Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS30058.roa
File: AS30058.roa (raw, json)
Hash identifier: XhiK2Q4WQmzn4z/JsgxjAaixCjaZjPTaEq39c4bo5ro=
Subject key identifier: DE:EC:10:CB:26:20:68:1E:9B:9C:BB:03:33:DE:C0:B2:E2:64:8B:5A
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 5C5945E167CA15F6E1521826D995AF3E6684BBB9
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS30058.roa
Signing time: Tue 17 Mar 2026 08:16:42 +0000
ROA not before: Tue 17 Mar 2026 08:11:42 +0000
ROA not after: Tue 16 Mar 2027 08:16:42 +0000
asID: 30058
IP address blocks: 96.62.243.0/24 maxlen: 24
150.241.199.0/24 maxlen: 24
155.117.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:59:45:e1:67:ca:15:f6:e1:52:18:26:d9:95:af:3e:66:84:bb:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 17 08:11:42 2026 GMT
Not After : Mar 16 08:16:42 2027 GMT
Subject: CN=DEEC10CB2620681E9B9CBB0333DEC0B2E2648B5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:13:5d:c2:b2:22:51:3a:fa:09:7d:a5:ea:da:
49:13:16:21:25:ff:5f:0a:2f:20:80:c3:dc:a7:24:
1a:6c:4f:d4:f5:8a:c0:2f:9f:be:36:66:b7:6d:cd:
41:22:32:63:19:eb:94:cb:30:98:c4:4a:db:15:12:
16:cb:99:b4:0c:c7:21:55:87:e0:21:5b:8f:17:98:
11:92:af:23:4b:9e:d7:f9:ba:b4:02:46:7b:44:8c:
96:46:15:58:06:48:b4:14:ea:b2:46:76:5e:2a:b0:
a4:3c:73:3e:55:09:7e:c3:d6:47:e8:c9:a3:25:e8:
0a:cc:ea:02:fe:8b:c5:96:88:a0:49:66:4f:51:d2:
10:ed:d4:30:fd:58:8c:4d:80:89:4a:bc:3d:05:2c:
4c:76:de:7f:59:27:0d:84:95:2f:0a:40:c8:bf:8e:
bd:3c:dd:19:a9:ac:e2:d7:7b:d9:ae:4c:49:37:27:
6d:c2:b8:99:06:aa:2e:b3:ea:e2:fc:52:66:31:dc:
17:6a:47:6c:49:96:c2:39:34:05:4a:26:61:75:6c:
a6:73:8c:0f:5a:5f:ca:2b:36:f1:9d:b4:88:b6:69:
03:98:02:54:17:37:51:a1:6b:fd:56:29:77:70:ae:
ab:69:00:a2:98:a6:b2:f5:21:14:84:9f:50:34:a8:
34:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:EC:10:CB:26:20:68:1E:9B:9C:BB:03:33:DE:C0:B2:E2:64:8B:5A
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS30058.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.243.0/24
150.241.199.0/24
155.117.151.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:9b:99:ad:c0:e0:3e:96:25:19:3d:1c:ff:9d:bc:68:7c:81:
91:ba:fd:c9:50:12:68:2f:51:7a:7f:bc:7f:b2:9f:4f:52:00:
c8:39:10:9d:f4:15:83:2b:82:d0:0b:8e:3f:f1:21:79:79:87:
c0:b4:53:f8:31:64:3b:35:58:4d:81:f2:9e:b3:49:42:bd:4d:
bd:fb:b7:f8:ec:7d:41:d9:38:ed:8e:ec:50:84:61:4a:22:2a:
38:c4:dc:80:52:ae:76:56:67:b6:1e:32:78:7c:02:c0:12:ba:
5d:d6:ed:be:29:96:6a:02:cf:50:d7:03:ca:ac:74:bc:96:b3:
d4:c3:72:45:c2:83:b4:8f:77:f5:92:d3:76:03:cd:bd:bd:d7:
2f:db:4d:c9:35:e5:a0:30:03:f1:14:42:9d:81:59:0f:94:0e:
90:0d:f1:1e:75:13:7c:ca:6e:40:fd:08:d3:5a:40:fc:ca:70:
b5:6b:2d:ce:08:b6:3c:0b:cd:88:3c:8d:7b:b6:fd:07:1c:d1:
68:64:8e:fa:3a:af:93:21:07:d2:71:8a:0f:f9:cc:aa:93:9f:
b7:d7:a1:bf:e8:27:e0:66:3b:72:ce:52:c3:55:fa:ab:09:30:
4b:13:11:68:ab:55:1b:68:c0:a8:45:d8:c8:57:6c:f9:d1:07:
6e:ef:67:f2
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIUXFlF4WfKFfbhUhgm2ZWvPmaEu7kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNjAzMTcwODExNDJaFw0yNzAzMTYwODE2NDJaMDMxMTAvBgNV
BAMTKERFRUMxMENCMjYyMDY4MUU5QjlDQkIwMzMzREVDMEIyRTI2NDhCNUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWE13CsiJROvoJfaXq2kkTFiEl
/18KLyCAw9ynJBpsT9T1isAvn742ZrdtzUEiMmMZ65TLMJjEStsVEhbLmbQMxyFV
h+AhW48XmBGSryNLntf5urQCRntEjJZGFVgGSLQU6rJGdl4qsKQ8cz5VCX7D1kfo
yaMl6ArM6gL+i8WWiKBJZk9R0hDt1DD9WIxNgIlKvD0FLEx23n9ZJw2ElS8KQMi/
jr083RmprOLXe9muTEk3J23CuJkGqi6z6uL8UmYx3BdqR2xJlsI5NAVKJmF1bKZz
jA9aX8orNvGdtIi2aQOYAlQXN1Gha/1WKXdwrqtpAKKYprL1IRSEn1A0qDQRAgMB
AAGjggIVMIICETAdBgNVHQ4EFgQU3uwQyyYgaB6bnLsDM97AsuJki1owHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMzAwNTgucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBABgPvMD
BACW8ccDBACbdZcwDQYJKoZIhvcNAQELBQADggEBAHqbma3A4D6WJRk9HP+dvGh8
gZG6/clQEmgvUXp/vH+yn09SAMg5EJ30FYMrgtALjj/xIXl5h8C0U/gxZDs1WE2B
8p6zSUK9Tb37t/jsfUHZOO2O7FCEYUoiKjjE3IBSrnZWZ7YeMnh8AsASul3W7b4p
lmoCz1DXA8qsdLyWs9TDckXCg7SPd/WS03YDzb291y/bTck15aAwA/EUQp2BWQ+U
DpAN8R51E3zKbkD9CNNaQPzKcLVrLc4ItjwLzYg8jXu2/Qcc0Whkjvo6r5MhB9Jx
ig/5zKqTn7fXob/oJ+BmO3LOUsNV+qsJMEsTEWirVRtowKhF2MhXbPnRB27vZ/I=
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:48:28 2026 by rpki-client