Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS401615.roa
File: AS401615.roa (raw, json)
Hash identifier: KdIU/+svR0KGSFQYVerOEJW5LzS+/+vnukgz3d8QPQA=
Subject key identifier: 4E:14:9F:36:C4:F6:93:2C:DD:17:AC:D0:1A:B1:2C:6C:2F:E4:00:F5
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 08D6085FD6133A30834B3B0D1A3E4E3DB004931B
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS401615.roa
Signing time: Tue 14 Apr 2026 20:47:54 +0000
ROA not before: Tue 14 Apr 2026 20:42:54 +0000
ROA not after: Tue 13 Apr 2027 20:47:54 +0000
asID: 401615
IP address blocks: 141.11.76.0/24 maxlen: 24
141.11.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 08:16:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:d6:08:5f:d6:13:3a:30:83:4b:3b:0d:1a:3e:4e:3d:b0:04:93:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Apr 14 20:42:54 2026 GMT
Not After : Apr 13 20:47:54 2027 GMT
Subject: CN=4E149F36C4F6932CDD17ACD01AB12C6C2FE400F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e7:9e:99:22:e8:f9:e7:09:3d:f4:1a:74:8c:
fa:07:67:53:63:82:ad:cb:14:8b:ab:17:65:b3:60:
8c:da:02:57:51:2b:47:39:65:5b:82:79:ac:9f:e3:
4a:81:78:be:5b:18:76:32:af:ed:25:6a:49:4d:dc:
f7:b2:37:dc:f0:05:c0:f5:2f:df:1d:09:06:76:75:
e1:bb:73:7a:7c:63:ec:d6:b7:10:07:db:00:83:6e:
15:7c:f2:33:a1:d5:9e:1f:e4:9f:fd:d7:9a:c6:bd:
c1:34:d3:14:7d:52:a6:65:0f:31:79:14:a1:95:ec:
13:fa:b7:52:9e:ff:21:67:6f:ad:d7:dd:ae:b4:d6:
82:a9:51:ea:79:8c:f7:e3:1f:a2:e2:a6:30:e6:b2:
8e:d0:74:06:b6:3d:43:88:dc:ef:24:93:0b:55:b1:
bc:e6:bf:bd:d3:8d:e5:ba:e3:8d:8d:a0:9d:0d:2e:
19:32:1f:6f:f1:ae:d8:ee:ea:5e:e7:ae:ea:71:f0:
54:32:b3:8b:ba:70:c9:71:20:1c:16:8a:05:2e:1f:
17:49:98:35:2b:a3:1d:57:8a:4c:54:4b:08:8d:5b:
d3:9c:de:b7:de:af:b0:c6:b0:c1:36:a0:df:35:d7:
64:7e:6f:0a:ac:97:ae:fb:78:0f:63:57:30:fa:37:
eb:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:14:9F:36:C4:F6:93:2C:DD:17:AC:D0:1A:B1:2C:6C:2F:E4:00:F5
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS401615.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.76.0/24
141.11.140.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:c7:46:db:1c:a5:b2:26:c7:bb:68:94:6a:ec:39:00:46:23:
26:ba:02:9a:2d:bb:2d:70:64:57:7e:18:f2:b8:47:3d:6e:ed:
63:c8:ae:d3:75:96:f4:e7:0e:35:32:46:40:cd:69:65:97:a9:
4b:d3:36:54:ef:5f:59:c7:40:0c:a1:9d:c7:95:49:96:d1:64:
f1:b6:40:52:71:6c:07:ed:bb:99:c6:fd:9a:c0:da:e1:2e:1b:
82:a5:dc:7b:7a:1e:12:76:f0:01:bc:44:61:1f:18:80:48:11:
ff:5d:f9:55:ab:77:84:0c:06:66:59:83:eb:c4:f3:ac:7b:5a:
40:6c:16:8c:f6:b6:57:cc:c2:bb:de:b0:ef:84:46:51:7f:43:
c6:9a:33:02:83:1e:50:db:39:89:53:f2:f6:73:59:45:cb:01:
2a:20:79:c6:7b:77:dd:84:2c:9c:25:e6:03:dd:7c:9a:3c:77:
36:f0:07:3d:cd:6f:ba:36:49:83:a6:50:05:cf:96:9a:c5:b8:
2e:6d:18:db:1c:ec:e3:12:cc:5a:6c:3e:ff:ba:fc:d9:c2:d3:
a6:84:46:2f:41:3f:7a:fd:3c:1e:c9:4b:e2:aa:55:04:36:3d:
9f:5a:0d:a5:a0:39:21:68:92:fb:bf:96:1c:05:70:95:95:18:
0f:61:04:3b
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIUCNYIX9YTOjCDSzsNGj5OPbAEkxswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yNjA0MTQyMDQyNTRaFw0yNzA0MTMyMDQ3NTRaMDMxMTAvBgNV
BAMTKDRFMTQ5RjM2QzRGNjkzMkNERDE3QUNEMDFBQjEyQzZDMkZFNDAwRjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH556ZIuj55wk99Bp0jPoHZ1Nj
gq3LFIurF2WzYIzaAldRK0c5ZVuCeayf40qBeL5bGHYyr+0laklN3PeyN9zwBcD1
L98dCQZ2deG7c3p8Y+zWtxAH2wCDbhV88jOh1Z4f5J/915rGvcE00xR9UqZlDzF5
FKGV7BP6t1Ke/yFnb63X3a601oKpUep5jPfjH6LipjDmso7QdAa2PUOI3O8kkwtV
sbzmv73TjeW6442NoJ0NLhkyH2/xrtju6l7nrupx8FQys4u6cMlxIBwWigUuHxdJ
mDUrox1XikxUSwiNW9Oc3rfer7DGsME2oN8112R+bwqsl677eA9jVzD6N+tvAgMB
AAGjggIQMIICDDAdBgNVHQ4EFgQUThSfNsT2kyzdF6zQGrEsbC/kAPUwHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTNDAxNjE1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAjQtM
AwQAjQuMMA0GCSqGSIb3DQEBCwUAA4IBAQAfx0bbHKWyJse7aJRq7DkARiMmugKa
LbstcGRXfhjyuEc9bu1jyK7TdZb05w41MkZAzWlll6lL0zZU719Zx0AMoZ3HlUmW
0WTxtkBScWwH7buZxv2awNrhLhuCpdx7eh4SdvABvERhHxiASBH/XflVq3eEDAZm
WYPrxPOse1pAbBaM9rZXzMK73rDvhEZRf0PGmjMCgx5Q2zmJU/L2c1lFywEqIHnG
e3fdhCycJeYD3XyaPHc28Ac9zW+6NkmDplAFz5aaxbgubRjbHOzjEsxabD7/uvzZ
wtOmhEYvQT96/TweyUviqlUENj2fWg2loDkhaJL7v5YcBXCVlRgPYQQ7
-----END CERTIFICATE-----
Generated at Sat Apr 18 18:17:29 2026 by rpki-client