Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401322.roa
File: AS401322.roa (raw, json)
Hash identifier: ZKGmceZ41Ym07CAUIMHY5ruhPDMHo2gXaKXJNgYBVLQ=
Subject key identifier: A1:6E:61:A0:E3:EA:6A:E7:61:D8:C4:75:1B:F1:91:FF:7A:DB:D8:7D
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 302AAD217807AD199DACA0EB38EB9C066882E6C5
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401322.roa
Signing time: Thu 26 Mar 2026 04:33:40 +0000
ROA not before: Thu 26 Mar 2026 04:28:40 +0000
ROA not after: Thu 25 Mar 2027 04:33:40 +0000
asID: 401322
IP address blocks: 92.113.194.0/24 maxlen: 24
95.135.201.0/24 maxlen: 24
178.93.76.0/24 maxlen: 24
178.93.124.0/24 maxlen: 24
178.95.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 Apr 2026 08:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:2a:ad:21:78:07:ad:19:9d:ac:a0:eb:38:eb:9c:06:68:82:e6:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 26 04:28:40 2026 GMT
Not After : Mar 25 04:33:40 2027 GMT
Subject: CN=A16E61A0E3EA6AE761D8C4751BF191FF7ADBD87D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c2:05:3f:95:69:dd:6e:1c:51:62:1f:80:17:
80:7d:13:9e:28:68:d0:11:55:20:b4:ea:d5:bb:ef:
ed:42:70:5d:85:49:cc:80:6b:46:89:4e:1a:34:f0:
a5:9e:6c:d7:23:a3:16:05:a9:db:af:73:fd:07:a7:
65:91:99:07:97:cf:36:e7:37:59:a7:4d:35:49:0b:
f0:cc:17:5f:a8:70:e9:61:08:56:68:28:c2:77:96:
b9:12:e9:fb:02:92:6a:ac:aa:2a:75:9c:8d:a4:c3:
67:ce:9d:75:d3:53:79:0e:d2:fa:ee:64:18:46:87:
b0:11:79:af:1e:a6:42:51:84:da:bc:92:30:f3:af:
79:bd:84:f0:ae:f0:56:10:8c:4a:fe:ee:58:18:f9:
91:97:ab:95:8c:8d:a7:19:5d:13:98:af:70:e9:8b:
48:f9:1b:d2:bf:f6:bc:85:99:4b:25:cd:e1:45:32:
f7:e1:b5:ba:cf:87:eb:db:8e:6e:8a:98:b4:07:9a:
20:85:27:37:73:db:ef:79:bc:dd:22:e8:91:4d:cd:
cc:3b:26:b9:3c:a1:c9:07:3c:06:4c:41:39:b5:6b:
18:01:c5:fa:5b:7a:23:e6:f1:37:f3:32:91:03:a7:
12:0a:cb:8f:a9:7e:7d:84:87:21:31:3a:d9:7b:9b:
7f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6E:61:A0:E3:EA:6A:E7:61:D8:C4:75:1B:F1:91:FF:7A:DB:D8:7D
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401322.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.113.194.0/24
95.135.201.0/24
178.93.76.0/24
178.93.124.0/24
178.95.5.0/24
Signature Algorithm: sha256WithRSAEncryption
39:7a:3e:e9:7c:9b:6b:da:f2:dd:a3:74:83:89:fa:e1:f4:f2:
06:d7:10:77:2e:dc:eb:d4:03:c2:d2:f3:7b:8e:8e:ec:71:a4:
66:29:12:73:b6:74:31:a2:7e:d5:97:fe:be:93:d8:d3:bc:3b:
d9:01:6f:4d:04:2c:4a:44:9e:4e:35:9b:89:10:ad:7b:89:90:
a1:71:f1:92:b3:19:45:83:db:9c:57:49:6b:55:a0:71:3b:78:
90:d1:75:ce:51:78:9f:81:aa:af:14:1d:fc:8d:9f:04:ce:62:
3f:6f:e7:ed:98:a9:30:f1:4c:68:c0:d5:bb:90:ad:42:8c:2c:
95:54:3c:d7:5f:3f:12:b4:1c:4e:ae:96:f4:89:77:06:b3:f0:
74:14:e4:ab:b7:20:15:ca:20:d3:2a:4a:a0:c0:fa:76:5f:0c:
dc:48:5f:20:d8:cd:09:53:d9:49:6e:fe:cd:7e:60:d2:7d:79:
58:78:2a:8c:cf:ac:ee:47:99:1e:9d:b3:1e:97:4b:2a:18:1a:
c9:04:40:ec:e2:98:e9:bd:69:5d:dc:b2:cd:40:d8:c6:24:49:
21:76:fd:02:fd:ea:32:e8:24:0c:d8:16:a2:c7:53:a5:ce:05:
43:50:51:c7:51:10:dd:b6:89:1a:00:9f:60:ce:ac:f2:40:75:
6e:69:c3:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 1 12:23:46 2026 by rpki-client