Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS53850.roa
File: AS53850.roa (raw, json)
Hash identifier: M+ofN8F+tuafbBlMvsqO7p5spH6V9YqI6yvZYFTFd68=
Subject key identifier: 4D:98:81:CE:B8:D5:5A:E6:69:C4:A7:56:E0:DC:FB:9B:B9:AF:69:40
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 35D36D54D6BAA21B331B42D6FC3A8E7202183FF2
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS53850.roa
Signing time: Fri 01 May 2026 07:15:50 +0000
ROA not before: Fri 01 May 2026 07:10:50 +0000
ROA not after: Fri 30 Apr 2027 07:15:50 +0000
asID: 53850
IP address blocks: 2a14:7581:9f43::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 08:48:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:d3:6d:54:d6:ba:a2:1b:33:1b:42:d6:fc:3a:8e:72:02:18:3f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: May 1 07:10:50 2026 GMT
Not After : Apr 30 07:15:50 2027 GMT
Subject: CN=4D9881CEB8D55AE669C4A756E0DCFB9BB9AF6940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:42:83:5d:87:0b:57:c7:a2:88:73:4c:eb:3d:
6d:e9:77:17:ab:1c:95:d8:6e:14:cc:ec:7b:68:bd:
86:81:94:7d:08:70:c6:cf:08:32:1c:68:0f:71:52:
51:bc:15:87:25:85:2f:4f:be:a1:c0:8d:73:27:c7:
7b:20:34:6c:0b:41:af:95:d0:8c:b7:a8:af:1b:69:
43:c9:07:99:e0:d7:0d:59:27:96:3c:09:3a:3d:82:
bc:99:2a:72:bb:48:24:32:77:1a:24:94:55:05:99:
14:c5:de:19:f9:ee:ca:76:07:89:41:ac:e9:7e:c8:
1b:5a:ad:23:4f:29:8c:b3:5a:7b:03:fc:bb:e8:29:
d3:ce:44:8c:6b:e3:d5:f8:03:56:a5:00:74:90:f4:
68:49:02:0a:49:01:13:7e:9c:3f:9f:83:16:89:39:
44:7f:a5:1b:05:56:24:67:a9:5a:42:07:ca:d9:86:
d6:8a:b0:a8:fc:62:6d:aa:95:1a:3d:d2:bd:22:59:
0f:6f:a4:75:01:83:7f:08:08:eb:b1:50:0e:bd:c0:
ad:88:7a:60:89:3f:7d:30:bb:31:73:ee:dd:7f:9a:
b4:36:68:c8:44:d9:a5:6f:de:ce:6b:3b:b7:bc:fa:
f3:5a:43:83:ec:eb:91:91:99:ae:51:2c:75:be:51:
62:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:98:81:CE:B8:D5:5A:E6:69:C4:A7:56:E0:DC:FB:9B:B9:AF:69:40
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS53850.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:9f43::/48
Signature Algorithm: sha256WithRSAEncryption
22:e4:63:fb:5d:9f:61:82:0c:7b:52:44:9a:59:08:0d:8a:f6:
e2:21:c2:a6:b2:f2:0c:ab:32:57:7f:52:0a:80:d9:1a:1c:c2:
36:e8:af:d2:6b:f1:5f:bb:01:7a:bc:79:f8:7f:9b:bd:96:25:
02:5a:8b:ab:41:88:d2:93:97:b2:3e:5c:63:55:67:06:5d:56:
60:e0:6f:3e:f1:79:3c:3b:fa:76:98:a5:ed:54:e4:6b:9c:26:
ec:1d:e7:fc:4a:37:89:f9:60:a1:fd:86:b0:42:57:fe:06:aa:
03:35:6f:fa:00:9b:9e:e5:c6:a4:87:88:f7:1a:13:f3:26:83:
bd:f6:2f:ae:b5:1d:7f:f6:51:84:c7:9d:36:0c:c3:c6:8d:d0:
54:9b:87:44:e5:c3:27:3e:88:13:d1:b2:4b:16:79:cc:83:4b:
35:8b:fe:7d:75:d1:11:74:df:a4:9c:e5:66:de:6b:6a:7b:23:
9d:fd:d3:fa:6a:f9:41:9c:cc:e8:7d:4c:6d:83:b7:aa:04:d5:
08:ff:66:13:f9:c0:60:b5:6e:94:a9:38:51:2c:f0:52:da:b4:
4f:34:4e:60:cf:46:78:7f:30:61:f7:5f:2b:d1:32:98:37:ed:
29:ed:ac:0e:5b:c2:c4:a9:8c:23:a1:75:72:4f:d0:c3:84:0e:
d5:12:70:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:22:15 2026 by rpki-client