31:65:3e:
26:fb:e7:ea:ef:c8:50:76:79:33:09:2f:a5:9e:43:57:34:5a:
70:ce:51:97:3e:32:6e:2a:05:61:07:3b:22:f9:f6:b9:12:3e:
6f:01:07:05:e4:12:13:db:0b:14:6f:f8:57:30:1c:a7:8d:77:
83:1e:12:bd:90:4e:2c:9e:42:d9:b9:f3:75:63:3e:dd:63:46:
7d:47:1f:2f:ba:15:e7:06:58:8a:94:b7:08:05:ef:06:14:84:
04:7b:38:d1:6b:0f:e5:d8:61:1b:3c:f7:c5:b7:22:d2:02:a0:
8d:b9:9a:c3:72:8c:75:4c:38:d5:fb:03:d9:af:93:a3:8c:75:
ff:57:13:f1:02:88:8a:73:d4:bb:5a:cb:27:3f:22:6e:86:df:
75:ed:e7:6c:1f:e6:7e:1a:f2:57:8a:81:8e:7e:0e:a7:86:3e:
44:d8:5c:b0:ef:93:38:cb:ca:1e:98:d4:04:32:c9:86:18:37:
01:f3:2f:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 02:27:41 2026 by rpki-client