Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS49770.roa
File: AS49770.roa (raw, json)
Hash identifier: TusBIz3pGnTMYYYQZpjI5TZMna77dml67NkphJ+ejPU=
Subject key identifier: C3:40:F2:DD:95:D0:97:94:A0:B7:D8:40:27:ED:8F:DA:85:43:CA:57
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 1168E7DEFE90E72E5A51D8029B0690155417D31F
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS49770.roa
Signing time: Tue 21 Apr 2026 11:47:05 +0000
ROA not before: Tue 21 Apr 2026 11:42:05 +0000
ROA not after: Tue 20 Apr 2027 11:47:05 +0000
asID: 49770
IP address blocks: 92.112.212.0/24 maxlen: 24
92.112.217.0/24 maxlen: 24
92.112.228.0/24 maxlen: 24
92.112.231.0/24 maxlen: 24
92.112.236.0/24 maxlen: 24
92.112.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 May 2026 10:48:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:68:e7:de:fe:90:e7:2e:5a:51:d8:02:9b:06:90:15:54:17:d3:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 21 11:42:05 2026 GMT
Not After : Apr 20 11:47:05 2027 GMT
Subject: CN=C340F2DD95D09794A0B7D84027ED8FDA8543CA57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9e:6a:24:85:35:de:20:3b:62:7b:e3:50:42:
89:5f:a0:11:8b:e9:0d:3c:61:40:3b:83:42:79:7f:
39:77:3c:c6:4b:e2:0f:d4:36:59:46:62:37:10:86:
7b:8c:b2:c7:0d:2f:2b:a3:70:47:7e:a9:2e:76:87:
55:61:f3:93:7f:7b:31:ea:29:28:4b:5b:57:40:17:
2d:60:7f:df:9f:3d:04:15:f3:04:70:e9:25:b2:9d:
99:99:5f:e2:b5:6b:a8:4f:7d:18:12:45:59:4e:4a:
3a:4e:b4:92:d4:ba:0f:d8:38:ca:10:a1:90:14:2d:
04:4b:36:f0:89:c1:5b:2b:3c:fb:22:e2:ba:2c:b2:
f1:ea:5d:fe:6d:a7:02:b0:20:27:7c:13:b3:a6:70:
be:9a:5e:f2:e9:d6:e8:7b:68:ff:f8:1d:20:db:fd:
21:67:80:3d:3b:a7:a4:e6:72:aa:7a:67:d5:ab:18:
f0:1a:47:60:12:d8:c1:41:f3:db:e6:e1:22:47:be:
3d:9c:cb:be:de:3d:43:ba:45:d7:3b:6f:39:f9:70:
e8:92:31:1a:27:c2:b5:75:d5:14:08:7b:28:93:47:
84:c3:1c:00:ed:a4:cf:18:7c:87:19:6b:b6:2f:cc:
70:3e:c1:a3:ea:43:97:57:00:42:27:39:21:65:4b:
c2:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:40:F2:DD:95:D0:97:94:A0:B7:D8:40:27:ED:8F:DA:85:43:CA:57
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS49770.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.112.212.0/24
92.112.217.0/24
92.112.228.0/24
92.112.231.0/24
92.112.236.0/24
92.112.239.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:52:e3:95:0b:20:cb:20:b9:72:43:1b:1f:85:5a:46:81:c4:
5c:b8:0e:86:31:ae:2e:dd:d5:fe:84:04:4f:55:62:d1:28:d6:
c2:28:6a:bf:27:df:79:a6:51:c1:e3:27:66:5f:2e:48:db:a6:
98:d3:8c:1c:3e:57:da:0c:0c:19:5e:21:f1:75:bb:02:f2:93:
00:49:a5:2e:fe:45:25:0c:d1:e2:be:17:04:65:63:5f:0c:1c:
22:01:e2:46:cb:1c:48:31:8d:34:fd:af:ec:8b:ed:71:e6:13:
a3:69:d8:46:45:a9:d9:2b:62:ed:a9:63:14:6d:34:73:87:71:
fc:b5:f8:8d:05:7e:4e:2e:e8:c1:d1:91:94:20:12:9e:e5:1b:
52:1c:e8:c0:4b:c2:d3:78:bb:ed:45:46:b9:aa:9a:72:c6:8d:
8c:c7:1f:f3:d9:f3:a5:97:96:56:23:63:58:ec:44:c2:e5:ec:
43:1b:86:84:d4:ce:02:e0:be:5c:94:69:e8:d7:a4:73:f8:12:
95:7f:46:26:bc:e3:4d:6d:25:be:87:18:2a:d7:9c:2d:45:56:
17:dc:85:9e:5f:5c:7c:d4:2b:38:74:d6:06:bc:8f:b5:22:f2:
61:2c:9e:48:37:40:3c:2d:71:39:9d:ca:e4:28:14:59:02:65:
54:5b:4b:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 4 19:41:50 2026 by rpki-client