Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS402233.roa
File: AS402233.roa (raw, json)
Hash identifier: fnV7xr19ynwBk4fcSjqNr3vHtgen8JVygmzLxB4SHbo=
Subject key identifier: 6D:59:52:2E:D9:A0:23:AD:55:DD:D1:0F:01:CD:78:4E:35:D8:9C:44
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 3C5D1403559F59B0FCE00E6832568B86DF30B36F
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS402233.roa
Signing time: Mon 11 May 2026 19:56:38 +0000
ROA not before: Mon 11 May 2026 19:51:38 +0000
ROA not after: Mon 10 May 2027 19:56:38 +0000
asID: 402233
IP address blocks: 51.241.44.0/22 maxlen: 24
51.241.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:54:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:5d:14:03:55:9f:59:b0:fc:e0:0e:68:32:56:8b:86:df:30:b3:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: May 11 19:51:38 2026 GMT
Not After : May 10 19:56:38 2027 GMT
Subject: CN=6D59522ED9A023AD55DDD10F01CD784E35D89C44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:91:29:7b:ae:90:cc:1c:6d:b7:d6:4a:0e:21:
5a:ee:54:2a:88:ca:d1:63:db:f6:e9:3d:3d:58:1b:
88:af:4b:10:37:71:0a:72:8a:77:53:a4:0d:bd:cd:
3d:5d:f5:e5:35:f6:48:2c:a2:38:82:d6:37:ae:be:
66:79:34:55:7b:15:63:41:6d:f2:3f:2a:36:35:bd:
c0:9b:3f:3f:7b:3c:b8:bb:6c:c7:d8:55:38:cb:1a:
5f:d0:fe:e2:c8:1d:9b:b8:be:a2:ed:63:65:e5:b5:
d0:8b:04:86:89:63:22:4e:57:57:6e:9c:f8:2d:49:
f7:55:f4:d3:d2:34:5d:fe:b5:d0:69:97:29:2d:6a:
fb:05:10:9d:01:39:ac:3b:99:9f:a7:e7:14:5b:de:
2d:13:2a:1f:a2:8a:ad:ee:d2:04:a6:1a:f5:1f:5e:
21:d8:7c:54:81:95:38:0d:88:d1:3c:1e:52:38:e0:
ec:be:25:1e:b2:de:d5:3c:8c:ff:61:42:e4:53:41:
58:63:d2:41:c1:f5:7f:7d:50:80:a7:d8:4c:a3:85:
15:08:97:e7:6c:f6:11:e5:ec:a3:af:0d:cf:10:05:
3d:5a:1f:d5:39:86:a0:c9:4c:da:04:0e:0d:e2:17:
e6:0f:4f:fe:01:ab:5e:50:6c:5a:e9:dd:7e:44:fc:
b1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:59:52:2E:D9:A0:23:AD:55:DD:D1:0F:01:CD:78:4E:35:D8:9C:44
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS402233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.241.44.0-51.241.51.255
Signature Algorithm: sha256WithRSAEncryption
0e:c6:d2:db:3a:63:24:68:8e:7d:01:74:bc:bf:3c:86:ac:5e:
1f:57:61:d6:d2:ae:34:55:5e:25:f5:84:ed:fc:14:00:f0:70:
13:8c:a9:f6:d8:87:9b:10:62:0e:79:74:df:ba:71:ab:84:73:
74:f3:55:fb:21:aa:0b:36:bf:ad:23:08:92:ac:7f:1d:cd:3f:
e4:b8:b8:74:b2:d8:db:8f:8b:2a:4a:7b:39:ae:4f:23:cb:f3:
2a:dc:50:f1:10:11:12:c8:7a:45:2d:62:a4:d5:d4:ef:56:bc:
cd:e9:7d:81:b7:be:a5:a0:67:86:79:9e:3b:86:8d:bd:70:c1:
5d:13:da:60:d7:06:de:23:98:d3:26:ed:a1:2c:ba:be:49:33:
88:e1:ee:ba:ea:4d:11:44:ae:60:59:c6:54:30:8e:04:e1:9b:
bb:51:50:0c:a5:8a:cf:a7:00:0d:dc:52:34:2f:f8:7b:41:7d:
dd:7d:27:10:6b:4a:bf:92:15:35:d4:df:ae:71:fb:75:b5:28:
72:58:d8:3a:81:95:16:d0:b2:c1:b3:cc:10:cd:1d:ad:f4:d7:
0f:87:2a:27:2b:7c:9c:00:9f:c9:e4:bb:35:bf:4e:83:24:88:
38:6e:cc:4b:d9:5a:58:aa:70:20:f7:9a:d2:e5:05:cd:26:96:
59:b9:17:46
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgIUPF0UA1WfWbD84A5oMlaLht8ws28wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMGUyMGNjZjUwODNhNjNiOWY1ODg3ZTNlYTM5ZDA0ZTJk
NjJiM2RhNTAeFw0yNjA1MTExOTUxMzhaFw0yNzA1MTAxOTU2MzhaMDMxMTAvBgNV
BAMTKDZENTk1MjJFRDlBMDIzQUQ1NURERDEwRjAxQ0Q3ODRFMzVEODlDNDQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlkSl7rpDMHG231koOIVruVCqI
ytFj2/bpPT1YG4ivSxA3cQpyindTpA29zT1d9eU19kgsojiC1jeuvmZ5NFV7FWNB
bfI/KjY1vcCbPz97PLi7bMfYVTjLGl/Q/uLIHZu4vqLtY2XltdCLBIaJYyJOV1du
nPgtSfdV9NPSNF3+tdBplyktavsFEJ0BOaw7mZ+n5xRb3i0TKh+iiq3u0gSmGvUf
XiHYfFSBlTgNiNE8HlI44Oy+JR6y3tU8jP9hQuRTQVhj0kHB9X99UICn2EyjhRUI
l+ds9hHl7KOvDc8QBT1aH9U5hqDJTNoEDg3iF+YPT/4Bq15QbFrp3X5E/LHrAgMB
AAGjggISMIICDjAdBgNVHQ4EFgQUbVlSLtmgI61V3dEPAc14TjXYnEQwHwYDVR0j
BBgwFoAUDiDM9Qg6Y7n1iH4+o50E4tYrPaUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOTZlNGFjODYtMTgwMy00OTRkLThhN2ItYzA1MWE2MzEw
NzUyLzAvMEUyMENDRjUwODNBNjNCOUY1ODg3RTNFQTM5RDA0RTJENjJCM0RBNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RpRE05UWc2WTduMWlINC1vNTBFNHRZ
clBhVS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzk2ZTRhYzg2LTE4MDMt
NDk0ZC04YTdiLWMwNTFhNjMxMDc1Mi8wL0FTNDAyMjMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAIz
8SwDBAIz8TAwDQYJKoZIhvcNAQELBQADggEBAA7G0ts6YyRojn0BdLy/PIasXh9X
YdbSrjRVXiX1hO38FADwcBOMqfbYh5sQYg55dN+6cauEc3TzVfshqgs2v60jCJKs
fx3NP+S4uHSy2NuPiypKezmuTyPL8yrcUPEQERLIekUtYqTV1O9WvM3pfYG3vqWg
Z4Z5njuGjb1wwV0T2mDXBt4jmNMm7aEsur5JM4jh7rrqTRFErmBZxlQwjgThm7tR
UAylis+nAA3cUjQv+HtBfd19JxBrSr+SFTXU365x+3W1KHJY2DqBlRbQssGzzBDN
Ha301w+HKicrfJwAn8nkuzW/ToMkiDhuzEvZWliqcCD3mtLlBc0mllm5F0Y=
-----END CERTIFICATE-----
Generated at Wed May 13 03:49:10 2026 by rpki-client