Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63023.roa
File: AS63023.roa (raw, json)
Hash identifier: tv5BjyPJVnuI+ziWwVOASWGMyLj6FoxIImJkgWQyrg0=
Subject key identifier: D6:48:FB:65:43:5F:AE:E3:73:95:92:3D:23:8D:9A:6D:5E:6C:13:FD
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 272D65EF082F48CA82FBCA1842E0959A23C550CF
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63023.roa
Signing time: Mon 16 Mar 2026 17:08:07 +0000
ROA not before: Mon 16 Mar 2026 17:03:07 +0000
ROA not after: Mon 15 Mar 2027 17:08:07 +0000
asID: 63023
IP address blocks: 96.62.77.0/24 maxlen: 24
96.62.100.0/24 maxlen: 24
143.14.67.0/24 maxlen: 24
143.14.220.0/24 maxlen: 24
155.117.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:2d:65:ef:08:2f:48:ca:82:fb:ca:18:42:e0:95:9a:23:c5:50:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 16 17:03:07 2026 GMT
Not After : Mar 15 17:08:07 2027 GMT
Subject: CN=D648FB65435FAEE37395923D238D9A6D5E6C13FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:49:14:b1:1e:6d:04:01:cb:e3:b2:87:85:03:
bd:63:07:c9:ae:58:7e:04:10:47:01:33:be:b7:8d:
e1:80:97:cf:88:96:2c:a6:cc:7d:ac:a8:9f:1c:a1:
59:ce:de:db:26:48:f6:98:a2:51:68:ff:c4:5c:34:
c2:27:7f:9d:62:47:ad:37:e2:56:a5:4c:2a:0c:94:
38:6a:ba:73:8b:66:f7:f3:5e:86:85:0e:f8:e0:27:
3a:7a:01:94:d9:96:77:dd:f4:8f:97:90:98:52:97:
2b:2b:eb:fb:d8:94:ec:82:78:29:fd:46:71:bd:0d:
be:ff:a3:ce:ce:18:bb:15:d8:f8:0d:c3:d6:59:c5:
97:82:8f:5a:77:e9:0b:81:e2:43:dc:8c:9b:22:e6:
cf:72:3f:07:94:6e:8a:43:d5:b8:45:50:04:19:f6:
b0:00:49:f1:49:3b:d2:2e:96:bf:a8:f2:38:9a:94:
fd:ea:ed:70:66:f9:3b:1b:46:53:b8:91:10:49:b9:
14:49:8c:a1:b2:ea:57:70:98:e6:f0:5a:92:b2:22:
b8:41:f6:0f:a0:f7:4b:02:01:c2:ae:49:31:fd:03:
fc:63:65:e9:f3:26:09:2d:4a:56:bc:8e:73:12:d8:
c8:02:ba:0c:0d:11:39:09:6f:8e:c9:a0:aa:2f:98:
98:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:48:FB:65:43:5F:AE:E3:73:95:92:3D:23:8D:9A:6D:5E:6C:13:FD
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63023.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.77.0/24
96.62.100.0/24
143.14.67.0/24
143.14.220.0/24
155.117.206.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:b2:d3:4f:e5:20:11:c0:b4:7f:30:44:67:6a:f0:6d:d4:73:
d7:b0:83:19:29:8a:0d:6a:97:45:62:b4:b1:92:72:0d:90:c2:
47:f5:f9:90:b2:c1:8b:21:a9:42:95:37:d4:2a:70:c8:35:12:
38:8e:38:d9:73:ca:cb:7d:75:02:d6:bb:c5:8a:07:21:e0:b4:
ce:79:78:fc:ad:51:b7:3f:6d:c0:0e:bb:cd:f1:57:e6:d0:c4:
1c:0c:87:3e:3c:01:3e:05:e0:bc:c2:b8:38:ac:52:92:86:4e:
46:73:90:64:57:f6:f5:c8:1e:84:ce:ae:a1:b2:2c:08:8a:d5:
52:19:24:3d:ff:db:1a:7e:c1:c1:bd:02:6e:4b:89:bc:a9:d8:
13:40:ea:23:10:71:c3:61:be:11:60:5f:da:06:df:0e:d9:7c:
c2:9e:62:26:d4:9f:b3:f8:b0:75:68:28:01:dc:89:b3:30:6c:
9d:8a:c1:49:fe:9e:3e:38:b2:e6:4e:b1:18:f6:26:76:d0:e1:
76:2f:54:8d:c1:93:86:f5:46:aa:46:3e:ad:01:c2:f3:24:84:
f2:5e:ae:67:14:23:50:de:d4:27:da:88:80:94:97:1c:4d:59:
8b:e1:3c:9c:3a:88:7d:84:01:40:ba:9d:c0:ca:68:d5:f6:21:
b8:d5:79:d4
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgIUJy1l7wgvSMqC+8oYQuCVmiPFUM8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNjAzMTYxNzAzMDdaFw0yNzAzMTUxNzA4MDdaMDMxMTAvBgNV
BAMTKEQ2NDhGQjY1NDM1RkFFRTM3Mzk1OTIzRDIzOEQ5QTZENUU2QzEzRkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0SRSxHm0EAcvjsoeFA71jB8mu
WH4EEEcBM763jeGAl8+IliymzH2sqJ8coVnO3tsmSPaYolFo/8RcNMInf51iR603
4lalTCoMlDhqunOLZvfzXoaFDvjgJzp6AZTZlnfd9I+XkJhSlysr6/vYlOyCeCn9
RnG9Db7/o87OGLsV2PgNw9ZZxZeCj1p36QuB4kPcjJsi5s9yPweUbopD1bhFUAQZ
9rAASfFJO9Iulr+o8jialP3q7XBm+TsbRlO4kRBJuRRJjKGy6ldwmObwWpKyIrhB
9g+g90sCAcKuSTH9A/xjZenzJgktSla8jnMS2MgCugwNETkJb47JoKovmJhTAgMB
AAGjggIhMIICHTAdBgNVHQ4EFgQU1kj7ZUNfruNzlZI9I42abV5sE/0wHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNjMwMjMucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwNwYIKwYBBQUHAQcBAf8EKDAmMCQEAgABMB4DBABgPk0D
BABgPmQDBACPDkMDBACPDtwDBACbdc4wDQYJKoZIhvcNAQELBQADggEBAJ2y00/l
IBHAtH8wRGdq8G3Uc9ewgxkpig1ql0VitLGScg2Qwkf1+ZCywYshqUKVN9QqcMg1
EjiOONlzyst9dQLWu8WKByHgtM55ePytUbc/bcAOu83xV+bQxBwMhz48AT4F4LzC
uDisUpKGTkZzkGRX9vXIHoTOrqGyLAiK1VIZJD3/2xp+wcG9Am5Libyp2BNA6iMQ
ccNhvhFgX9oG3w7ZfMKeYibUn7P4sHVoKAHcibMwbJ2KwUn+nj44suZOsRj2JnbQ
4XYvVI3Bk4b1RqpGPq0BwvMkhPJermcUI1De1CfaiICUlxxNWYvhPJw6iH2EAUC6
ncDKaNX2IbjVedQ=
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:48:17 2026 by rpki-client