Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS2914.roa
File: AS2914.roa (raw, json)
Hash identifier: ciU4tQgH4VNyxEDYshTEVeSJxIZbQ9LOkmZtFsoKjh4=
Subject key identifier: 4C:EC:27:F3:75:7B:5F:80:3A:C0:7D:CE:5C:32:5F:63:62:0B:54:F6
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 2B8731A848CC86C73FD091CE63B1CA5C899F16F6
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS2914.roa
Signing time: Mon 04 May 2026 14:03:26 +0000
ROA not before: Mon 04 May 2026 13:58:26 +0000
ROA not after: Mon 03 May 2027 14:03:26 +0000
asID: 2914
IP address blocks: 96.62.32.0/24 maxlen: 24
96.62.33.0/24 maxlen: 24
96.62.34.0/24 maxlen: 24
96.62.35.0/24 maxlen: 24
96.62.36.0/24 maxlen: 24
96.62.38.0/24 maxlen: 24
96.62.39.0/24 maxlen: 24
96.62.40.0/24 maxlen: 24
96.62.41.0/24 maxlen: 24
96.62.42.0/24 maxlen: 24
96.62.43.0/24 maxlen: 24
96.62.44.0/24 maxlen: 24
96.62.46.0/24 maxlen: 24
96.62.64.0/24 maxlen: 24
96.62.65.0/24 maxlen: 24
96.62.66.0/24 maxlen: 24
96.62.67.0/24 maxlen: 24
96.62.68.0/24 maxlen: 24
96.62.70.0/24 maxlen: 24
96.62.102.0/24 maxlen: 24
96.62.104.0/24 maxlen: 24
96.62.106.0/24 maxlen: 24
96.62.107.0/24 maxlen: 24
96.62.108.0/24 maxlen: 24
96.62.109.0/24 maxlen: 24
96.62.110.0/24 maxlen: 24
96.62.112.0/24 maxlen: 24
96.62.113.0/24 maxlen: 24
96.62.116.0/24 maxlen: 24
96.62.117.0/24 maxlen: 24
96.62.118.0/24 maxlen: 24
96.62.119.0/24 maxlen: 24
96.62.120.0/24 maxlen: 24
96.62.121.0/24 maxlen: 24
96.62.122.0/24 maxlen: 24
96.62.123.0/24 maxlen: 24
96.62.124.0/24 maxlen: 24
96.62.125.0/24 maxlen: 24
96.62.126.0/24 maxlen: 24
96.62.132.0/24 maxlen: 24
96.62.133.0/24 maxlen: 24
96.62.134.0/24 maxlen: 24
96.62.136.0/24 maxlen: 24
96.62.137.0/24 maxlen: 24
96.62.138.0/24 maxlen: 24
96.62.139.0/24 maxlen: 24
96.62.141.0/24 maxlen: 24
96.62.142.0/24 maxlen: 24
96.62.143.0/24 maxlen: 24
96.62.144.0/23 maxlen: 24
96.62.146.0/24 maxlen: 24
96.62.147.0/24 maxlen: 24
96.62.156.0/22 maxlen: 24
96.62.160.0/24 maxlen: 24
96.62.161.0/24 maxlen: 24
96.62.162.0/24 maxlen: 24
96.62.163.0/24 maxlen: 24
96.62.164.0/24 maxlen: 24
96.62.165.0/24 maxlen: 24
96.62.166.0/24 maxlen: 24
96.62.167.0/24 maxlen: 24
96.62.168.0/24 maxlen: 24
96.62.169.0/24 maxlen: 24
96.62.170.0/24 maxlen: 24
96.62.171.0/24 maxlen: 24
96.62.172.0/24 maxlen: 24
96.62.173.0/24 maxlen: 24
96.62.174.0/24 maxlen: 24
96.62.175.0/24 maxlen: 24
96.62.177.0/24 maxlen: 24
96.62.178.0/24 maxlen: 24
96.62.179.0/24 maxlen: 24
96.62.188.0/24 maxlen: 24
96.62.189.0/24 maxlen: 24
96.62.196.0/24 maxlen: 24
96.62.198.0/24 maxlen: 24
96.62.199.0/24 maxlen: 24
96.62.212.0/24 maxlen: 24
96.62.213.0/24 maxlen: 24
96.62.215.0/24 maxlen: 24
96.62.225.0/24 maxlen: 24
96.62.226.0/24 maxlen: 24
96.62.230.0/24 maxlen: 24
96.62.236.0/24 maxlen: 24
96.62.237.0/24 maxlen: 24
96.62.238.0/24 maxlen: 24
96.62.239.0/24 maxlen: 24
96.62.240.0/24 maxlen: 24
96.62.241.0/24 maxlen: 24
96.62.245.0/24 maxlen: 24
96.62.246.0/24 maxlen: 24
96.62.252.0/24 maxlen: 24
140.150.153.0/24 maxlen: 24
143.14.60.0/24 maxlen: 24
143.14.61.0/24 maxlen: 24
143.14.72.0/24 maxlen: 24
143.14.84.0/24 maxlen: 24
143.14.85.0/24 maxlen: 24
143.14.108.0/24 maxlen: 24
143.14.109.0/24 maxlen: 24
143.14.154.0/24 maxlen: 24
143.14.197.0/24 maxlen: 24
150.241.130.0/24 maxlen: 24
155.117.101.0/24 maxlen: 24
155.117.104.0/24 maxlen: 24
155.117.160.0/24 maxlen: 24
162.141.16.0/24 maxlen: 24
162.141.18.0/24 maxlen: 24
162.141.45.0/24 maxlen: 24
162.141.53.0/24 maxlen: 24
162.141.81.0/24 maxlen: 24
162.141.89.0/24 maxlen: 24
162.141.99.0/24 maxlen: 24
162.141.102.0/24 maxlen: 24
162.141.132.0/24 maxlen: 24
162.141.143.0/24 maxlen: 24
162.141.154.0/24 maxlen: 24
162.141.162.0/24 maxlen: 24
162.141.176.0/24 maxlen: 24
162.141.177.0/24 maxlen: 24
162.141.182.0/24 maxlen: 24
167.148.7.0/24 maxlen: 24
167.148.9.0/24 maxlen: 24
167.148.11.0/24 maxlen: 24
167.148.12.0/24 maxlen: 24
167.148.13.0/24 maxlen: 24
167.148.30.0/24 maxlen: 24
167.148.31.0/24 maxlen: 24
167.148.32.0/24 maxlen: 24
167.148.34.0/24 maxlen: 24
167.148.47.0/24 maxlen: 24
167.148.71.0/24 maxlen: 24
167.148.72.0/24 maxlen: 24
167.148.73.0/24 maxlen: 24
167.148.74.0/24 maxlen: 24
167.148.99.0/24 maxlen: 24
167.148.101.0/24 maxlen: 24
167.148.103.0/24 maxlen: 24
167.148.107.0/24 maxlen: 24
167.148.113.0/24 maxlen: 24
167.148.114.0/24 maxlen: 24
167.148.124.0/24 maxlen: 24
167.148.129.0/24 maxlen: 24
167.148.132.0/24 maxlen: 24
167.148.133.0/24 maxlen: 24
167.148.137.0/24 maxlen: 24
167.148.142.0/24 maxlen: 24
167.148.143.0/24 maxlen: 24
167.148.146.0/24 maxlen: 24
167.148.151.0/24 maxlen: 24
167.148.155.0/24 maxlen: 24
167.148.160.0/24 maxlen: 24
167.148.174.0/24 maxlen: 24
167.148.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:87:31:a8:48:cc:86:c7:3f:d0:91:ce:63:b1:ca:5c:89:9f:16:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 4 13:58:26 2026 GMT
Not After : May 3 14:03:26 2027 GMT
Subject: CN=4CEC27F3757B5F803AC07DCE5C325F63620B54F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:45:97:84:6c:8e:6e:2b:6e:1f:9a:52:c6:4f:
77:a0:e0:6e:3b:45:4d:de:bc:f6:fe:ae:01:f1:2c:
50:6e:9f:a3:57:1e:4e:fd:03:3a:d7:30:95:9d:40:
b1:1d:9c:04:a4:43:85:7f:a6:ab:76:fc:99:5a:c9:
c3:b3:b5:bf:dd:4f:b6:77:66:48:3c:3f:37:6b:49:
c6:a5:77:a8:0d:57:0f:40:4b:ee:5a:cd:e6:47:4a:
e7:c3:41:ab:4e:18:20:8d:28:bb:e1:bc:d3:fc:5c:
7c:1b:06:15:0a:2c:f4:e4:73:20:13:90:e4:9e:4f:
69:13:71:d5:b8:98:8e:fa:c9:96:27:c5:9f:b9:f6:
ac:ff:e8:e9:af:56:86:5b:c1:3d:d4:32:13:52:67:
23:e9:8d:cc:85:4a:88:be:96:28:29:81:ae:77:7e:
58:f8:b9:14:7d:b1:8c:fa:55:04:95:d9:0c:74:db:
13:e1:aa:73:b4:b3:fa:50:4e:6d:32:0b:53:b7:3c:
d9:4d:19:39:fc:4c:c2:a4:f5:02:9d:9d:81:2b:93:
b5:2a:ba:a4:3d:ad:ca:b8:cd:21:22:31:24:21:af:
91:a9:a2:b8:61:a1:76:ef:e8:bd:d6:a9:f4:3b:02:
55:2c:b4:23:a2:61:e0:43:31:a0:44:a6:e6:75:c4:
4a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:EC:27:F3:75:7B:5F:80:3A:C0:7D:CE:5C:32:5F:63:62:0B:54:F6
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS2914.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.32.0-96.62.36.255
96.62.38.0-96.62.44.255
96.62.46.0/24
96.62.64.0-96.62.68.255
96.62.70.0/24
96.62.102.0/24
96.62.104.0/24
96.62.106.0-96.62.110.255
96.62.112.0/23
96.62.116.0-96.62.126.255
96.62.132.0-96.62.134.255
96.62.136.0/22
96.62.141.0-96.62.147.255
96.62.156.0-96.62.175.255
96.62.177.0-96.62.179.255
96.62.188.0/23
96.62.196.0/24
96.62.198.0/23
96.62.212.0/23
96.62.215.0/24
96.62.225.0-96.62.226.255
96.62.230.0/24
96.62.236.0-96.62.241.255
96.62.245.0-96.62.246.255
96.62.252.0/24
140.150.153.0/24
143.14.60.0/23
143.14.72.0/24
143.14.84.0/23
143.14.108.0/23
143.14.154.0/24
143.14.197.0/24
150.241.130.0/24
155.117.101.0/24
155.117.104.0/24
155.117.160.0/24
162.141.16.0/24
162.141.18.0/24
162.141.45.0/24
162.141.53.0/24
162.141.81.0/24
162.141.89.0/24
162.141.99.0/24
162.141.102.0/24
162.141.132.0/24
162.141.143.0/24
162.141.154.0/24
162.141.162.0/24
162.141.176.0/23
162.141.182.0/24
167.148.7.0/24
167.148.9.0/24
167.148.11.0-167.148.13.255
167.148.30.0-167.148.32.255
167.148.34.0/24
167.148.47.0/24
167.148.71.0-167.148.74.255
167.148.99.0/24
167.148.101.0/24
167.148.103.0/24
167.148.107.0/24
167.148.113.0-167.148.114.255
167.148.124.0/24
167.148.129.0/24
167.148.132.0/23
167.148.137.0/24
167.148.142.0/23
167.148.146.0/24
167.148.151.0/24
167.148.155.0/24
167.148.160.0/24
167.148.174.0/24
167.148.176.0/24
Signature Algorithm: sha256WithRSAEncryption
31:fd:3a:5e:e1:95:09:e7:c0:16:7b:20:bf:6e:aa:f9:ab:31:
7c:d7:a9:ec:9b:5e:08:a8:52:bc:77:ef:9a:69:70:a5:bd:df:
06:08:78:02:db:80:73:78:8e:0e:7b:41:03:5f:40:0d:86:37:
6e:6c:b7:aa:48:3c:3e:71:ee:2c:ab:6c:93:cd:8c:7e:b2:83:
66:0c:b7:f6:1a:a6:2b:dc:d2:95:9e:fd:b6:5a:de:c9:25:50:
a1:0c:d7:4a:21:c2:24:da:92:60:6a:55:5b:06:b1:32:ce:63:
1c:27:f4:a3:e3:d7:77:3c:3f:15:2d:3e:6e:14:8e:6e:c7:71:
9d:08:e7:74:f0:4e:ec:b2:bd:5b:fd:af:62:0a:22:26:30:96:
68:f5:60:1b:29:07:d3:ec:45:b5:2c:fd:c7:6f:2f:12:72:4b:
67:99:3e:e6:6f:c0:c7:b3:25:7f:d9:02:1a:c7:72:e2:2a:01:
8a:a3:8a:54:ab:36:1c:9d:b5:f0:19:64:e8:e2:df:75:3a:8f:
0d:a8:c0:45:52:b1:4b:14:46:24:72:1a:3c:0e:3c:52:05:d3:
30:80:96:5f:71:5d:16:c9:7a:d8:87:99:03:26:53:ce:4e:4e:
19:66:1d:96:46:58:de:7d:cb:ee:0d:f6:3a:be:be:d8:a6:72:
b0:a2:de:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:35:46 2026 by rpki-client