Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS199550.roa
File: AS199550.roa (raw, json)
Hash identifier: 03NiVQjfnrVvanaOO5tAyWwHZ8oV+X7kaTMJZLqxYBY=
Subject key identifier: 50:45:50:A2:D0:CB:86:E6:D8:8D:B6:8C:44:D2:CB:1A:CE:18:E5:14
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 3615B2E5A7DBD3313E59AF5DB70ACDF6FCF47F97
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS199550.roa
Signing time: Mon 01 Jun 2026 11:12:55 +0000
ROA not before: Mon 01 Jun 2026 11:07:55 +0000
ROA not after: Mon 31 May 2027 11:12:55 +0000
asID: 199550
IP address blocks: 51.146.5.0/24 maxlen: 24
51.146.8.0/22 maxlen: 24
51.146.14.0/24 maxlen: 24
51.146.18.0/24 maxlen: 24
51.146.22.0/24 maxlen: 24
51.146.244.0/24 maxlen: 24
51.146.245.0/24 maxlen: 24
51.241.194.0/24 maxlen: 24
51.241.200.0/24 maxlen: 24
51.241.209.0/24 maxlen: 24
51.241.218.0/24 maxlen: 24
51.241.240.0/21 maxlen: 24
188.220.0.0/22 maxlen: 24
188.220.24.0/22 maxlen: 24
188.220.72.0/22 maxlen: 24
188.220.104.0/22 maxlen: 24
188.220.140.0/22 maxlen: 24
188.220.176.0/22 maxlen: 24
188.220.180.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:15:b2:e5:a7:db:d3:31:3e:59:af:5d:b7:0a:cd:f6:fc:f4:7f:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Jun 1 11:07:55 2026 GMT
Not After : May 31 11:12:55 2027 GMT
Subject: CN=504550A2D0CB86E6D88DB68C44D2CB1ACE18E514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3f:92:27:fd:60:47:52:d5:70:e0:4e:78:08:
13:01:dc:16:3f:67:f7:89:e1:37:cd:b9:4a:36:69:
2b:8c:5e:5f:3c:42:99:9a:05:ad:1d:04:c0:ce:28:
94:b9:66:42:af:25:eb:4c:54:e2:2b:66:ab:18:91:
b7:02:91:6f:b1:08:79:38:cf:b6:7b:08:c0:59:eb:
be:91:92:0f:8a:d4:dd:fe:d8:ac:fb:0e:41:8c:ad:
db:8b:8b:3a:5b:0a:21:b1:5f:ad:4e:93:ac:7d:04:
ee:b0:91:26:75:9e:92:d3:d9:31:97:db:3c:5b:21:
ed:4a:07:a5:06:11:fa:7d:89:50:56:a3:a6:f6:94:
42:25:f5:71:61:f3:d8:64:63:fa:22:4d:d6:fa:cd:
c2:7e:f2:a6:60:4f:70:35:0b:79:f3:36:f9:9a:30:
a0:8e:56:b3:cc:83:ce:8f:c8:7b:b1:59:9d:54:4e:
06:da:62:d0:08:16:ba:73:e2:e3:ad:2f:9d:4d:64:
a3:89:f8:de:d4:85:30:df:e5:de:2d:66:cf:bb:93:
3b:96:6b:e7:a6:17:5b:1c:b2:f8:27:64:7a:97:a6:
07:ed:33:4e:ae:18:27:2e:6d:cd:eb:0b:57:08:2d:
c9:63:ba:05:f7:4a:9c:23:c8:7f:18:b7:42:a7:16:
90:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:45:50:A2:D0:CB:86:E6:D8:8D:B6:8C:44:D2:CB:1A:CE:18:E5:14
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS199550.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.146.5.0/24
51.146.8.0/22
51.146.14.0/24
51.146.18.0/24
51.146.22.0/24
51.146.244.0/23
51.241.194.0/24
51.241.200.0/24
51.241.209.0/24
51.241.218.0/24
51.241.240.0/21
188.220.0.0/22
188.220.24.0/22
188.220.72.0/22
188.220.104.0/22
188.220.140.0/22
188.220.176.0/21
Signature Algorithm: sha256WithRSAEncryption
3a:2f:78:ad:46:89:b8:89:1c:2c:f4:2b:ec:b1:e1:c6:7e:7b:
45:2b:fa:4b:c7:0f:25:94:c0:f6:6d:ba:09:5d:de:ae:d0:15:
2f:d3:fd:ca:f2:21:f2:e1:93:de:46:e1:88:9a:77:a2:2b:93:
92:b3:ce:e2:66:23:84:d8:3a:81:b0:cc:30:cd:02:84:b9:7a:
15:88:84:15:97:d5:9b:a3:f9:46:23:46:d5:22:bd:92:1d:ce:
20:3d:ca:c3:27:55:aa:8f:59:97:9a:62:4e:7a:47:fb:a9:4e:
b9:e6:42:0d:a5:a9:58:eb:0b:37:f4:d8:5c:3a:10:a8:e4:66:
7c:05:96:99:0f:33:31:c6:fc:7c:23:7e:1c:bc:52:57:9e:66:
06:c1:90:22:9e:64:7a:d7:b3:06:cc:37:50:1a:0e:8f:59:12:
86:6e:74:27:31:a7:5e:ee:0e:2d:42:11:49:b9:cf:47:8d:3a:
07:34:1a:e5:bb:1e:29:5e:2c:d9:3d:8d:af:24:aa:85:1e:c3:
c6:02:ec:ca:bc:da:c0:8b:bf:91:93:2b:91:b3:44:a8:35:40:
ef:0c:b8:cc:d8:ac:87:94:1b:7b:5d:45:a8:6b:99:34:f2:73:
49:47:e6:7e:0f:8f:a3:9e:a8:d5:38:e6:3b:45:ce:36:4f:da:
04:e6:4a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 08:31:07 2026 by rpki-client