Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS213476.roa
File: AS213476.roa (raw, json)
Hash identifier: gV3iS18AouExZ5ibSUb8UW9pn5O1Oaw5bPBUEEm9ORg=
Subject key identifier: 87:6F:91:4B:25:74:2B:DA:30:37:5E:0C:F8:03:BC:57:5B:B0:03:64
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 53E8902E649C421165995837D4B1A848100FAA11
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS213476.roa
Signing time: Wed 27 May 2026 07:31:23 +0000
ROA not before: Wed 27 May 2026 07:26:23 +0000
ROA not after: Wed 26 May 2027 07:31:23 +0000
asID: 213476
IP address blocks: 178.92.34.0/24 maxlen: 24
178.92.43.0/24 maxlen: 24
178.93.115.0/24 maxlen: 24
178.94.150.0/24 maxlen: 24
178.94.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jun 2026 07:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:e8:90:2e:64:9c:42:11:65:99:58:37:d4:b1:a8:48:10:0f:aa:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 27 07:26:23 2026 GMT
Not After : May 26 07:31:23 2027 GMT
Subject: CN=876F914B25742BDA30375E0CF803BC575BB00364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:65:a5:15:52:76:74:10:25:9a:ea:ad:f0:24:
13:4c:80:a4:45:b7:5b:e9:b2:93:94:ab:4f:4b:bb:
2a:88:f9:a5:66:96:66:b6:0a:36:b7:3e:38:61:f0:
a0:29:0e:49:05:58:94:c9:bc:8a:91:b6:8d:4b:d2:
d0:8f:1c:af:25:73:8c:1b:5c:20:15:d3:fe:29:ae:
63:91:b6:26:96:56:75:c3:6a:ee:4c:88:e0:b6:70:
3e:81:06:3f:16:32:56:60:52:19:05:45:bf:53:ed:
a6:a4:0f:a6:4d:1b:06:4d:35:d1:0f:66:7c:c1:df:
b3:b4:3b:e9:0d:ff:3a:e5:1c:6f:fa:18:06:75:02:
be:33:80:7c:98:6d:24:17:97:fe:1e:f8:53:9e:e1:
7c:6b:18:1b:c1:ee:ca:46:a4:b2:2e:a5:77:b1:9a:
86:32:34:06:33:17:c2:01:6f:fb:4d:99:87:30:45:
cf:e9:d2:b0:8d:8b:5f:e1:fc:0e:13:c8:d1:83:0e:
1a:be:59:7c:cf:44:f5:94:b5:d9:6b:85:56:12:54:
9d:59:75:27:2a:af:5a:38:d4:90:de:ba:b4:89:b2:
f7:7e:a9:aa:6a:30:de:1d:c0:2a:23:83:df:31:2b:
07:a3:46:96:2d:5d:9b:8a:77:df:c4:a6:ea:c1:1c:
73:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6F:91:4B:25:74:2B:DA:30:37:5E:0C:F8:03:BC:57:5B:B0:03:64
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS213476.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.92.34.0/24
178.92.43.0/24
178.93.115.0/24
178.94.150.0/23
Signature Algorithm: sha256WithRSAEncryption
61:6c:9e:67:98:b1:1c:01:65:7b:8a:ce:7d:14:90:c3:d7:5b:
52:a9:99:82:25:93:af:c0:d5:c0:52:6b:c4:37:e1:21:86:14:
c4:ae:46:63:a2:2c:31:35:0b:dc:3b:db:37:02:26:78:b3:1e:
95:31:6c:bc:5b:8a:c6:db:d3:af:3b:cf:06:86:21:81:cb:74:
05:be:78:76:e2:20:41:bb:7f:c2:99:42:7d:5f:14:e3:d8:7f:
50:a8:fa:e5:3c:d2:d9:60:7f:db:24:79:14:40:b0:d4:6a:93:
6a:4f:2c:7c:cc:d0:a7:46:47:2b:7c:27:f0:08:7d:7f:b8:7b:
7a:73:80:46:44:97:7c:54:66:e9:a7:66:1a:66:88:43:51:d9:
ec:d2:a6:31:db:ec:e2:97:5f:9a:18:37:21:1f:a1:60:27:93:
1e:d9:bd:cb:da:90:78:55:e4:92:1f:33:c2:32:5d:0c:d7:5f:
c5:f0:0d:e2:54:31:9e:b5:42:33:ee:f6:09:94:51:11:97:72:
67:b9:8f:f8:ad:62:ca:1d:2a:7d:f9:a1:d5:6c:48:56:55:14:
02:2b:50:8b:0b:58:66:96:99:63:ba:8d:40:e8:73:46:b4:59:
e4:72:bc:44:a6:b1:6f:20:84:10:f7:34:62:d0:78:69:d1:cd:
d5:f3:bf:fd
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgIUU+iQLmScQhFlmVg31LGoSBAPqhEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNjA1MjcwNzI2MjNaFw0yNzA1MjYwNzMxMjNaMDMxMTAvBgNV
BAMTKDg3NkY5MTRCMjU3NDJCREEzMDM3NUUwQ0Y4MDNCQzU3NUJCMDAzNjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuZaUVUnZ0ECWa6q3wJBNMgKRF
t1vpspOUq09LuyqI+aVmlma2Cja3Pjhh8KApDkkFWJTJvIqRto1L0tCPHK8lc4wb
XCAV0/4prmORtiaWVnXDau5MiOC2cD6BBj8WMlZgUhkFRb9T7aakD6ZNGwZNNdEP
ZnzB37O0O+kN/zrlHG/6GAZ1Ar4zgHyYbSQXl/4e+FOe4XxrGBvB7spGpLIupXex
moYyNAYzF8IBb/tNmYcwRc/p0rCNi1/h/A4TyNGDDhq+WXzPRPWUtdlrhVYSVJ1Z
dScqr1o41JDeurSJsvd+qapqMN4dwCojg98xKwejRpYtXZuKd9/EpurBHHOHAgMB
AAGjggIcMIICGDAdBgNVHQ4EFgQUh2+RSyV0K9owN14M+AO8V1uwA2QwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjEzNDc2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAslwi
AwQAslwrAwQAsl1zAwQBsl6WMA0GCSqGSIb3DQEBCwUAA4IBAQBhbJ5nmLEcAWV7
is59FJDD11tSqZmCJZOvwNXAUmvEN+EhhhTErkZjoiwxNQvcO9s3AiZ4sx6VMWy8
W4rG29OvO88GhiGBy3QFvnh24iBBu3/CmUJ9XxTj2H9QqPrlPNLZYH/bJHkUQLDU
apNqTyx8zNCnRkcrfCfwCH1/uHt6c4BGRJd8VGbpp2YaZohDUdns0qYx2+zil1+a
GDchH6FgJ5Me2b3L2pB4VeSSHzPCMl0M11/F8A3iVDGetUIz7vYJlFERl3JnuY/4
rWLKHSp9+aHVbEhWVRQCK1CLC1hmlpljuo1A6HNGtFnkcrxEprFvIIQQ9zRi0Hhp
0c3V87/9
-----END CERTIFICATE-----
Generated at Mon Jun 1 16:20:10 2026 by rpki-client