Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS197555.roa
File: AS197555.roa (raw, json)
Hash identifier: synKVp0XODYASqU5DIlazeLNildIX2dKhPGuu5v20+A=
Subject key identifier: 24:99:A4:05:DD:AB:6A:D2:CA:09:66:8B:4B:A3:CC:64:2F:B1:46:FA
Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Certificate serial: 37C4941A022E4F02856069CE576E8DD629BA21D0
Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS197555.roa
Signing time: Fri 10 Oct 2025 11:22:31 +0000
ROA not before: Fri 10 Oct 2025 11:17:31 +0000
ROA not after: Fri 09 Oct 2026 11:22:31 +0000
asID: 197555
IP address blocks: 5.133.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft
rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:c4:94:1a:02:2e:4f:02:85:60:69:ce:57:6e:8d:d6:29:ba:21:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Validity
Not Before: Oct 10 11:17:31 2025 GMT
Not After : Oct 9 11:22:31 2026 GMT
Subject: CN=2499A405DDAB6AD2CA09668B4BA3CC642FB146FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a4:a2:a8:cc:c8:2b:30:8a:e3:17:7d:b5:f9:
0d:c6:7d:b8:81:29:4c:2e:2f:e9:6a:c9:01:40:ff:
61:c2:5e:25:af:fb:a8:5f:c6:dd:3e:c4:52:85:62:
2f:c0:ea:58:b8:95:e0:8b:ac:da:05:44:3a:5a:38:
1e:73:d1:b1:b7:eb:7f:15:fc:8f:47:93:60:c4:2e:
d8:da:5a:d1:f1:cb:2a:6f:af:51:79:78:7c:03:62:
16:af:3b:e2:48:02:14:c3:fc:91:38:95:19:1b:4f:
b0:27:a1:44:f2:e6:f3:d6:0b:af:bb:00:a9:45:45:
ba:4e:aa:80:17:f9:5c:a6:53:57:07:c5:e7:3b:73:
b6:dc:d6:ac:21:6b:d7:c4:b7:db:0b:94:7e:23:23:
1a:6c:aa:6c:34:6e:db:a5:0b:20:13:26:84:24:25:
d1:d1:53:0f:8f:26:f9:47:2f:14:3c:93:1d:b1:7d:
49:41:4b:d0:73:b2:f6:cd:4e:79:a9:ff:90:f5:c3:
9d:d2:fe:0e:34:bf:83:ef:85:1a:3e:fc:c0:c0:4c:
f6:72:b9:de:4a:8d:5a:80:07:7d:23:cb:97:08:95:
10:91:0b:99:7a:67:24:e7:47:75:89:34:ff:5d:05:
7e:84:d9:70:32:e3:da:02:78:72:89:d0:e2:0a:97:
dc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:99:A4:05:DD:AB:6A:D2:CA:09:66:8B:4B:A3:CC:64:2F:B1:46:FA
X509v3 Authority Key Identifier:
keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS197555.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.101.0/24
Signature Algorithm: sha256WithRSAEncryption
64:bb:4d:68:a4:03:37:3d:0d:18:eb:5f:93:d0:79:7d:74:91:
b1:c7:c5:36:b0:73:9c:19:0a:aa:6d:78:c5:a7:98:d6:86:bd:
98:6f:eb:e4:68:78:1b:53:22:7a:c3:ab:a3:89:dc:85:04:83:
92:22:4c:f1:a0:81:5d:35:89:c5:3b:7b:e8:79:f4:d9:15:16:
d7:84:3e:99:a6:c7:1b:7e:3a:b8:b3:dc:66:fb:4d:79:bc:ce:
09:2c:ad:c6:c2:cf:2c:1e:0c:8c:a4:56:d0:d4:a5:18:90:33:
02:09:2d:ff:84:ea:96:ed:cd:fb:5f:b7:6e:94:2f:b0:74:48:
3f:b2:45:f5:00:6a:ee:04:81:56:24:2a:dc:f7:d1:ae:96:fc:
e9:a2:da:ff:de:71:ff:54:89:68:c2:16:a0:47:27:78:d7:b4:
39:45:c5:60:2c:44:50:0c:c3:a1:7c:9f:bf:c5:d4:cd:41:f4:
e6:66:9a:27:c4:0c:45:c4:8c:35:c0:8b:31:3a:22:85:55:1d:
54:44:55:10:13:2c:1a:30:c3:97:09:1a:80:eb:c8:4b:07:9f:
86:09:c8:c6:92:ee:0c:1c:c0:6e:aa:78:16:82:b1:cd:41:af:
32:56:5b:a8:93:42:a9:36:39:fb:c2:19:7e:86:62:c6:9d:a3:
c4:f1:61:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:27:34 2025 by rpki-client