Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS274918.roa
File: AS274918.roa (raw, json)
Hash identifier: c4YQbYjH3KDWK2WAcgJYsvrextSjeHJ2vz1hZkoz1Ug=
Subject key identifier: CE:70:E1:6D:A1:80:45:F5:56:BD:2E:BD:05:A4:82:00:61:2F:57:DE
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 2A997123E882CF9A8FF35D61F0968F786854BFBE
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS274918.roa
Signing time: Mon 11 May 2026 19:42:06 +0000
ROA not before: Mon 11 May 2026 19:37:06 +0000
ROA not after: Mon 10 May 2027 19:42:06 +0000
asID: 274918
IP address blocks: 147.78.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:99:71:23:e8:82:cf:9a:8f:f3:5d:61:f0:96:8f:78:68:54:bf:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: May 11 19:37:06 2026 GMT
Not After : May 10 19:42:06 2027 GMT
Subject: CN=CE70E16DA18045F556BD2EBD05A48200612F57DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d2:2a:b5:84:2f:d9:9f:9a:a3:ed:e0:75:2b:
0c:84:48:ca:98:52:c4:bb:0e:98:8e:90:e2:93:b6:
bc:dd:81:4c:92:84:f9:5c:e6:9e:d5:68:12:ce:5e:
16:12:d3:d2:95:b5:96:04:d0:36:84:9e:92:94:fa:
34:ee:de:91:77:3a:3f:36:f6:87:21:e0:c1:a8:a9:
6e:3a:ea:8f:04:b6:b2:b7:5c:8f:47:53:90:79:13:
f6:e6:20:e4:96:6c:cb:35:86:0e:23:76:33:51:c5:
f3:03:9f:2f:cc:1b:51:bd:27:fa:92:de:2b:db:a4:
79:39:59:ac:3f:d4:b4:f2:0a:3d:72:41:8a:47:45:
73:3f:6d:2b:81:5c:5a:96:97:2a:66:21:9e:f7:33:
fd:36:e5:f2:ac:16:12:0a:32:1a:24:d6:79:02:ec:
b7:15:3c:b8:43:30:7b:2e:c9:53:a3:90:ef:80:d6:
31:62:53:13:df:11:40:f8:54:43:93:a6:d0:3c:be:
b5:d1:fb:be:ff:c2:57:68:2c:09:1f:b7:fa:fc:d2:
f2:2b:7c:e3:ea:7b:4e:e2:ab:13:4c:eb:15:0d:b1:
df:73:8b:4c:f6:89:e4:e8:4a:1f:e9:3c:ae:9b:fd:
29:0d:e3:8b:f8:35:69:3e:82:0c:38:3c:79:72:cf:
c2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:70:E1:6D:A1:80:45:F5:56:BD:2E:BD:05:A4:82:00:61:2F:57:DE
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS274918.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.123.0/24
Signature Algorithm: sha256WithRSAEncryption
72:e3:dd:ac:d1:06:25:ba:43:b7:e0:3a:62:b2:46:13:95:4e:
fc:a0:c9:a9:7b:dc:d3:7a:bd:c8:c2:dd:84:12:e5:bc:ad:eb:
2d:6c:c2:f7:e2:e1:81:8f:30:9b:10:a0:3c:5c:dd:a4:a7:a4:
1c:69:4d:5f:21:0c:22:bd:c1:74:e3:aa:61:b2:37:d9:e6:8a:
74:7a:34:33:d1:84:42:5e:54:5d:c5:36:4e:9a:0d:7c:33:49:
a2:b3:75:29:d8:0b:75:06:e0:69:38:f8:ce:22:2e:32:6b:36:
a5:46:26:13:98:d3:0a:38:b5:5e:9e:37:79:64:19:47:e4:44:
a7:1b:69:86:30:bb:0d:59:a2:53:aa:21:7e:39:e5:ba:d9:84:
5c:25:a6:d8:97:a7:eb:10:e4:64:3e:b2:01:ad:72:b2:b7:ab:
24:09:d3:51:ce:24:7a:10:4b:4c:12:eb:22:b4:08:a1:b6:15:
55:d6:b3:bd:74:22:4f:e7:cb:96:8b:a0:d6:48:e5:81:8d:96:
b6:61:c8:29:ee:e0:5f:a6:27:b5:d0:f3:11:b9:ee:65:e3:11:
9f:e5:b4:fa:19:43:27:c0:b2:d1:5f:7e:17:b6:69:96:e8:59:
43:c6:04:04:f3:0b:0c:3e:7c:97:61:65:9b:51:16:3b:cf:51:
d4:90:f9:a9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUKplxI+iCz5qP811h8JaPeGhUv74wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi
MmQ2ZWQ5ZDAeFw0yNjA1MTExOTM3MDZaFw0yNzA1MTAxOTQyMDZaMDMxMTAvBgNV
BAMTKENFNzBFMTZEQTE4MDQ1RjU1NkJEMkVCRDA1QTQ4MjAwNjEyRjU3REUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC30iq1hC/Zn5qj7eB1KwyESMqY
UsS7DpiOkOKTtrzdgUyShPlc5p7VaBLOXhYS09KVtZYE0DaEnpKU+jTu3pF3Oj82
9och4MGoqW466o8EtrK3XI9HU5B5E/bmIOSWbMs1hg4jdjNRxfMDny/MG1G9J/qS
3ivbpHk5Waw/1LTyCj1yQYpHRXM/bSuBXFqWlypmIZ73M/025fKsFhIKMhok1nkC
7LcVPLhDMHsuyVOjkO+A1jFiUxPfEUD4VEOTptA8vrXR+77/wldoLAkft/r80vIr
fOPqe07iqxNM6xUNsd9zi0z2ieToSh/pPK6b/SkN44v4NWk+ggw4PHlyz8KDAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUznDhbaGARfVWvS69BaSCAGEvV94wHwYDVR0j
BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi
ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM
VzdaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct
NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTMjc0OTE4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk057
MA0GCSqGSIb3DQEBCwUAA4IBAQBy492s0QYlukO34DpiskYTlU78oMmpe9zTer3I
wt2EEuW8restbML34uGBjzCbEKA8XN2kp6QcaU1fIQwivcF046phsjfZ5op0ejQz
0YRCXlRdxTZOmg18M0mis3Up2At1BuBpOPjOIi4yazalRiYTmNMKOLVenjd5ZBlH
5ESnG2mGMLsNWaJTqiF+OeW62YRcJabYl6frEORkPrIBrXKyt6skCdNRziR6EEtM
EusitAihthVV1rO9dCJP58uWi6DWSOWBjZa2Ycgp7uBfpie10PMRue5l4xGf5bT6
GUMnwLLRX34XtmmW6FlDxgQE8wsMPnyXYWWbURY7z1HUkPmp
-----END CERTIFICATE-----
Generated at Tue May 12 22:59:46 2026 by rpki-client