Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS209104.roa
File: AS209104.roa (raw, json)
Hash identifier: 2ibxMD++w9XMOgTtLJ3bWfAaqoT54jDidqnS6+iPjMw=
Subject key identifier: 0B:BB:BA:C4:CD:C1:9E:6A:BA:50:9D:54:8E:CB:3F:BC:8C:5A:99:42
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 4692F1FAA075F72FDEB2D4F8073E2C5483FD9CDA
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS209104.roa
Signing time: Mon 11 May 2026 12:56:41 +0000
ROA not before: Mon 11 May 2026 12:51:41 +0000
ROA not after: Mon 10 May 2027 12:56:41 +0000
asID: 209104
IP address blocks: 146.103.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:92:f1:fa:a0:75:f7:2f:de:b2:d4:f8:07:3e:2c:54:83:fd:9c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 11 12:51:41 2026 GMT
Not After : May 10 12:56:41 2027 GMT
Subject: CN=0BBBBAC4CDC19E6ABA509D548ECB3FBC8C5A9942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c4:13:2e:f5:46:a9:d3:bb:c7:e5:86:08:c4:
07:07:00:72:de:45:de:c5:00:c5:88:38:64:51:7a:
d9:7d:15:8a:b5:36:f9:fa:71:2b:d8:20:38:79:09:
c5:cf:7d:63:0c:36:ce:d6:64:4e:d0:bb:ea:14:18:
b8:2a:05:52:33:58:c8:6e:ee:a0:13:a0:72:b2:06:
48:f0:85:1a:a5:c9:94:5b:fd:c7:b5:bf:bf:86:7d:
d7:e1:49:b1:1f:7c:18:c5:b6:d7:ef:6e:42:61:47:
df:3b:b2:52:f5:b5:77:e0:f8:7f:55:82:47:08:ec:
1c:81:b0:4c:45:53:ba:57:34:6c:bf:de:6f:69:24:
3a:8a:a1:50:9a:fd:50:2f:05:0e:a1:b6:cf:b9:ed:
f6:95:5e:74:62:25:93:1f:85:1f:cd:cd:96:08:c3:
9a:7f:30:19:f9:b1:09:25:a2:64:c9:35:5d:13:d8:
93:4e:b6:9c:65:87:fc:29:90:cd:ef:e7:ed:e4:87:
68:34:0a:bc:e6:cb:f5:83:d5:de:8d:56:63:cd:4d:
07:76:eb:5d:7f:dc:b7:69:de:de:d8:7e:84:d0:c1:
cb:c5:0c:e9:76:b3:75:15:a2:1b:68:e1:04:f0:8d:
67:16:fa:da:e4:de:47:08:95:97:f1:52:9c:f5:d2:
69:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:BB:BA:C4:CD:C1:9E:6A:BA:50:9D:54:8E:CB:3F:BC:8C:5A:99:42
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS209104.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.29.0/24
Signature Algorithm: sha256WithRSAEncryption
05:39:86:df:fe:c5:f7:90:01:ef:e8:1a:59:71:94:50:5f:e7:
c1:11:b6:46:97:1f:0d:c4:88:43:ea:68:13:68:70:57:64:5b:
96:35:c2:43:dd:e3:79:d5:4c:03:3e:aa:67:a7:93:72:9c:4f:
cc:75:52:63:d8:80:c6:5c:fc:7a:b7:25:a4:95:e8:74:2c:7f:
02:97:d6:72:a7:99:d9:f7:09:6a:5c:05:4b:a5:a9:8e:f8:fe:
29:2b:9b:0e:de:c3:10:2c:a7:91:a9:06:ef:54:2f:00:29:e4:
43:50:e1:23:a6:23:22:ed:f9:c0:f2:30:6b:40:66:ee:f9:58:
75:ab:fe:68:01:cb:0c:e5:d9:71:5c:47:69:5d:af:81:ac:6f:
78:db:a7:95:f9:82:ce:2d:62:af:ce:13:59:1f:62:50:a3:cd:
27:7c:2a:3e:74:92:76:94:2d:c3:76:ef:c0:af:48:13:fd:a1:
0b:72:b4:28:58:86:0d:4d:e9:8f:c9:57:f7:87:4a:22:87:8f:
a3:bc:23:d8:82:2f:62:04:29:91:4c:a3:29:f7:32:6f:3b:5d:
95:14:45:14:bc:02:4f:8a:c8:52:82:53:a7:77:4f:97:a8:85:
26:c7:fb:6d:ff:4a:43:3f:5e:2b:68:6a:72:78:a1:a2:e0:cc:
aa:99:97:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:38:48 2026 by rpki-client