
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS397630.roa
File: AS397630.roa (raw, json)
Hash identifier: RGgLA6g8mGxPOXNo2qs9fnYTBDzDxC7kHqVMD2G0BlQ=
Subject key identifier: 60:96:84:D5:6A:B6:40:68:BF:BC:CF:77:CC:46:F5:E7:56:93:8F:DD
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 5C2A341E0CD74EEC479EA7418E7EA6B36FE0BE78
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS397630.roa
Signing time: Fri 19 Jun 2026 04:42:15 +0000
ROA not before: Fri 19 Jun 2026 04:37:15 +0000
ROA not after: Fri 18 Jun 2027 04:42:15 +0000
asID: 397630
IP address blocks: 91.124.43.0/24 maxlen: 24
92.112.141.0/24 maxlen: 24
95.135.12.0/24 maxlen: 24
95.135.19.0/24 maxlen: 24
95.135.25.0/24 maxlen: 24
95.135.183.0/24 maxlen: 24
95.135.244.0/24 maxlen: 24
178.92.72.0/24 maxlen: 24
178.92.158.0/24 maxlen: 24
178.92.195.0/24 maxlen: 24
178.92.219.0/24 maxlen: 24
178.92.246.0/24 maxlen: 24
178.93.30.0/24 maxlen: 24
178.95.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Jul 2026 23:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:2a:34:1e:0c:d7:4e:ec:47:9e:a7:41:8e:7e:a6:b3:6f:e0:be:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 19 04:37:15 2026 GMT
Not After : Jun 18 04:42:15 2027 GMT
Subject: CN=609684D56AB64068BFBCCF77CC46F5E756938FDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4b:c2:da:11:43:bf:e2:8c:e5:8d:49:c4:55:
fd:2a:10:d8:a4:3c:99:7d:08:a8:86:91:57:cd:79:
99:4a:12:18:3f:e9:4a:cf:15:e7:c3:a6:a6:2b:2c:
03:41:d4:c7:5e:a0:54:58:fa:87:cc:20:98:9d:38:
33:7a:46:63:43:6c:1d:06:b3:8a:3c:7b:8d:ac:23:
ee:7c:b7:44:d2:c2:b6:8c:6d:22:32:bf:7d:d2:3f:
f7:b6:60:57:f9:aa:f7:8e:01:9c:93:d9:fc:05:4e:
4d:28:ea:cf:c0:0d:cd:48:61:ec:85:22:d1:de:b5:
90:e1:3d:c9:2b:47:a2:db:34:94:d5:23:4b:7b:df:
7c:62:ca:bd:26:f3:f3:2e:c9:60:e1:aa:23:6f:00:
e4:db:23:90:0b:b7:a6:ab:96:87:de:9d:18:0f:ed:
2c:66:c4:5d:68:48:14:18:ce:45:06:21:01:55:bd:
e1:94:ec:4b:9d:ec:57:52:d3:86:32:9f:cd:68:69:
1c:d2:9f:f4:14:71:48:e3:8f:e1:5a:1f:b2:98:cf:
56:dd:50:ee:21:76:e9:cc:a6:2a:08:a5:fd:b3:d4:
a7:a8:55:f2:1a:22:70:dd:7e:23:ef:2b:7f:e5:a8:
e1:23:aa:49:d0:33:3a:0b:49:f6:68:4f:7b:d3:84:
9e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:96:84:D5:6A:B6:40:68:BF:BC:CF:77:CC:46:F5:E7:56:93:8F:DD
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS397630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.43.0/24
92.112.141.0/24
95.135.12.0/24
95.135.19.0/24
95.135.25.0/24
95.135.183.0/24
95.135.244.0/24
178.92.72.0/24
178.92.158.0/24
178.92.195.0/24
178.92.219.0/24
178.92.246.0/24
178.93.30.0/24
178.95.225.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:10:a8:93:6d:d9:d2:2b:83:fa:c2:03:75:be:66:f6:85:11:
f7:cd:d7:ac:a0:c1:bf:c4:5f:56:eb:bc:fb:be:e3:ef:98:f2:
d1:59:22:60:85:46:e5:13:81:8d:b0:f9:df:00:ff:f0:68:05:
a0:10:ef:3d:89:3d:ae:77:71:95:5e:c8:0b:94:3a:37:38:a3:
17:f5:b4:68:69:96:1d:e6:2e:c3:9b:aa:76:5c:ad:1c:fc:35:
2a:81:78:ca:d0:4c:60:2a:b9:99:c5:e9:9f:fe:df:52:e7:cd:
b4:73:13:f1:7f:3c:d2:fb:13:ca:32:45:dc:5c:28:b7:62:87:
a1:e0:64:e0:35:c3:6a:4e:db:fa:74:e9:e5:d1:ed:8d:f9:96:
bc:19:ae:d7:9b:2e:d7:e1:49:04:84:83:6a:74:e4:f1:58:dc:
1d:b5:74:27:11:1c:e1:91:c7:e2:f6:67:38:9e:a4:06:22:bf:
34:d2:11:5c:06:04:0a:71:e4:f3:82:aa:e3:ad:e7:18:22:83:
59:5f:5c:18:3c:a4:22:d2:ac:29:24:b1:21:fb:ef:9d:9e:6e:
1d:a6:ce:35:9d:9e:a6:22:0c:16:e8:01:f8:b8:af:40:38:5b:
26:54:ca:00:ac:06:8b:3f:db:80:33:4d:b2:8d:52:31:96:07:
06:c2:e4:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 06:45:07 2026 by rpki-client