Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa
File: AS137517.roa (raw, json)
Hash identifier: XRFGK90PkqFm0rGSQ2aPezoX2EqkWDeCemyFBfkFVaM=
Subject key identifier: FF:17:3C:44:FA:BC:06:00:6D:1D:35:08:98:79:EC:67:45:1E:D4:B5
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 4EC103D4B52B05ADBC5D50DE740ECBC830D819F8
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa
Signing time: Fri 03 Apr 2026 02:33:19 +0000
ROA not before: Fri 03 Apr 2026 02:28:19 +0000
ROA not after: Fri 02 Apr 2027 02:33:19 +0000
asID: 137517
IP address blocks: 91.124.176.0/24 maxlen: 24
95.134.51.0/24 maxlen: 24
95.134.86.0/24 maxlen: 24
95.135.82.0/24 maxlen: 24
178.92.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:c1:03:d4:b5:2b:05:ad:bc:5d:50:de:74:0e:cb:c8:30:d8:19:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 3 02:28:19 2026 GMT
Not After : Apr 2 02:33:19 2027 GMT
Subject: CN=FF173C44FABC06006D1D35089879EC67451ED4B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:12:d9:63:71:59:93:58:13:9f:77:90:db:2f:
36:26:13:b1:05:48:4e:88:04:8b:2d:37:e0:a2:19:
62:08:70:02:fe:d7:64:8f:10:03:0c:87:2a:95:0c:
e9:f8:ac:00:ef:b1:d9:68:2c:a0:1a:93:51:6f:da:
85:b5:9d:97:03:61:36:f9:4b:42:7d:c9:1f:21:21:
4e:5f:b1:c9:7f:c9:6c:0b:55:fe:f9:f6:59:22:23:
22:b4:e5:29:ce:21:a2:b5:10:b7:a9:a9:4b:a0:91:
c2:f0:95:3b:ba:8a:d2:d0:cf:99:8d:51:d2:0f:88:
96:18:3c:09:46:17:b5:5b:4c:be:6b:94:b8:9c:f1:
15:7f:97:a0:23:2c:1e:bb:0b:1e:8f:cb:46:ca:7a:
e5:dc:3d:cf:23:44:be:47:9f:a8:00:cf:90:bf:76:
f7:ec:6e:07:e5:64:8b:84:c7:fd:22:af:b1:33:6b:
98:2a:26:f6:5e:aa:77:06:59:07:08:89:e9:5f:01:
d9:8f:91:2f:6d:6a:18:a9:dc:1d:2a:8d:a7:74:eb:
1e:aa:5e:22:7c:96:c0:95:ea:b6:e9:75:19:96:95:
e7:f1:40:08:59:fc:45:ab:4d:bb:72:f9:6d:67:d3:
51:60:8c:5a:40:2c:66:05:ba:04:09:b8:13:df:96:
4d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:17:3C:44:FA:BC:06:00:6D:1D:35:08:98:79:EC:67:45:1E:D4:B5
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.176.0/24
95.134.51.0/24
95.134.86.0/24
95.135.82.0/24
178.92.157.0/24
Signature Algorithm: sha256WithRSAEncryption
52:9c:3c:9a:44:6f:2d:80:ac:2a:a1:66:7b:4b:3b:07:e2:c2:
da:c3:b4:d2:0d:1a:fb:21:4e:4a:16:2a:41:51:e1:58:3a:1b:
a9:5a:b3:89:e9:34:fc:d1:69:64:52:4a:55:35:b0:2c:74:37:
60:25:22:f0:5b:e1:66:4c:e5:97:f3:29:cd:eb:e6:d3:d9:8e:
b1:d3:96:69:64:9f:f4:00:1b:b7:41:00:21:7b:f7:02:4c:0f:
1d:0e:60:8f:0c:ac:68:3c:10:28:4c:2d:16:95:b8:6f:c4:cc:
65:d2:7c:3b:00:c7:e5:de:23:9c:78:94:8b:54:7a:b6:23:35:
ad:ef:d1:aa:eb:eb:9f:b9:47:1f:cc:9f:9f:20:19:29:cf:64:
1e:a8:fc:74:4a:74:57:fd:4b:61:6c:43:ef:b0:7e:70:68:b4:
0c:03:45:39:ab:ec:a3:47:47:cd:c0:4d:64:c8:cb:4c:32:b0:
6f:0a:51:58:cf:d4:88:71:62:df:09:7b:1d:bd:6e:47:34:cc:
80:ba:41:ea:6b:62:8f:89:5e:79:09:6c:80:de:8e:6d:3c:47:
58:29:2e:83:fd:07:79:87:fa:79:91:9e:4c:60:28:7d:a0:55:
49:d2:80:3a:fe:d5:81:7a:2e:4e:70:f8:17:4f:48:8a:1b:26:
1e:3d:20:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:51:49 2026 by rpki-client