Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS2914.roa
File: AS2914.roa (raw, json)
Hash identifier: jmC8tFpqZVihQQqbt9Fc8emIehNhSTnDRDvMvoLWsuk=
Subject key identifier: 59:2C:9E:95:51:8B:DB:CF:BD:C4:5B:15:B5:3F:3A:35:BD:91:F1:F3
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 35FAA6CE3EAA16BD99C71F3D4D460CAF9A6995D3
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS2914.roa
Signing time: Fri 13 Mar 2026 00:01:09 +0000
ROA not before: Thu 12 Mar 2026 23:56:09 +0000
ROA not after: Fri 12 Mar 2027 00:01:09 +0000
asID: 2914
IP address blocks: 96.62.32.0/24 maxlen: 24
96.62.33.0/24 maxlen: 24
96.62.34.0/24 maxlen: 24
96.62.35.0/24 maxlen: 24
96.62.36.0/24 maxlen: 24
96.62.38.0/24 maxlen: 24
96.62.39.0/24 maxlen: 24
96.62.40.0/24 maxlen: 24
96.62.41.0/24 maxlen: 24
96.62.42.0/24 maxlen: 24
96.62.43.0/24 maxlen: 24
96.62.44.0/24 maxlen: 24
96.62.46.0/24 maxlen: 24
96.62.64.0/24 maxlen: 24
96.62.65.0/24 maxlen: 24
96.62.66.0/24 maxlen: 24
96.62.67.0/24 maxlen: 24
96.62.68.0/24 maxlen: 24
96.62.70.0/24 maxlen: 24
96.62.102.0/24 maxlen: 24
96.62.104.0/24 maxlen: 24
96.62.106.0/24 maxlen: 24
96.62.107.0/24 maxlen: 24
96.62.108.0/24 maxlen: 24
96.62.109.0/24 maxlen: 24
96.62.110.0/24 maxlen: 24
96.62.112.0/24 maxlen: 24
96.62.113.0/24 maxlen: 24
96.62.116.0/24 maxlen: 24
96.62.117.0/24 maxlen: 24
96.62.118.0/24 maxlen: 24
96.62.119.0/24 maxlen: 24
96.62.120.0/24 maxlen: 24
96.62.121.0/24 maxlen: 24
96.62.122.0/24 maxlen: 24
96.62.123.0/24 maxlen: 24
96.62.124.0/24 maxlen: 24
96.62.125.0/24 maxlen: 24
96.62.126.0/24 maxlen: 24
96.62.132.0/24 maxlen: 24
96.62.133.0/24 maxlen: 24
96.62.134.0/24 maxlen: 24
96.62.136.0/24 maxlen: 24
96.62.137.0/24 maxlen: 24
96.62.138.0/24 maxlen: 24
96.62.139.0/24 maxlen: 24
96.62.141.0/24 maxlen: 24
96.62.142.0/24 maxlen: 24
96.62.143.0/24 maxlen: 24
96.62.144.0/23 maxlen: 24
96.62.146.0/24 maxlen: 24
96.62.147.0/24 maxlen: 24
96.62.156.0/22 maxlen: 24
96.62.160.0/24 maxlen: 24
96.62.161.0/24 maxlen: 24
96.62.162.0/24 maxlen: 24
96.62.163.0/24 maxlen: 24
96.62.164.0/24 maxlen: 24
96.62.165.0/24 maxlen: 24
96.62.166.0/24 maxlen: 24
96.62.167.0/24 maxlen: 24
96.62.168.0/24 maxlen: 24
96.62.169.0/24 maxlen: 24
96.62.170.0/24 maxlen: 24
96.62.171.0/24 maxlen: 24
96.62.172.0/24 maxlen: 24
96.62.173.0/24 maxlen: 24
96.62.174.0/24 maxlen: 24
96.62.175.0/24 maxlen: 24
96.62.177.0/24 maxlen: 24
96.62.178.0/24 maxlen: 24
96.62.179.0/24 maxlen: 24
96.62.188.0/24 maxlen: 24
96.62.189.0/24 maxlen: 24
96.62.196.0/24 maxlen: 24
96.62.198.0/24 maxlen: 24
96.62.199.0/24 maxlen: 24
96.62.212.0/24 maxlen: 24
96.62.213.0/24 maxlen: 24
96.62.215.0/24 maxlen: 24
96.62.225.0/24 maxlen: 24
96.62.226.0/24 maxlen: 24
96.62.230.0/24 maxlen: 24
96.62.236.0/24 maxlen: 24
96.62.237.0/24 maxlen: 24
96.62.238.0/24 maxlen: 24
96.62.239.0/24 maxlen: 24
96.62.240.0/24 maxlen: 24
96.62.241.0/24 maxlen: 24
96.62.245.0/24 maxlen: 24
96.62.246.0/24 maxlen: 24
96.62.252.0/24 maxlen: 24
140.150.153.0/24 maxlen: 24
143.14.60.0/24 maxlen: 24
143.14.61.0/24 maxlen: 24
143.14.72.0/24 maxlen: 24
143.14.84.0/24 maxlen: 24
143.14.85.0/24 maxlen: 24
143.14.108.0/24 maxlen: 24
143.14.109.0/24 maxlen: 24
143.14.154.0/24 maxlen: 24
150.241.130.0/24 maxlen: 24
155.117.101.0/24 maxlen: 24
155.117.104.0/24 maxlen: 24
155.117.160.0/24 maxlen: 24
162.141.16.0/24 maxlen: 24
162.141.18.0/24 maxlen: 24
162.141.45.0/24 maxlen: 24
162.141.53.0/24 maxlen: 24
162.141.81.0/24 maxlen: 24
162.141.89.0/24 maxlen: 24
162.141.99.0/24 maxlen: 24
162.141.102.0/24 maxlen: 24
162.141.132.0/24 maxlen: 24
162.141.143.0/24 maxlen: 24
162.141.154.0/24 maxlen: 24
162.141.162.0/24 maxlen: 24
162.141.176.0/24 maxlen: 24
162.141.177.0/24 maxlen: 24
162.141.182.0/24 maxlen: 24
167.148.7.0/24 maxlen: 24
167.148.9.0/24 maxlen: 24
167.148.11.0/24 maxlen: 24
167.148.13.0/24 maxlen: 24
167.148.31.0/24 maxlen: 24
167.148.32.0/24 maxlen: 24
167.148.34.0/24 maxlen: 24
167.148.47.0/24 maxlen: 24
167.148.71.0/24 maxlen: 24
167.148.72.0/24 maxlen: 24
167.148.73.0/24 maxlen: 24
167.148.74.0/24 maxlen: 24
167.148.99.0/24 maxlen: 24
167.148.101.0/24 maxlen: 24
167.148.103.0/24 maxlen: 24
167.148.107.0/24 maxlen: 24
167.148.113.0/24 maxlen: 24
167.148.114.0/24 maxlen: 24
167.148.124.0/24 maxlen: 24
167.148.129.0/24 maxlen: 24
167.148.132.0/24 maxlen: 24
167.148.133.0/24 maxlen: 24
167.148.137.0/24 maxlen: 24
167.148.142.0/24 maxlen: 24
167.148.143.0/24 maxlen: 24
167.148.146.0/24 maxlen: 24
167.148.151.0/24 maxlen: 24
167.148.155.0/24 maxlen: 24
167.148.160.0/24 maxlen: 24
167.148.174.0/24 maxlen: 24
167.148.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:fa:a6:ce:3e:aa:16:bd:99:c7:1f:3d:4d:46:0c:af:9a:69:95:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 12 23:56:09 2026 GMT
Not After : Mar 12 00:01:09 2027 GMT
Subject: CN=592C9E95518BDBCFBDC45B15B53F3A35BD91F1F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0b:19:3f:f2:88:2b:d9:e7:bd:2b:b6:4e:98:
51:ca:8f:a5:9c:fb:6e:98:21:8b:33:01:fa:d1:d2:
fb:d9:ef:10:a6:41:b2:79:37:9d:4e:50:25:59:a5:
ac:f3:98:b5:57:77:e1:2c:c4:16:db:87:f9:e0:70:
7b:96:21:58:21:95:72:85:8e:e0:50:cc:2c:82:e8:
d1:d5:1a:51:de:ab:e2:a0:dd:99:c8:b4:14:e4:80:
ea:da:c8:4d:48:59:33:d5:ab:ee:a4:6d:4a:77:ec:
0c:6a:75:0f:e1:02:9d:f3:ac:7a:aa:9c:39:c7:5b:
a8:81:55:2b:03:26:77:ec:8d:10:c2:75:15:8f:81:
79:f3:42:e7:d6:8e:f1:95:3b:62:a4:a2:f6:1c:6a:
a4:c7:36:23:d7:6c:48:fe:06:76:f6:40:f9:bb:e4:
14:ab:d3:08:c5:0c:30:3a:0a:0d:a7:a4:85:58:ee:
eb:4c:49:f2:51:e3:78:62:ce:ad:fe:3d:c4:aa:dc:
71:af:ed:3d:f0:04:ed:be:66:c6:8f:a2:62:79:36:
3f:7d:a0:13:e1:a1:10:9d:6c:07:3d:c3:35:5c:56:
aa:2c:04:00:27:b8:3d:89:43:9c:aa:b1:00:94:e2:
a3:fe:8a:8e:d8:cf:59:4a:3b:0d:92:26:cd:f7:4d:
bd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:2C:9E:95:51:8B:DB:CF:BD:C4:5B:15:B5:3F:3A:35:BD:91:F1:F3
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS2914.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.32.0-96.62.36.255
96.62.38.0-96.62.44.255
96.62.46.0/24
96.62.64.0-96.62.68.255
96.62.70.0/24
96.62.102.0/24
96.62.104.0/24
96.62.106.0-96.62.110.255
96.62.112.0/23
96.62.116.0-96.62.126.255
96.62.132.0-96.62.134.255
96.62.136.0/22
96.62.141.0-96.62.147.255
96.62.156.0-96.62.175.255
96.62.177.0-96.62.179.255
96.62.188.0/23
96.62.196.0/24
96.62.198.0/23
96.62.212.0/23
96.62.215.0/24
96.62.225.0-96.62.226.255
96.62.230.0/24
96.62.236.0-96.62.241.255
96.62.245.0-96.62.246.255
96.62.252.0/24
140.150.153.0/24
143.14.60.0/23
143.14.72.0/24
143.14.84.0/23
143.14.108.0/23
143.14.154.0/24
150.241.130.0/24
155.117.101.0/24
155.117.104.0/24
155.117.160.0/24
162.141.16.0/24
162.141.18.0/24
162.141.45.0/24
162.141.53.0/24
162.141.81.0/24
162.141.89.0/24
162.141.99.0/24
162.141.102.0/24
162.141.132.0/24
162.141.143.0/24
162.141.154.0/24
162.141.162.0/24
162.141.176.0/23
162.141.182.0/24
167.148.7.0/24
167.148.9.0/24
167.148.11.0/24
167.148.13.0/24
167.148.31.0-167.148.32.255
167.148.34.0/24
167.148.47.0/24
167.148.71.0-167.148.74.255
167.148.99.0/24
167.148.101.0/24
167.148.103.0/24
167.148.107.0/24
167.148.113.0-167.148.114.255
167.148.124.0/24
167.148.129.0/24
167.148.132.0/23
167.148.137.0/24
167.148.142.0/23
167.148.146.0/24
167.148.151.0/24
167.148.155.0/24
167.148.160.0/24
167.148.174.0/24
167.148.176.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:12:f4:07:86:9b:14:66:2f:0e:c5:5a:8d:80:73:be:08:28:
25:b8:4a:7f:c3:40:57:38:db:40:06:b0:b3:4b:35:e9:bd:dd:
b0:48:eb:7e:2a:4f:d1:9c:32:29:0d:18:f4:56:ec:4a:0b:d7:
e8:de:fa:e2:f6:eb:9e:7c:64:5a:78:dd:bf:85:bf:21:e0:10:
e2:bc:52:eb:38:d9:eb:70:f4:54:8a:68:bd:ba:04:7c:b9:44:
b5:52:97:64:01:34:e0:a0:c0:54:d1:34:97:08:59:f0:1a:b4:
49:72:68:55:44:e6:61:d0:b2:e4:27:1f:c3:5c:77:2a:df:c4:
54:57:07:64:a6:2c:aa:69:0c:7c:c8:cf:c3:3a:68:ac:e7:fe:
17:c4:9a:73:c9:95:fa:3d:15:1e:ea:45:42:29:55:4c:c9:08:
fa:80:5e:3a:80:33:bd:ac:7b:90:e3:c8:1e:f2:60:78:01:ab:
fc:9c:8e:be:e1:28:a3:cb:79:1e:f4:f0:72:81:51:4b:31:bf:
7e:63:4c:33:1e:20:82:56:1e:a4:a5:bc:28:d1:e4:bb:08:eb:
3c:ac:3e:33:ce:09:13:ec:10:c6:49:10:56:08:6c:63:33:66:
71:60:4b:0a:a5:18:3b:67:d0:06:e7:97:87:e8:83:18:04:ea:
7f:28:9e:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:14:50 2026 by rpki-client