Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS214578.roa
File: AS214578.roa (raw, json)
Hash identifier: 1MG+FmrVBNwbXw00JErUwSJVXX4kFqHWrElZCgDhnIE=
Subject key identifier: 12:23:23:93:43:9A:7E:2A:51:B0:7A:D9:33:A4:BD:62:81:84:CE:F8
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 44838018F7D7FEF6DACA24B016D5595399681DF9
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS214578.roa
Signing time: Wed 20 May 2026 08:09:23 +0000
ROA not before: Wed 20 May 2026 08:04:23 +0000
ROA not after: Wed 19 May 2027 08:09:23 +0000
asID: 214578
IP address blocks: 51.241.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:83:80:18:f7:d7:fe:f6:da:ca:24:b0:16:d5:59:53:99:68:1d:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: May 20 08:04:23 2026 GMT
Not After : May 19 08:09:23 2027 GMT
Subject: CN=12232393439A7E2A51B07AD933A4BD628184CEF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:35:29:10:06:41:f1:4f:e3:3d:72:76:ad:8a:
07:b6:da:dc:8d:33:93:bc:c1:0a:11:ec:4c:eb:9e:
71:6b:4d:5d:e4:1c:a4:7e:9c:c6:db:ad:30:36:f9:
0d:c7:d2:d9:df:cb:67:45:a2:b8:d0:81:d5:71:5d:
fa:b8:7d:06:9a:16:66:63:ae:4d:91:4d:04:1b:8f:
7d:94:a1:0f:65:04:06:28:68:e7:a6:55:e4:9f:8b:
8b:ef:c5:dd:e0:b4:e8:98:79:fa:26:59:b9:76:c0:
d7:23:a3:3a:cb:61:6f:a5:6d:4b:3b:83:5e:7d:37:
38:e1:f5:1b:40:11:31:0d:53:97:77:87:38:60:9b:
be:f6:78:fa:bf:f6:bf:47:e3:0f:85:91:cf:43:a5:
c5:5c:58:94:e9:b4:e1:c6:51:8c:fd:aa:92:15:29:
54:8a:67:d2:c3:af:f9:7f:41:df:0c:05:a0:25:71:
9a:a9:8a:21:84:95:df:03:9a:52:af:8a:f6:e1:99:
04:72:9e:a2:ce:9c:ce:d9:22:f4:df:c8:cb:d1:13:
e0:60:0a:ee:7e:6a:e9:31:3e:78:bb:fa:50:ae:c9:
02:d5:80:d1:dc:63:3b:14:39:0e:56:5c:f7:86:a3:
9f:c4:29:3a:27:62:c3:fb:aa:82:32:bb:17:12:64:
b8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:23:23:93:43:9A:7E:2A:51:B0:7A:D9:33:A4:BD:62:81:84:CE:F8
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS214578.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.241.144.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:14:d3:2a:7a:d7:81:de:bc:5e:c9:63:83:ca:ed:22:44:dc:
07:91:70:af:3c:42:05:9b:a6:47:c0:f0:3f:d2:75:5d:af:27:
5f:22:18:a4:db:17:83:97:c9:38:34:a1:47:6b:4e:a3:f8:91:
23:f6:cc:fc:96:b9:dd:5a:c4:c1:46:40:ee:85:72:a5:1c:b1:
ad:40:f6:50:df:b2:3f:17:8f:24:15:27:2e:7d:b2:da:2d:e7:
30:66:be:c1:42:38:d6:86:10:28:9d:2b:1c:0c:b7:7d:89:1f:
20:4c:eb:49:2d:c4:6e:13:87:7c:3c:b3:20:7d:e0:77:05:1b:
18:3e:2c:a6:d8:c8:c0:8e:1a:dc:da:c5:8a:9e:36:58:20:a4:
64:cc:6e:43:36:f6:80:35:9f:b4:6b:c6:6e:0c:b7:be:08:7d:
ce:52:f3:65:e1:3b:f4:74:da:8a:4b:1d:3b:a1:b2:ce:83:5a:
6d:d3:51:2e:e3:67:63:90:f0:6f:f4:b1:09:04:5f:3b:b0:a3:
32:a9:1d:e9:2d:51:ff:fb:21:03:c9:97:fc:99:4b:04:d7:9a:
df:65:bb:3e:24:ec:95:00:79:11:cf:ff:d8:bd:6d:39:04:6c:
0e:57:77:08:3b:8d:39:35:02:d0:68:73:99:c3:b5:ed:33:9f:
18:1e:d4:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:24:53 2026 by rpki-client