Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS62240.roa
File: AS62240.roa (raw, json)
Hash identifier: C23ii0/mbbew6lH8fwA4dunQO4El547OfrsdSUP1My8=
Subject key identifier: 13:AD:C7:F4:55:CC:48:AD:37:ED:B4:B0:5F:B0:EB:31:D5:6D:0A:4A
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 3021814AF32F35D169D91973FEAFBA002B00FBD7
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS62240.roa
Signing time: Wed 06 May 2026 08:26:24 +0000
ROA not before: Wed 06 May 2026 08:21:24 +0000
ROA not after: Wed 05 May 2027 08:26:24 +0000
asID: 62240
IP address blocks: 78.105.145.0/24 maxlen: 24
78.105.147.0/24 maxlen: 24
78.105.148.0/24 maxlen: 24
78.105.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:21:81:4a:f3:2f:35:d1:69:d9:19:73:fe:af:ba:00:2b:00:fb:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: May 6 08:21:24 2026 GMT
Not After : May 5 08:26:24 2027 GMT
Subject: CN=13ADC7F455CC48AD37EDB4B05FB0EB31D56D0A4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1d:ed:2d:41:63:71:23:9f:5f:c1:c3:d4:3b:
02:8b:98:71:fd:65:fd:c6:9c:99:ee:60:fc:f2:5c:
50:b1:8b:2a:44:b7:44:a7:a6:81:af:d6:3f:c0:88:
cd:1e:c2:58:6a:7c:c0:dd:43:cc:e7:b5:00:f7:cb:
db:5d:33:4c:e0:89:63:c9:9e:d4:60:6c:eb:d6:f8:
42:32:53:e7:00:82:58:6f:29:0e:71:6b:10:63:e4:
b7:84:78:f3:14:64:16:1a:bf:24:75:e6:b3:9b:e4:
37:15:26:7e:59:26:a5:13:cb:4e:ed:1f:61:05:3b:
dd:1d:f9:5c:14:76:66:39:84:0c:0f:cf:51:bd:1b:
fc:fc:3a:7d:2d:4d:80:68:6e:f0:8f:12:42:fa:78:
9f:10:47:de:1d:bd:4d:8d:85:3c:c7:53:3d:66:5a:
26:1b:f0:21:6a:44:07:d3:56:aa:9b:3b:2e:d9:5e:
a6:41:ec:14:e0:5e:c1:3a:65:e9:f9:50:37:ef:b7:
2c:9b:a1:ad:6b:0b:d3:3f:f1:ad:a7:e1:c8:84:09:
85:36:99:22:87:a7:2f:6c:c3:52:e7:70:65:4a:8d:
07:29:c5:21:90:bb:64:8f:a8:ea:1c:b6:b7:b7:29:
85:a6:06:6c:10:4f:26:fb:53:b6:7c:90:e3:3a:0c:
c1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:AD:C7:F4:55:CC:48:AD:37:ED:B4:B0:5F:B0:EB:31:D5:6D:0A:4A
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS62240.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.105.145.0/24
78.105.147.0-78.105.148.255
78.105.151.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:2a:96:96:36:70:ca:64:34:e6:a9:8e:3b:c0:45:e3:fa:7a:
4d:a0:bd:4d:f0:0c:aa:02:2d:52:0f:90:30:e7:6d:67:c2:3a:
9b:9d:05:0d:20:d0:56:9e:7f:e6:87:fe:fb:e7:95:78:fe:63:
21:7c:04:a2:a8:29:62:80:c5:6e:14:e6:3d:db:79:ab:d5:8b:
c3:28:7f:43:2a:41:dd:31:89:3d:b4:30:ff:9c:af:db:e4:51:
4a:da:13:6a:21:c6:33:5e:fd:b3:45:ed:12:b0:dd:1b:05:db:
7c:b5:1e:28:0f:74:6b:cf:f2:c9:7b:8f:66:ef:59:df:27:cc:
b1:73:05:d5:32:66:79:36:14:b1:d8:2b:4b:1a:1f:2e:39:15:
cc:96:01:02:22:24:e1:65:e0:d7:e2:15:21:8e:3a:f0:0f:22:
9c:8d:5d:d4:88:04:7d:58:eb:f4:76:83:1c:40:6c:e8:8f:e7:
e2:86:2d:49:63:ce:e1:db:00:85:89:68:75:db:e6:39:55:25:
05:a8:45:fa:58:67:aa:9d:fd:32:9e:0f:44:56:ff:94:d7:53:
b1:c9:69:68:2e:9f:83:f1:7d:64:37:07:d0:0f:88:b8:ba:34:
61:ed:e3:40:9c:07:48:43:d9:fa:0d:2f:9c:b8:7d:67:ae:0a:
59:a3:16:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:53:53 2026 by rpki-client