
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS215152.roa
File: AS215152.roa (raw, json)
Hash identifier: 7wpfec5Jaa9dFLhFURnNLYMjIihBPPWuMHkQz8ZRnAs=
Subject key identifier: 5D:BA:5E:EB:0D:73:61:C2:0E:2A:B6:C6:3D:DE:AC:00:C7:D5:7A:42
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 688901BA65FEE917470A89D3FBCF707264439BC3
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS215152.roa
Signing time: Thu 16 Jul 2026 02:03:07 +0000
ROA not before: Thu 16 Jul 2026 01:58:07 +0000
ROA not after: Thu 15 Jul 2027 02:03:07 +0000
asID: 215152
IP address blocks: 188.221.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Jul 2026 09:43:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:89:01:ba:65:fe:e9:17:47:0a:89:d3:fb:cf:70:72:64:43:9b:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Jul 16 01:58:07 2026 GMT
Not After : Jul 15 02:03:07 2027 GMT
Subject: CN=5DBA5EEB0D7361C20E2AB6C63DDEAC00C7D57A42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:46:0c:59:24:8f:9b:e2:26:c6:2e:68:75:99:
77:0f:d7:a2:4e:e5:38:ad:b2:e8:f2:ab:9e:84:e5:
92:60:fe:f4:a2:2b:cb:61:43:f2:42:ff:64:79:1e:
5d:71:31:ca:27:dc:cb:85:b9:12:dc:6a:eb:de:4f:
3f:69:04:f7:04:5e:de:7e:3c:92:f8:92:33:18:e8:
51:98:3a:43:b7:ff:da:bd:60:41:1e:86:08:72:e8:
50:cb:60:0a:04:37:68:ed:9f:f9:0a:40:18:39:b8:
59:1f:18:83:42:83:a8:11:05:83:c6:8e:68:c8:aa:
91:85:04:eb:3b:18:9a:2b:38:1a:6e:ad:09:9e:7e:
fc:dd:8e:a7:db:27:17:fb:b1:26:a1:71:62:94:c1:
12:ef:5b:c6:dc:13:18:32:04:5e:2e:50:ba:0a:eb:
d4:73:6a:08:36:10:c2:b3:fa:5a:97:e2:10:f4:4f:
23:ab:6e:f7:bc:5e:93:1e:b6:0b:7c:22:72:d6:06:
71:cb:22:f4:57:59:17:bc:e4:d9:2d:e3:cb:a9:b4:
6d:a5:c0:f7:3d:dc:45:61:92:18:13:f6:ed:01:e6:
01:76:86:7f:c4:2b:46:25:4c:e5:d1:a6:31:18:b7:
33:4d:f2:06:a9:9f:45:41:02:02:8e:af:1c:c2:fa:
85:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:BA:5E:EB:0D:73:61:C2:0E:2A:B6:C6:3D:DE:AC:00:C7:D5:7A:42
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS215152.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.221.170.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:30:8e:66:89:e4:ee:10:ca:cb:5b:74:54:91:c2:e0:7d:d3:
9a:c2:91:05:70:4d:8a:27:5e:9f:78:07:41:4e:1f:1a:dc:cf:
99:a4:7b:42:b4:14:60:3d:98:83:39:b7:2b:62:17:95:0a:0a:
dc:35:af:ad:74:81:5f:29:35:33:f6:6c:2c:b2:d9:bf:11:68:
cb:82:87:51:0f:26:c9:c1:34:22:b5:8b:0c:4a:17:61:c9:af:
31:82:09:58:37:38:21:d5:0a:5a:c4:09:34:ee:a0:32:93:a0:
7e:ab:f6:2b:f5:48:5f:3a:67:c2:17:0c:73:ff:60:aa:0a:bc:
69:32:12:1b:19:21:87:48:20:b9:e7:83:fd:01:78:1b:41:8a:
e5:97:c2:42:a4:3d:a3:0b:e9:e5:60:6f:74:46:68:98:bd:37:
33:5d:75:9c:49:c1:8b:1c:67:61:34:e9:85:0c:50:38:ac:53:
71:9f:a2:4f:df:39:c8:24:8a:f9:21:47:6c:96:64:79:47:cf:
f7:df:da:68:36:e7:35:6e:19:80:dc:f8:24:24:29:70:68:be:
2e:9e:5a:fe:39:d7:5e:b2:c6:1d:d9:00:72:4c:31:b6:f9:80:
56:8e:01:8a:ca:ec:fe:eb:15:20:01:14:50:6b:51:31:51:1e:
6f:e3:b8:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 18:45:00 2026 by rpki-client