Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS9457.roa
File: AS9457.roa (raw, json)
Hash identifier: 39RqtYuaFUGk87AZ6v6lDdbf7LsQOVsabRUqofNB56k=
Subject key identifier: 93:C0:D8:C0:36:D0:FE:AA:2E:BE:EE:FC:AE:73:CF:12:AA:87:48:5F
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 2999CA1EC83239C0DEE2C9491C3E62B11AE9B8FC
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS9457.roa
Signing time: Sun 10 May 2026 12:16:29 +0000
ROA not before: Sun 10 May 2026 12:11:29 +0000
ROA not after: Sun 09 May 2027 12:16:29 +0000
asID: 9457
IP address blocks: 51.241.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:54:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:99:ca:1e:c8:32:39:c0:de:e2:c9:49:1c:3e:62:b1:1a:e9:b8:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: May 10 12:11:29 2026 GMT
Not After : May 9 12:16:29 2027 GMT
Subject: CN=93C0D8C036D0FEAA2EBEEEFCAE73CF12AA87485F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:36:ec:64:08:6a:61:fe:78:a0:e1:f2:40:b9:
3c:1e:f5:f0:c8:07:da:3a:79:b0:34:6b:68:69:59:
20:9a:d4:c0:04:53:05:0a:0d:72:9b:69:b5:b2:4d:
45:30:b4:10:68:a2:00:16:47:35:65:69:dd:37:21:
31:83:b9:de:72:fb:7b:68:5f:d7:73:bd:5a:b1:c1:
6c:e1:83:ba:20:af:27:bb:ba:59:58:eb:66:d3:02:
54:cf:6c:f9:30:c1:76:d3:41:8c:25:06:73:07:17:
8b:61:3f:36:7e:d7:13:50:72:76:ba:d0:e8:9c:44:
fc:ad:9d:95:9c:55:07:70:b4:f9:33:cf:76:21:56:
0b:ff:6a:0f:6a:2f:2c:67:5a:28:5d:6c:65:d7:a2:
b6:ad:25:80:ff:d0:af:45:47:e3:79:7e:56:52:5f:
fb:e9:70:d4:99:31:27:cc:54:a0:14:58:dc:97:cb:
30:80:e0:cd:ed:b2:6f:5b:42:e1:a6:44:ac:01:f5:
b8:f0:f6:70:e9:07:35:ef:96:d2:28:8a:94:1c:4d:
f5:92:54:23:00:f6:b1:f0:34:a9:35:a3:1d:b2:3f:
96:1f:6d:32:52:f1:21:ea:31:11:ab:32:b0:21:a6:
ef:8c:11:6b:78:77:94:bf:f7:a6:97:49:ee:98:f0:
49:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C0:D8:C0:36:D0:FE:AA:2E:BE:EE:FC:AE:73:CF:12:AA:87:48:5F
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS9457.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.241.8.0/22
Signature Algorithm: sha256WithRSAEncryption
38:5c:f4:96:35:e3:7b:d0:8e:d0:06:19:ea:eb:dd:bb:d7:a1:
c7:d5:d5:12:2d:57:9f:db:36:60:29:7d:5e:7b:61:87:32:8c:
3d:0b:57:ab:04:2e:ec:74:cb:d2:07:27:b6:4a:68:04:ce:a9:
42:8e:85:90:f9:b6:cd:b2:37:96:f7:35:93:bd:a4:55:7e:1c:
4d:ec:e2:2e:7b:03:42:c2:74:6f:af:dc:af:c6:07:62:3e:61:
6c:7e:79:27:c5:c4:d8:b7:76:aa:01:fe:4c:40:04:e1:9b:71:
2b:26:2f:74:1f:d7:70:9a:c2:ed:ac:7c:da:8f:a3:6f:62:0d:
4a:82:27:bb:df:1f:65:f9:2e:a3:e5:a7:3e:be:90:9b:8f:16:
17:28:0b:3e:2b:aa:3d:b3:37:1c:a2:07:4a:32:ec:58:1f:a3:
c6:95:dd:8d:59:8a:af:48:12:b6:8b:3f:0f:77:12:aa:e2:23:
de:3b:06:0b:a8:41:93:01:46:7e:79:5f:45:1b:39:b4:b6:4a:
e9:50:2b:0b:62:94:02:1b:da:b4:37:d6:2c:40:56:b1:ed:5a:
cd:89:01:2c:7c:aa:ca:bc:3f:dc:b4:7d:bc:ff:16:e0:99:fc:
ab:8b:55:83:c2:04:01:1c:69:09:4b:3d:d9:6d:0e:6d:5e:e6:
c1:2c:98:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:38:47 2026 by rpki-client