Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS49592.roa
File: AS49592.roa (raw, json)
Hash identifier: hmjzBro0ejXatfh7GpJz3XqkQqYVaJJNkQ7aMDn6G3Y=
Subject key identifier: F6:D8:2F:68:45:FC:F1:5D:BE:07:28:CE:AA:C9:40:B4:0D:FD:62:8E
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 0A5BFFA2B25F38F66FFEF936D67D19AB5E60A56D
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS49592.roa
Signing time: Mon 01 Jun 2026 22:36:30 +0000
ROA not before: Mon 01 Jun 2026 22:31:30 +0000
ROA not after: Mon 31 May 2027 22:36:30 +0000
asID: 49592
IP address blocks: 51.241.104.0/22 maxlen: 24
188.220.0.0/22 maxlen: 24
188.220.24.0/22 maxlen: 24
188.220.180.0/22 maxlen: 24
188.220.196.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:5b:ff:a2:b2:5f:38:f6:6f:fe:f9:36:d6:7d:19:ab:5e:60:a5:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Jun 1 22:31:30 2026 GMT
Not After : May 31 22:36:30 2027 GMT
Subject: CN=F6D82F6845FCF15DBE0728CEAAC940B40DFD628E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:29:6d:8e:db:9e:e2:ab:f5:15:d7:24:66:9e:
33:88:c5:a0:61:89:d7:df:ab:96:51:95:1c:a5:47:
8c:98:af:96:cc:ab:73:9b:fd:9f:06:f5:16:f3:04:
f9:be:ca:d0:0b:b4:11:02:f3:af:bd:aa:7a:a6:34:
ba:d5:45:7e:7b:fc:5c:19:65:72:75:2a:28:cc:6a:
64:cb:fb:75:a0:ef:69:be:50:f4:e5:06:13:5c:7b:
eb:8a:06:a2:bc:0e:07:b9:3d:20:7e:38:a7:67:3f:
c3:29:3b:7b:06:bd:6f:68:19:63:56:b6:28:0b:4f:
aa:5b:4f:f0:ef:6b:93:a7:cd:59:f4:f6:76:7f:61:
6e:81:60:d6:13:83:b5:17:13:fb:c6:04:94:44:00:
dd:fb:67:69:2b:41:7f:58:9b:be:47:8b:c0:d2:49:
f4:78:1a:6c:c9:24:82:b2:53:1d:96:a9:db:1a:df:
fd:9f:cc:02:2d:88:3b:3a:56:a7:d3:81:89:5d:a6:
eb:4d:72:81:a3:07:c5:c2:21:c8:b6:ce:41:56:cd:
db:f3:3a:ec:a0:85:6f:cf:e2:22:9e:0b:6d:ab:c0:
6f:38:7b:1b:92:2b:4a:ab:d9:df:6c:d5:d0:69:36:
b4:db:24:e0:9f:eb:1a:fb:f1:3b:fe:e0:ab:04:35:
00:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D8:2F:68:45:FC:F1:5D:BE:07:28:CE:AA:C9:40:B4:0D:FD:62:8E
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS49592.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.241.104.0/22
188.220.0.0/22
188.220.24.0/22
188.220.180.0/22
188.220.196.0/22
Signature Algorithm: sha256WithRSAEncryption
94:b4:36:cd:2d:50:5c:f2:9a:68:0c:11:c4:f0:29:82:95:ec:
1f:e4:78:89:7d:f3:42:08:7e:63:3a:a0:17:57:d3:4a:f6:80:
df:e8:17:6b:51:77:07:d2:74:ff:81:89:93:fc:5b:82:32:f1:
08:07:f0:e1:76:6f:71:da:cb:10:07:81:f6:9a:3c:52:d7:f1:
8e:f4:00:30:f5:86:b1:f0:63:9e:bb:6d:a6:35:24:26:21:8c:
55:28:c2:4b:c1:b5:9d:ce:93:48:04:6f:fe:63:52:01:4f:fe:
b4:c8:48:7b:ec:d0:1a:52:da:4f:75:c4:d6:cd:78:b2:31:35:
dc:95:aa:6c:e4:3e:36:bb:69:75:55:ba:1a:63:a1:f9:0b:ff:
1a:3a:04:d3:2d:e1:34:5c:4d:f8:a9:33:54:8b:34:15:8c:72:
f9:18:9c:b5:f6:fb:be:06:b4:e1:00:85:2a:69:78:ee:35:7e:
bf:62:c8:9c:f4:b1:1f:1a:e3:b1:79:47:9d:ed:83:44:7d:6f:
56:0a:e0:bd:89:38:84:76:63:ac:89:60:fb:0a:de:97:d5:0e:
ce:39:26:c5:df:48:92:fc:ea:6d:cd:2f:3d:5e:aa:14:7c:19:
77:2a:7b:32:c1:32:c1:85:ea:60:b9:8d:aa:a0:59:84:8d:16:
1c:79:13:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 08:31:11 2026 by rpki-client