Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS199741.roa
File: AS199741.roa (raw, json)
Hash identifier: RDCyWb3f428RRLPHrIxlkuFT1P1G9nvH4V0zhBw++oQ=
Subject key identifier: D3:55:D6:0A:73:FA:02:7B:54:CC:D2:7F:89:BC:A6:8D:59:D8:47:09
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 23EE8CC6C5EB74546EAF68B86C2F36865D079ABD
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS199741.roa
Signing time: Thu 30 Apr 2026 04:22:34 +0000
ROA not before: Thu 30 Apr 2026 04:17:34 +0000
ROA not after: Thu 29 Apr 2027 04:22:34 +0000
asID: 199741
IP address blocks: 51.194.164.0/24 maxlen: 24
51.194.174.0/24 maxlen: 24
51.194.175.0/24 maxlen: 24
51.194.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:ee:8c:c6:c5:eb:74:54:6e:af:68:b8:6c:2f:36:86:5d:07:9a:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Apr 30 04:17:34 2026 GMT
Not After : Apr 29 04:22:34 2027 GMT
Subject: CN=D355D60A73FA027B54CCD27F89BCA68D59D84709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5b:f2:4c:d3:d4:78:bf:4d:5d:0f:2b:a3:d3:
34:93:81:5f:5c:f3:04:5a:2a:67:20:d8:5f:ad:3c:
75:5f:4f:fd:91:09:15:60:ac:f6:f7:8c:9e:8c:c8:
00:1a:44:b5:f1:d2:f5:03:ed:2d:3a:7e:83:98:35:
41:85:a2:6c:a8:e9:1a:1a:3a:41:a2:17:31:51:5e:
f2:66:da:c0:6c:38:7f:fb:96:26:53:d2:10:0c:40:
22:73:c4:8b:fb:1d:70:24:96:11:fe:83:52:ca:59:
13:73:06:ef:23:b2:75:56:b1:fe:54:a4:ac:95:ec:
99:78:7d:3f:03:2c:2b:49:57:8a:ba:22:45:f9:d3:
b1:84:3f:01:2b:87:48:37:b5:af:8e:91:1b:7a:0c:
d2:f3:cb:72:fd:91:9b:91:73:3c:9a:81:84:c5:52:
7f:8b:bb:24:59:65:34:55:8f:39:86:af:ae:c8:2b:
50:0a:34:96:8d:e0:3b:cb:7f:f1:44:e9:09:f3:8f:
58:f5:af:be:3d:6d:36:5a:2f:01:d7:30:00:26:83:
e1:10:27:60:3b:fa:80:e1:e9:c2:b6:00:d4:7b:03:
67:83:1b:8f:95:bb:14:71:dc:76:ac:ee:00:ae:cb:
5b:cb:f7:d2:46:d9:ff:7f:17:a2:3c:3a:a0:a5:ab:
af:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:55:D6:0A:73:FA:02:7B:54:CC:D2:7F:89:BC:A6:8D:59:D8:47:09
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS199741.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.194.164.0/24
51.194.174.0/23
51.194.190.0/24
Signature Algorithm: sha256WithRSAEncryption
15:7c:81:5b:14:7b:51:94:50:fa:26:1a:36:8e:09:25:fd:89:
2b:23:80:db:40:bf:a3:26:c6:fc:2d:d7:d1:12:16:60:c6:db:
b3:2c:23:00:7d:96:7e:bb:19:dd:5e:35:62:0a:9c:7a:4a:52:
66:aa:06:c8:99:bf:6e:4b:22:e4:72:c4:bb:fd:30:58:03:14:
8a:75:e4:a3:22:2e:02:0b:88:a6:a6:d8:66:08:bf:cd:59:2c:
9f:9a:20:1f:60:cc:93:39:16:f7:94:ab:b6:b6:5d:cc:64:5c:
42:b7:33:f8:ca:f5:e9:27:0e:23:e0:15:d9:d3:9b:f0:ef:33:
a0:9d:95:bf:1e:89:1c:c8:c8:dd:34:12:70:bf:71:83:de:c5:
6e:e7:14:b4:51:31:ae:ac:0d:32:ef:6d:74:25:e4:9c:67:b3:
4e:1c:7d:9d:cb:1e:cf:59:32:58:c0:f4:1f:57:a1:2f:e8:cf:
a5:50:98:a2:01:11:21:42:90:28:86:17:dd:df:2d:aa:04:b9:
24:53:93:ef:ca:2f:ed:1e:1e:39:1c:56:d3:7b:e9:7a:b5:ac:
87:bb:de:9e:e7:1f:84:0c:ad:7c:a8:61:b2:58:46:cc:f0:d5:
39:a6:d4:2b:5d:ae:d2:05:64:54:e8:ea:36:6d:e6:cf:18:06:
54:ff:95:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:34:57 2026 by rpki-client