Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS213784.roa
File: AS213784.roa (raw, json)
Hash identifier: LTYhKE64q4I6ruQYp1z1EHq4GkPeLqnmBItKUeeQMs4=
Subject key identifier: BE:B3:51:51:AA:1D:89:4E:E9:70:F2:5E:9D:7E:78:2A:53:DF:FB:A4
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 0F2E26F070F00F0ACEBDB61787307EDAF2460E57
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS213784.roa
Signing time: Tue 12 May 2026 15:38:41 +0000
ROA not before: Tue 12 May 2026 15:33:41 +0000
ROA not after: Tue 11 May 2027 15:38:41 +0000
asID: 213784
IP address blocks: 51.241.28.0/22 maxlen: 24
51.241.36.0/22 maxlen: 24
51.241.68.0/22 maxlen: 24
51.241.88.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:54:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:2e:26:f0:70:f0:0f:0a:ce:bd:b6:17:87:30:7e:da:f2:46:0e:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: May 12 15:33:41 2026 GMT
Not After : May 11 15:38:41 2027 GMT
Subject: CN=BEB35151AA1D894EE970F25E9D7E782A53DFFBA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3c:e6:b2:40:6c:43:7a:86:cd:55:80:a8:45:
a7:d4:0a:02:1e:13:99:ef:93:34:d9:65:a2:46:de:
c9:a1:42:81:fb:27:93:ad:bd:13:54:8a:e1:b4:eb:
81:a0:29:e6:a3:db:33:8e:db:9f:6d:e6:6d:8f:e4:
ec:41:a4:24:17:80:90:d8:58:b7:88:db:8a:c1:d4:
3f:ba:6a:1f:ca:9f:a9:5b:d3:70:54:e9:4c:a9:52:
ea:bd:14:82:68:11:c9:0b:fb:33:67:3a:73:34:8e:
6c:3f:f7:ba:56:45:48:0e:2c:a2:f4:30:d9:56:62:
bb:0c:9c:a4:65:59:ae:03:37:e4:55:51:cf:e7:b0:
02:3c:03:c0:50:16:48:bc:09:10:ca:36:95:db:bc:
7d:f8:fe:27:cb:6e:0f:4f:55:cd:71:99:f3:b9:1c:
d4:98:df:6e:95:74:9c:63:fc:b0:8c:cd:52:c9:77:
b4:bd:72:24:d8:8c:57:87:b4:45:32:50:62:61:00:
ab:f3:5a:1b:7d:df:c0:5e:13:b9:9a:bf:3a:7e:87:
6a:63:92:5e:77:98:a2:ce:2b:93:36:4f:cd:da:45:
ab:61:f0:d5:22:ce:d1:c1:68:24:e5:0a:22:62:28:
7c:af:fd:63:c5:68:df:9f:12:38:15:58:2e:3f:50:
4d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:B3:51:51:AA:1D:89:4E:E9:70:F2:5E:9D:7E:78:2A:53:DF:FB:A4
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS213784.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.241.28.0/22
51.241.36.0/22
51.241.68.0/22
51.241.88.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:31:dc:9c:88:00:d0:66:3d:a3:18:fa:98:c1:30:15:e9:65:
a4:2a:e2:99:8e:7a:f1:34:20:9c:28:00:99:c5:9a:fa:98:14:
45:30:35:75:40:89:65:9f:b4:4c:b3:2c:45:21:a6:1c:43:df:
18:07:e4:6a:3c:dd:bd:32:60:0b:83:e5:23:a6:14:b6:69:df:
52:12:e6:2c:64:e1:6c:a5:4c:2c:d5:e0:6c:86:d8:7a:2e:96:
48:9f:e5:00:4a:94:d7:31:0b:62:62:87:db:cd:cd:8f:8c:2c:
0e:a3:86:7c:36:98:07:40:f4:21:3d:6f:19:ef:fa:d4:ce:e7:
8b:80:ec:2f:d9:19:46:30:19:ad:91:7e:4b:36:0d:33:7d:2c:
49:35:22:fe:6f:0c:f6:bc:b3:53:1c:a6:c4:5f:87:cd:81:9c:
44:0e:49:2c:07:49:56:bc:31:81:a5:f3:85:91:72:32:08:ee:
4d:29:a4:1a:17:16:e2:4c:b6:c3:90:6c:a7:df:54:b5:dd:d3:
b5:17:ef:cc:63:02:3d:15:d6:54:40:b0:94:c4:04:0a:f8:14:
21:9c:d5:37:6c:00:03:68:8a:f5:ba:a5:c7:58:64:b5:da:34:
a4:cb:45:4d:f9:82:75:6d:8a:80:b3:dc:c2:89:8e:6c:12:26:
e5:ba:5d:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:49:12 2026 by rpki-client