Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS48678.roa
File: AS48678.roa (raw, json)
Hash identifier: iZkBxb5KHqjBws9vi/ydMMLOZxqatVv4dyyLPenbUJ8=
Subject key identifier: F4:4E:0C:D9:EE:07:B8:E3:E8:E3:B8:FD:E8:28:FE:82:25:5B:AD:AF
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 09F6B6CB5E35E8A8EFE053EB3967F2EDEBD0D7F9
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS48678.roa
Signing time: Mon 16 Mar 2026 09:50:30 +0000
ROA not before: Mon 16 Mar 2026 09:45:30 +0000
ROA not after: Mon 15 Mar 2027 09:50:30 +0000
asID: 48678
IP address blocks: 5.133.101.0/24 maxlen: 24
31.40.197.0/24 maxlen: 24
31.40.199.0/24 maxlen: 24
31.40.205.0/24 maxlen: 24
31.40.207.0/24 maxlen: 24
85.235.72.0/24 maxlen: 24
85.235.73.0/24 maxlen: 24
85.235.74.0/24 maxlen: 24
141.98.48.0/24 maxlen: 24
141.98.112.0/24 maxlen: 24
141.98.113.0/24 maxlen: 24
141.98.114.0/24 maxlen: 24
141.98.115.0/24 maxlen: 24
176.96.128.0/24 maxlen: 24
176.96.130.0/24 maxlen: 24
193.111.79.0/24 maxlen: 24
217.18.208.0/24 maxlen: 24
217.18.209.0/24 maxlen: 24
217.18.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:f6:b6:cb:5e:35:e8:a8:ef:e0:53:eb:39:67:f2:ed:eb:d0:d7:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Mar 16 09:45:30 2026 GMT
Not After : Mar 15 09:50:30 2027 GMT
Subject: CN=F44E0CD9EE07B8E3E8E3B8FDE828FE82255BADAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:48:cf:6c:89:b4:71:4c:9e:16:b8:00:0f:e3:
67:52:b0:15:7f:12:6b:8f:e5:cc:d5:21:3e:6e:d9:
45:5e:2e:08:c3:43:58:ab:ba:b4:c9:56:cd:5f:3e:
56:1f:38:3e:ff:45:05:bd:fd:3d:a8:51:de:e2:9e:
1c:1d:4f:1d:e7:65:26:cd:39:ab:c8:32:7b:01:26:
6d:6c:a9:4d:57:60:3b:39:ea:c5:33:88:24:c9:5a:
c0:b7:07:8d:05:3e:8b:3f:f4:04:ee:42:b8:90:24:
b9:e2:82:73:44:2e:c9:e4:16:42:eb:ca:2c:5c:92:
ad:28:da:0e:14:a3:8e:22:33:a2:85:de:22:e9:98:
f7:78:37:23:34:68:7c:dd:52:d8:f4:7d:20:5b:0d:
f4:52:34:62:3f:1b:62:13:f4:16:9d:2a:5a:a7:50:
f6:4e:70:42:68:69:a0:5d:25:b0:42:2b:7a:22:3a:
c3:09:95:7a:a7:7d:3c:c6:8a:12:81:6a:14:e8:20:
60:16:35:f1:fc:41:88:c9:bf:d4:7f:52:10:2b:0f:
f0:1d:ff:58:bb:36:6c:24:b6:d9:44:9c:75:c7:02:
ac:02:57:59:f8:84:e0:b5:f3:55:db:7d:96:88:e7:
ec:15:e9:7f:ad:b6:b2:23:01:80:1a:4d:e6:29:17:
2a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:4E:0C:D9:EE:07:B8:E3:E8:E3:B8:FD:E8:28:FE:82:25:5B:AD:AF
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS48678.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.101.0/24
31.40.197.0/24
31.40.199.0/24
31.40.205.0/24
31.40.207.0/24
85.235.72.0-85.235.74.255
141.98.48.0/24
141.98.112.0/22
176.96.128.0/24
176.96.130.0/24
193.111.79.0/24
217.18.208.0/23
217.18.211.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:c9:20:a8:7b:b5:c0:e9:1e:10:c3:38:5a:51:e5:29:60:14:
54:b6:9f:d1:e3:06:96:06:a9:48:93:a7:2d:1c:83:c3:38:f6:
3c:63:c9:5e:a5:03:16:6d:ba:89:3e:ef:dc:6b:80:bb:12:85:
31:21:af:2b:a8:9d:ec:74:51:c2:a3:44:71:b4:cd:48:d1:a4:
e9:da:1f:28:2b:ed:ea:02:66:ff:87:5e:34:14:d9:5c:6f:59:
80:2b:fb:1d:07:86:80:27:8d:6a:c8:c2:19:ea:0c:69:4a:34:
c1:38:94:76:f1:6e:cd:5a:7b:81:ed:ad:fb:ae:d0:a7:b6:1f:
c0:d5:02:3c:66:96:9a:a9:62:29:e6:48:36:87:5d:57:a6:bb:
3d:51:ed:63:d9:35:d4:8c:71:4d:c1:d8:05:a8:76:83:ac:a0:
29:e4:32:08:31:43:2c:d0:ea:8e:5e:1d:f4:9f:04:f5:36:92:
7c:f7:f0:1c:05:2e:de:6a:55:49:8f:fd:dc:1e:49:67:db:62:
d6:33:3b:ce:ad:8a:c4:6e:a5:ce:86:55:71:16:45:57:e3:9c:
25:fc:fd:c9:57:f9:3c:0a:25:ee:3e:43:0e:d3:0c:71:81:1e:
e4:16:7c:8c:c9:13:b8:98:bb:78:bf:d8:55:6a:d5:e5:19:01:
87:fc:32:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:25:25 2026 by rpki-client