Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS209557.roa
File: AS209557.roa (raw, json)
Hash identifier: ltg2wiTOHD/taP7s4+lp0ZLt7QOElRu/mEqE+3kshik=
Subject key identifier: 63:C5:3F:A7:CF:D8:01:E5:55:B2:A7:A2:73:97:71:7E:52:2C:E1:3C
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 29FD2493E6710CFD242F078E1E8A3F8ECA7A0CA1
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS209557.roa
Signing time: Tue 19 May 2026 09:36:07 +0000
ROA not before: Tue 19 May 2026 09:31:07 +0000
ROA not after: Tue 18 May 2027 09:36:07 +0000
asID: 209557
IP address blocks: 51.241.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:fd:24:93:e6:71:0c:fd:24:2f:07:8e:1e:8a:3f:8e:ca:7a:0c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: May 19 09:31:07 2026 GMT
Not After : May 18 09:36:07 2027 GMT
Subject: CN=63C53FA7CFD801E555B2A7A27397717E522CE13C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a1:4c:d4:1e:5d:b9:90:b5:4b:cd:7b:a7:6c:
73:1a:18:e3:db:b3:d8:6d:8e:05:e7:5e:99:15:69:
04:92:02:27:92:98:c5:ed:f7:c8:7d:7c:6e:f3:f4:
81:4d:19:f9:e3:82:fd:1e:62:83:bf:9a:3f:78:aa:
66:7f:62:07:99:15:05:92:6b:86:6d:2b:45:99:29:
2a:6f:25:49:16:8b:2d:4c:69:76:ee:72:0e:58:cb:
b0:57:d0:0e:11:c4:1a:4c:99:79:9c:fe:54:39:df:
5e:0e:7e:04:b5:a7:4e:91:a0:3d:3b:ed:9f:3d:8b:
2c:66:22:10:9e:70:9c:2a:39:71:9a:90:7e:c9:fb:
87:12:37:55:6f:27:40:90:26:bf:e9:84:56:3a:af:
31:17:be:76:14:1f:08:be:42:8d:1c:c4:b9:26:2f:
3f:43:27:53:24:e6:5a:d7:a7:ea:45:87:b3:ad:a4:
2f:3e:22:9b:f1:1a:87:5a:90:f0:a7:9d:68:03:18:
05:38:cc:5d:05:0f:4a:8f:7a:5e:6f:e2:9c:6f:53:
3f:70:58:71:e7:33:f2:c3:ad:17:ac:73:7d:d7:9b:
df:bc:db:1a:63:15:ce:21:75:e9:5c:d3:46:36:71:
fa:b6:22:e8:bd:fa:9d:31:5d:74:3f:7a:b6:10:42:
39:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C5:3F:A7:CF:D8:01:E5:55:B2:A7:A2:73:97:71:7E:52:2C:E1:3C
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS209557.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.241.159.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:7a:77:9c:9b:3c:7a:fd:75:d8:77:07:27:fa:9b:b2:f4:25:
f7:22:ea:d7:9c:89:7c:0f:90:bf:b7:3d:5d:eb:7b:96:44:71:
9e:73:ae:b3:8b:b7:12:61:2d:6f:f1:f2:68:e0:55:46:94:85:
1a:63:ef:3b:e0:56:9d:60:7d:5a:3e:ef:9a:2b:f8:ba:3a:9a:
b3:4a:5c:0e:11:f3:80:17:3c:ae:dc:48:4f:85:4b:e4:bb:78:
81:ac:2b:09:a0:ae:36:17:15:78:be:0d:2b:4f:d7:e0:2b:89:
89:ab:85:28:c1:88:b1:b5:ce:15:4f:fd:da:f8:84:ad:fa:4a:
31:86:37:65:13:e1:58:62:c9:2a:a7:31:78:8e:b3:36:74:34:
c1:25:b2:eb:0a:79:2f:ba:c8:9b:82:f4:11:b2:20:22:fe:16:
7d:8f:7c:79:e1:10:05:f4:3d:2e:74:58:9f:02:9a:d3:05:83:
81:b8:62:03:27:2f:43:ad:f5:45:5f:6e:4c:31:6c:e1:e5:7b:
a9:9e:aa:08:03:56:69:99:bc:bb:b5:01:fa:c5:e1:6d:37:b5:
30:9d:3e:f9:af:18:5b:2c:f6:5f:1d:61:56:8b:87:83:1b:3b:
21:3d:2d:47:05:28:f4:8a:c1:78:4d:d7:98:90:63:19:9c:33:
04:74:14:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 08:31:07 2026 by rpki-client