Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS25369.roa
File: AS25369.roa (raw, json)
Hash identifier: jFtVf94P6p6baTV45BS+Zmn4IUL1Eq+d7q4oi75EzCM=
Subject key identifier: 82:84:23:37:7F:58:D2:7E:08:79:7A:65:C3:CB:24:B0:57:EA:90:0E
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 09654A807440C1CF7CE1008B43530159474628DF
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS25369.roa
Signing time: Fri 08 May 2026 18:03:02 +0000
ROA not before: Fri 08 May 2026 17:58:02 +0000
ROA not after: Fri 07 May 2027 18:03:02 +0000
asID: 25369
IP address blocks: 51.194.168.0/22 maxlen: 24
51.194.176.0/22 maxlen: 24
51.194.184.0/22 maxlen: 24
78.105.159.0/24 maxlen: 24
78.105.171.0/24 maxlen: 24
78.105.190.0/24 maxlen: 24
78.105.205.0/24 maxlen: 24
78.105.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:65:4a:80:74:40:c1:cf:7c:e1:00:8b:43:53:01:59:47:46:28:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: May 8 17:58:02 2026 GMT
Not After : May 7 18:03:02 2027 GMT
Subject: CN=828423377F58D27E08797A65C3CB24B057EA900E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2e:7c:c3:01:bf:ca:16:9d:d1:b5:a8:3d:17:
70:c0:17:2e:8c:38:71:26:6b:47:e0:53:c0:1c:e7:
92:4f:53:a9:46:7c:4f:6e:7b:87:ab:76:a3:51:98:
21:dd:ae:1b:0b:b7:f0:aa:04:a6:c4:92:2b:71:2b:
d7:72:98:0d:55:d4:a8:7c:08:9d:c2:9f:9d:bd:7f:
7b:cd:08:c5:0c:88:2e:dc:cf:fc:11:63:4d:f0:f1:
5b:08:7a:cc:3c:84:0d:6a:48:c0:2c:3c:48:75:cb:
ab:6d:5d:70:a4:79:d8:dc:7b:1a:62:d0:7d:15:bc:
4b:49:ba:7a:e1:ea:27:22:23:70:22:95:d8:b6:d9:
89:13:c6:31:74:d6:05:06:27:64:5b:33:1d:ff:90:
71:00:b1:6b:f2:41:c0:f2:9c:d5:da:75:79:56:14:
a1:ed:d4:1e:7d:cb:13:94:54:ee:0c:fc:13:d6:50:
9e:d1:18:99:00:24:36:85:a5:e2:53:c1:1f:49:50:
e0:c8:f7:6f:26:a1:5e:e5:32:56:46:bc:d6:f0:23:
96:af:42:c7:4f:dd:9e:e5:f2:00:14:e1:7a:6f:d8:
0d:76:96:49:ae:a8:32:ac:36:3e:9b:50:4b:d0:59:
bb:9b:6c:5f:64:e3:25:2a:f6:6a:5a:a2:cb:47:26:
c9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:84:23:37:7F:58:D2:7E:08:79:7A:65:C3:CB:24:B0:57:EA:90:0E
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS25369.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.194.168.0/22
51.194.176.0/22
51.194.184.0/22
78.105.159.0/24
78.105.171.0/24
78.105.190.0/24
78.105.205.0/24
78.105.213.0/24
Signature Algorithm: sha256WithRSAEncryption
92:ad:d8:1f:27:d7:96:5e:92:48:ec:ed:83:68:4a:7c:a3:4b:
29:67:e0:4a:3e:ac:ba:0a:39:25:66:2b:9d:37:cc:72:f4:19:
ad:cd:8b:90:d9:b1:cf:8a:b3:ee:07:6a:5a:b6:73:be:fa:c8:
83:c7:68:20:36:8a:55:17:cf:2a:97:ac:00:9c:7c:ec:01:9a:
22:b0:db:aa:cf:13:a3:19:96:f5:8d:7c:7e:ea:98:3d:de:98:
0a:11:e0:b8:c7:fe:5e:9b:24:1f:29:7b:da:d9:d6:33:f7:6c:
61:ef:0e:2a:fd:10:2e:2e:61:ed:26:45:71:4a:a2:7e:d7:5d:
39:3a:0b:65:ed:1c:4c:cf:ed:4e:00:a1:8a:22:ce:01:77:c6:
b8:b8:9c:65:c0:5e:1c:a9:20:15:32:ae:9d:c6:06:a9:c1:06:
7c:69:36:f0:36:2d:75:0e:14:12:ef:fa:37:cf:86:34:59:cb:
92:cb:eb:a1:ac:d6:3f:63:01:2f:f8:db:e3:d4:a4:92:7e:3b:
39:4c:3e:4c:d1:ce:45:2b:ba:09:b1:e5:76:62:0f:c6:cb:71:
8e:77:14:22:b2:97:d4:08:14:a5:38:00:d8:2f:6b:6c:18:4b:
65:00:cc:a2:1b:e6:3e:22:b3:86:fc:1f:f6:7d:52:a0:fb:db:
b2:97:c6:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:53:54 2026 by rpki-client