Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS46573.roa
File: AS46573.roa (raw, json)
Hash identifier: x0HsgBa7y+MKpbpcmpcwRYz+MxOoTqOQlyV5DPLUnJ4=
Subject key identifier: 17:2D:59:11:4E:BC:98:B8:1E:9C:CE:F1:AA:26:13:84:70:ED:35:7A
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 504051FA40D9F6BC873213924DDE0602A27167E3
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS46573.roa
Signing time: Mon 15 Jun 2026 14:47:34 +0000
ROA not before: Mon 15 Jun 2026 14:42:34 +0000
ROA not after: Mon 14 Jun 2027 14:47:34 +0000
asID: 46573
IP address blocks: 92.112.170.0/24 maxlen: 24
92.112.171.0/24 maxlen: 24
92.112.172.0/24 maxlen: 24
92.112.175.0/24 maxlen: 24
92.112.200.0/24 maxlen: 24
92.112.202.0/24 maxlen: 24
92.113.234.0/24 maxlen: 24
92.113.235.0/24 maxlen: 24
92.113.239.0/24 maxlen: 24
92.113.240.0/24 maxlen: 24
92.113.244.0/24 maxlen: 24
92.113.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 12:03:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:40:51:fa:40:d9:f6:bc:87:32:13:92:4d:de:06:02:a2:71:67:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 15 14:42:34 2026 GMT
Not After : Jun 14 14:47:34 2027 GMT
Subject: CN=172D59114EBC98B81E9CCEF1AA26138470ED357A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:10:67:42:d6:2b:0b:8a:6a:5f:c9:85:04:50:
8d:db:da:b5:9f:2c:11:fb:63:ff:25:82:4a:d4:3d:
6d:c1:7d:c2:f9:cb:83:ec:ef:41:b2:29:ea:b2:46:
a4:67:08:66:c5:c3:eb:4c:34:97:05:2a:65:7c:c6:
df:db:19:99:6f:d3:c6:da:10:ab:47:84:6e:4b:95:
be:bf:a3:c6:a6:03:03:ad:8b:bb:9d:7e:aa:09:79:
e1:fc:4f:7b:70:e1:77:5e:63:f6:a6:29:12:57:5d:
5c:25:87:d5:5a:6b:02:2d:18:ae:09:1e:29:fb:d9:
3c:2a:e5:f8:71:f4:71:8d:14:eb:99:d8:4b:59:ab:
9f:f4:df:42:4c:4a:de:22:8b:3b:fd:c7:a2:b1:73:
60:2e:f8:a0:b7:f6:59:10:7a:17:1e:c6:ae:f6:71:
36:96:17:f8:ba:7b:9a:79:12:2c:b2:05:f5:07:79:
81:8d:6a:2d:f6:da:d1:d0:e9:92:27:1e:42:4d:67:
5e:bf:ad:76:f3:28:a5:ea:a2:2e:3a:f7:31:61:b4:
77:10:14:16:3d:da:83:a7:df:a0:40:67:ff:32:36:
50:3e:fd:e1:a5:c7:2e:f7:51:e7:0e:dd:0d:d0:0e:
47:0d:4b:39:fe:5c:c5:67:5c:1a:9a:2f:de:72:a4:
58:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:2D:59:11:4E:BC:98:B8:1E:9C:CE:F1:AA:26:13:84:70:ED:35:7A
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS46573.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.112.170.0-92.112.172.255
92.112.175.0/24
92.112.200.0/24
92.112.202.0/24
92.113.234.0/23
92.113.239.0-92.113.240.255
92.113.244.0/23
Signature Algorithm: sha256WithRSAEncryption
32:5a:4f:b3:97:be:ce:b1:20:87:c4:d8:6d:e0:17:0f:e4:0d:
18:7a:47:2f:0e:5f:34:e5:85:9a:56:4a:3f:49:03:f3:44:31:
a8:47:20:d5:6d:80:59:7f:6d:83:a7:d3:97:1e:4b:4f:ab:51:
fd:0e:e0:d6:29:20:c4:79:d2:69:9d:a1:ac:82:38:ce:8e:e4:
33:68:e7:f2:88:0c:e0:72:4f:3f:1d:3b:98:9e:5e:f1:22:54:
8d:fb:4c:dd:89:e0:79:fb:cf:f2:71:d2:66:c8:1e:66:cd:39:
36:44:2c:e9:42:81:13:1a:d4:cb:b5:78:d1:b8:35:29:2a:f4:
77:4d:00:be:7c:5b:45:37:4c:4d:66:93:89:b3:02:ea:f6:55:
d3:8a:ff:04:14:9b:86:69:aa:bc:86:7d:24:2e:68:b6:84:1d:
49:97:86:89:59:48:26:8e:5d:43:2f:96:0d:80:67:84:aa:f5:
95:82:ee:bb:62:79:ed:c6:91:9a:1f:94:fa:d7:1b:85:60:a2:
77:a2:02:f5:d7:32:90:6a:c4:11:6b:d4:c5:64:ed:be:81:9e:
aa:69:c1:bd:44:4f:fc:92:2a:3c:fd:20:2b:3d:80:30:44:7a:
77:c8:cb:7b:81:4d:bf:d3:59:f2:6c:04:b8:a0:a7:ca:0b:a2:
c3:cf:c8:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 16:32:49 2026 by rpki-client