
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS154132.roa
File: AS154132.roa (raw, json)
Hash identifier: Ywl97Zp+wBppUMuVGznIbWdwPAzFuAY1qQzXYHBe6fc=
Subject key identifier: 95:FF:42:39:94:92:CC:11:DE:76:7C:3F:A5:DE:2E:51:37:44:05:9F
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 4C8030CB28715E0E4D9060A99C435C5803B4AC84
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS154132.roa
Signing time: Thu 16 Jul 2026 12:01:43 +0000
ROA not before: Thu 16 Jul 2026 11:56:43 +0000
ROA not after: Thu 15 Jul 2027 12:01:43 +0000
asID: 154132
IP address blocks: 51.194.202.0/24 maxlen: 24
188.220.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Jul 2026 09:43:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:80:30:cb:28:71:5e:0e:4d:90:60:a9:9c:43:5c:58:03:b4:ac:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Jul 16 11:56:43 2026 GMT
Not After : Jul 15 12:01:43 2027 GMT
Subject: CN=95FF42399492CC11DE767C3FA5DE2E513744059F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:45:19:3e:cb:6d:91:c0:69:dc:28:0e:5f:cc:
06:e5:9c:c6:44:b0:f9:6c:29:50:3e:c5:b3:9e:2d:
8a:40:32:33:70:7d:de:09:4d:fa:56:a9:0d:34:ca:
06:3c:54:6f:53:2a:09:8b:32:15:18:17:4c:8a:bb:
b8:99:d0:9a:43:70:9e:cf:e4:57:72:2e:63:0a:d5:
c2:fe:5d:24:c4:8f:7f:2c:97:ff:b9:97:4e:98:c3:
01:2f:85:77:8d:a8:be:58:a2:26:e2:88:f5:91:28:
6b:27:8c:09:cc:a0:a2:45:5d:fe:e1:bf:d4:ad:e7:
d5:1e:b1:07:f7:6f:7c:22:73:f6:bf:91:9f:06:1f:
3f:38:47:82:09:51:40:69:7d:79:01:79:91:0b:8e:
dd:97:37:9f:e9:90:98:34:65:f9:70:1a:ad:e6:06:
73:37:b7:9a:66:5f:a2:22:42:13:21:bb:02:1c:03:
d8:97:20:f5:cc:1b:60:35:1d:68:95:55:b0:8f:25:
9e:03:d2:cc:fd:fa:6f:87:6b:f5:79:d4:c3:0e:7e:
61:a5:18:cf:99:78:c1:82:fb:f3:0c:c5:b1:96:db:
7b:58:49:16:4b:a9:ca:09:eb:74:29:c4:c9:b9:6d:
a8:fa:75:1c:2a:31:9a:dc:f5:7a:3b:15:22:5a:09:
5e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:FF:42:39:94:92:CC:11:DE:76:7C:3F:A5:DE:2E:51:37:44:05:9F
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS154132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.194.202.0/24
188.220.76.0/24
Signature Algorithm: sha256WithRSAEncryption
23:28:ba:56:15:58:f7:a8:6e:b4:b6:7f:3e:98:1a:e2:96:b0:
67:02:6a:19:72:e9:6c:24:6f:b1:1a:76:24:b7:0d:56:7c:66:
e1:4f:cc:5b:8f:fc:43:16:6d:90:e0:0c:03:71:20:a8:a6:83:
14:52:7e:c4:b1:81:b1:a4:97:b4:2e:64:1f:8e:06:6b:11:44:
ce:dc:e7:27:ac:82:b7:8c:80:f7:1c:9c:4a:e1:a5:81:73:46:
d2:b0:1a:14:95:e7:21:f3:93:62:9c:45:ba:63:3c:26:30:aa:
03:19:2b:bd:30:e4:f0:3a:12:7b:e8:65:73:d4:6e:30:87:de:
31:99:f8:4f:5c:50:be:ef:b1:99:13:fb:52:f0:b3:71:80:d0:
a7:7a:e2:52:3a:f0:0d:01:a3:c4:55:f5:a8:34:c0:ef:4b:5c:
7a:b7:74:6e:e6:28:5a:c6:21:a6:4c:5c:34:0e:a7:78:8b:a2:
b2:73:4b:4f:d3:42:d0:06:1f:4e:cd:57:35:a3:cf:ad:7d:20:
40:24:0c:c6:e2:6c:a0:4f:77:04:57:74:b1:4b:d8:0c:0e:28:
f9:e7:dc:ad:94:64:0a:e3:45:b7:6a:cb:f4:9d:3f:66:a5:12:
e4:1f:2f:28:b6:29:33:d9:92:b8:14:8e:7d:55:54:51:1d:7c:
d3:4f:d6:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 18:45:26 2026 by rpki-client