Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214159.roa
File: AS214159.roa (raw, json)
Hash identifier: l+Ebn2ai5QyfMIqPdFNN4PJiBByZxsGfLg9WJGC4/CQ=
Subject key identifier: 8C:EC:21:A3:C2:0A:AD:80:EE:11:CE:DA:25:DF:01:54:5A:2F:E7:23
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 7790A3AEDD42F11512973891A986EF789A43AA32
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214159.roa
Signing time: Thu 07 May 2026 12:56:03 +0000
ROA not before: Thu 07 May 2026 12:51:03 +0000
ROA not after: Thu 06 May 2027 12:56:03 +0000
asID: 214159
IP address blocks: 46.202.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 May 2026 14:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:90:a3:ae:dd:42:f1:15:12:97:38:91:a9:86:ef:78:9a:43:aa:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 7 12:51:03 2026 GMT
Not After : May 6 12:56:03 2027 GMT
Subject: CN=8CEC21A3C20AAD80EE11CEDA25DF01545A2FE723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ae:02:9a:1c:09:1f:f5:50:4c:c0:b1:da:e4:
09:c3:d0:78:fd:d9:ac:48:52:02:9d:21:8c:8c:e9:
6f:37:c6:b6:99:12:86:15:ba:85:06:6f:79:96:01:
2e:14:01:c6:bb:01:56:cb:e3:b1:ac:70:74:53:1b:
22:46:b8:4e:a0:f4:d3:28:86:6b:4b:88:3a:15:7c:
61:0c:7e:97:49:51:10:d8:04:53:9f:a2:24:54:86:
45:75:e2:90:2f:00:11:f1:96:1e:d8:eb:fb:d8:91:
a1:0a:7b:45:7e:02:a5:85:66:ba:99:7d:f6:f1:81:
95:1c:15:21:8a:d9:6f:a5:e5:38:f1:e5:36:e5:15:
56:75:40:7a:9b:5e:37:ea:b8:22:cc:60:8b:d9:2c:
ad:8b:a7:0f:a0:7b:b5:1f:5a:1c:51:ed:6f:df:40:
a1:42:07:97:a5:02:03:96:e9:dd:7d:b3:6f:52:c4:
6e:58:e0:dc:bb:5c:61:9b:d9:7f:29:93:a0:7a:2a:
0e:24:e2:f6:22:64:4f:cb:f9:77:df:f5:42:b3:78:
b5:dd:64:76:65:7e:63:4e:1a:b5:bb:19:bb:22:8c:
cc:3b:bd:29:8a:9d:a5:90:11:7b:6a:f4:b6:57:d0:
7e:81:82:00:15:19:6a:d8:b3:bb:5c:d0:1b:c9:2a:
56:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EC:21:A3:C2:0A:AD:80:EE:11:CE:DA:25:DF:01:54:5A:2F:E7:23
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214159.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.39.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:d0:74:2c:83:6b:34:ff:b0:55:e2:72:f4:cb:89:c0:20:ee:
75:b3:f2:4c:0e:fc:db:c4:6f:a3:6b:61:c9:af:d3:e1:23:2d:
dd:3b:e9:53:f1:84:5d:47:9f:e9:8c:68:90:5e:cb:8b:96:91:
df:db:a1:5f:ea:68:c7:15:e7:d5:d6:95:31:9e:a4:4d:27:06:
c0:7a:7e:3c:ba:e6:06:b2:d6:19:7d:c9:ba:84:74:3d:57:49:
b7:65:60:bf:5f:47:d5:85:17:71:63:6a:51:17:c3:a8:77:b4:
b0:ed:5d:19:09:85:3d:08:1f:03:41:6c:aa:5e:40:1c:88:58:
11:d3:5d:12:76:45:b1:5d:c9:23:4d:04:7e:ce:49:cb:41:31:
6c:ab:e7:f1:dc:25:f5:d7:6e:ed:02:bc:4c:e1:25:cb:db:27:
7d:db:25:42:95:bf:fc:d7:fa:0a:66:40:e8:84:e8:5a:81:7d:
4f:a9:5f:5d:6c:8d:0c:f4:5a:d0:51:d8:23:81:45:ce:02:dd:
ea:78:64:65:f6:6f:4a:b6:d1:c1:19:c0:d4:3e:0c:ae:80:a6:
91:d8:ad:a7:81:eb:dd:3e:75:18:50:c8:13:5f:31:05:b0:72:
ba:32:bb:a0:0f:27:ac:ca:53:f1:09:7b:b3:ca:6a:f7:56:96:
75:6f:da:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 8 00:35:02 2026 by rpki-client