Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216475.roa
File: AS216475.roa (raw, json)
Hash identifier: 6Li+bIw5MSiQFq+aVDrMxy17+xOc9wlXwFBGGYXZ9aY=
Subject key identifier: 27:37:9A:51:E4:45:F4:FC:A4:D2:3D:FA:EE:29:C2:FD:3D:49:80:AE
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 5AC52E3690E2748EFF61B0A7874B5FC95F31D4D1
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216475.roa
Signing time: Fri 29 May 2026 08:09:52 +0000
ROA not before: Fri 29 May 2026 08:04:52 +0000
ROA not after: Fri 28 May 2027 08:09:52 +0000
asID: 216475
IP address blocks: 46.202.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 30 May 2026 07:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:c5:2e:36:90:e2:74:8e:ff:61:b0:a7:87:4b:5f:c9:5f:31:d4:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 29 08:04:52 2026 GMT
Not After : May 28 08:09:52 2027 GMT
Subject: CN=27379A51E445F4FCA4D23DFAEE29C2FD3D4980AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a5:b1:77:54:8f:79:b8:c8:20:12:e6:19:a2:
c9:34:15:8b:1e:b9:9a:73:65:ef:1e:75:4a:c9:34:
27:4c:d2:1c:b2:6b:d6:f0:e0:7c:f4:ba:86:ea:22:
27:e3:ad:89:c6:ce:8c:87:18:f6:f1:ae:da:f2:27:
f0:33:88:25:80:a4:38:e6:e0:5c:8f:e9:8c:c8:fd:
d8:54:27:8a:2b:82:6f:1e:3f:fe:91:c6:83:3f:93:
d4:c1:04:81:4b:ee:54:b7:92:d3:33:6e:9b:38:f5:
0b:b2:a2:b1:3b:74:19:73:17:53:8e:4e:1c:4b:22:
4f:12:2f:f8:de:ae:04:d7:49:22:56:5f:d4:7b:7a:
e7:97:34:31:d2:4b:de:76:d5:46:11:bf:21:64:5c:
f7:4a:e5:90:1a:b9:7c:9e:a7:05:f0:f2:cc:2b:8a:
ac:05:eb:5a:26:d5:b7:68:e8:b2:36:fa:97:6a:a8:
b4:4d:c6:4e:fb:f3:63:f9:f5:30:f8:27:1a:6a:7d:
c4:3a:20:a9:e3:b3:8a:96:1a:a3:c2:bc:79:a8:ab:
d4:39:e6:94:2b:f2:e4:eb:50:2f:b5:95:a7:8d:1d:
ae:5b:cb:a7:b5:55:a1:9f:76:3f:3d:08:00:93:bf:
d8:23:e3:84:59:40:47:87:e3:67:93:e8:e1:5e:62:
72:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:37:9A:51:E4:45:F4:FC:A4:D2:3D:FA:EE:29:C2:FD:3D:49:80:AE
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216475.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.39.0/24
Signature Algorithm: sha256WithRSAEncryption
97:f7:57:66:a7:a3:ce:05:b9:55:75:85:2c:1b:c4:47:0b:52:
00:ca:47:80:ef:8c:74:93:b8:df:e8:0f:0c:03:cb:1a:39:d2:
98:13:4f:cb:45:93:1e:3e:26:30:94:e7:43:36:6f:a6:85:13:
83:8a:a7:d9:79:78:86:10:7b:b5:49:7c:1d:f2:f9:ef:79:d0:
93:fb:fc:77:ac:a0:dd:32:aa:78:7f:17:90:b0:1f:1d:6b:b8:
13:97:34:51:58:b3:99:1a:3c:e2:6e:e1:da:a3:8b:55:1f:46:
cc:9b:3a:75:e2:9e:b2:e4:14:22:98:25:86:e3:16:5d:30:2b:
4c:8c:f5:01:c0:3d:26:3c:02:5f:b8:ab:7e:7c:e8:6d:4f:49:
11:5c:01:d4:0f:6d:a5:09:27:c5:f9:07:1f:f6:ec:05:03:73:
6e:06:31:d0:f4:71:dd:03:cf:1e:66:78:9e:31:a5:17:c4:98:
fb:7c:16:76:f4:54:e7:18:89:00:2f:ef:4a:cc:f2:5b:68:49:
53:16:2a:5f:f6:98:85:06:0f:f4:84:be:18:cd:fc:aa:4f:23:
22:9b:02:78:d8:d6:12:9f:47:5c:b2:23:fc:f8:8a:3d:90:b0:
69:2e:81:a2:f0:ef:b6:9d:90:be:4e:83:0b:ff:15:e9:c2:e1:
56:86:58:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 29 14:33:48 2026 by rpki-client