Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS151389.roa
File: AS151389.roa (raw, json)
Hash identifier: ElTLwXXFJJ4SFQwYtz/ILITWFHmNIv7Ed2pqEyn/kQU=
Subject key identifier: 9B:F1:F1:F6:65:35:65:80:99:87:44:47:2C:6D:13:09:44:9A:42:7C
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 78E1BED4E39099096825C83AA17468F20AB495B2
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS151389.roa
Signing time: Fri 08 May 2026 01:45:10 +0000
ROA not before: Fri 08 May 2026 01:40:10 +0000
ROA not after: Fri 07 May 2027 01:45:10 +0000
asID: 151389
IP address blocks: 167.148.80.0/24 maxlen: 24
167.148.139.0/24 maxlen: 24
168.222.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:e1:be:d4:e3:90:99:09:68:25:c8:3a:a1:74:68:f2:0a:b4:95:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 8 01:40:10 2026 GMT
Not After : May 7 01:45:10 2027 GMT
Subject: CN=9BF1F1F665356580998744472C6D1309449A427C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ff:d6:13:44:a7:b3:98:63:32:f6:d6:dc:b9:
7d:49:a2:7d:d7:94:81:00:e0:da:b6:a0:52:b1:ca:
04:59:d2:c3:db:31:ec:32:e6:f3:a1:ab:42:66:d5:
b7:b0:30:a1:13:58:17:ae:5b:70:f8:8f:c4:f7:6e:
05:27:33:40:7d:95:9a:c8:c2:d0:ef:a4:00:be:64:
88:bf:66:92:1f:89:17:e0:90:c6:84:b6:89:3b:70:
3a:3f:67:7e:f7:bb:8f:e9:62:12:85:3c:d2:1b:af:
fb:b3:49:f3:3f:0b:31:95:36:36:84:a5:82:39:2d:
27:29:fd:cd:80:e4:eb:ca:34:a5:08:2e:52:94:19:
40:59:f4:7b:92:c0:61:0b:98:af:8d:bc:82:12:97:
66:b5:7e:2a:47:92:66:ed:16:3e:c9:89:09:0e:31:
88:c6:d8:11:6f:05:e1:a8:6e:ae:9d:bf:7f:21:a0:
62:20:b8:ef:d3:67:c5:b1:cb:93:1e:cb:69:10:b5:
33:90:72:3c:94:b1:17:d7:a4:41:9f:3b:0d:dd:12:
46:2a:a4:2e:35:e7:2d:11:51:cb:47:1f:01:a0:0c:
22:31:cc:8d:c3:6c:59:dc:cc:17:9c:57:97:03:c7:
75:e2:cb:4d:d2:ec:fa:7f:33:38:d4:4d:32:ec:42:
01:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:F1:F1:F6:65:35:65:80:99:87:44:47:2C:6D:13:09:44:9A:42:7C
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS151389.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.148.80.0/24
167.148.139.0/24
168.222.125.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a1:1c:a5:b6:50:3b:eb:1c:e8:65:7c:73:fa:9d:e3:3a:0a:
a9:9b:2c:70:6d:be:90:60:d1:59:ac:95:a6:72:06:df:86:6a:
72:97:e9:5d:9c:2d:1a:01:b6:8c:c5:17:7f:82:fe:69:0e:fc:
67:7a:31:f2:f2:c5:fb:86:7c:d5:c3:4b:f3:b5:9d:19:63:d9:
e1:d9:35:6e:3e:f4:ef:eb:9d:81:ba:50:7a:98:ef:9a:6d:ea:
2c:ff:94:f6:d0:cf:6f:27:05:0a:38:a3:8d:f6:bf:67:04:bf:
9b:bc:60:0f:61:63:33:54:ff:54:a2:7f:2f:16:c6:ea:cf:13:
9a:e2:f5:44:47:6e:f4:b9:37:d3:e2:d5:e5:97:9f:62:f1:77:
ae:9b:dc:7d:4b:70:e4:c1:2b:9e:4e:3b:c7:97:30:6a:54:2f:
cb:e8:dc:24:fd:0e:03:4f:df:6a:c9:39:3c:32:54:fe:df:ca:
64:02:4f:f4:17:2a:26:1e:b5:66:ff:91:ba:c5:01:ed:ac:4a:
c3:73:91:66:0e:00:5e:7d:cf:8e:be:1a:cd:de:3f:53:02:3a:
75:96:7c:22:6c:2f:e8:10:73:49:f9:f7:f8:bf:97:50:25:d3:
67:0e:d3:53:26:2f:11:ab:d0:36:a1:1b:2d:14:a9:49:d8:47:
94:c2:3f:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:38:11 2026 by rpki-client