Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
File: AS135402.roa (raw, json)
Hash identifier: QKJyRlBgc3rwpITGGbkp3s3PILB/f8OsSBMdIkLAzlQ=
Subject key identifier: FE:B2:71:F4:4B:43:C1:D0:8B:21:82:E3:A0:25:41:03:4E:FF:17:61
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 6754EBF27191390B4170EF1C2F0C777BA84658C3
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
Signing time: Mon 09 Mar 2026 08:24:49 +0000
ROA not before: Mon 09 Mar 2026 08:19:49 +0000
ROA not after: Mon 08 Mar 2027 08:24:49 +0000
asID: 135402
IP address blocks: 92.113.212.0/24 maxlen: 24
95.134.21.0/24 maxlen: 24
95.134.22.0/24 maxlen: 24
95.134.64.0/24 maxlen: 24
95.134.126.0/24 maxlen: 24
95.134.163.0/24 maxlen: 24
178.92.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:54:eb:f2:71:91:39:0b:41:70:ef:1c:2f:0c:77:7b:a8:46:58:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 9 08:19:49 2026 GMT
Not After : Mar 8 08:24:49 2027 GMT
Subject: CN=FEB271F44B43C1D08B2182E3A02541034EFF1761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0e:7a:80:4a:ec:ac:dd:f6:9b:06:76:36:70:
04:08:f8:0b:4e:e8:b9:98:26:bd:86:8d:d3:0b:6c:
25:3d:b4:0f:04:f6:b6:f6:f9:49:8b:be:df:2d:b3:
cc:3a:1c:79:21:14:27:93:33:64:b1:14:0d:e0:7a:
2a:04:97:8d:f9:3b:57:14:89:80:04:a5:48:92:f3:
02:86:b1:50:76:1b:b6:b6:ce:20:1d:2b:f5:ec:75:
07:ec:ea:aa:5d:e6:96:1e:9f:26:ef:e6:d9:2d:08:
07:f0:5e:19:e4:b2:80:cb:73:a9:db:b4:64:58:ec:
c5:1b:91:6d:c6:c6:1f:c5:7e:21:c9:91:e2:f3:33:
21:e9:b7:28:1e:30:d8:5e:11:d7:b5:07:42:56:16:
93:6c:c0:d2:c9:36:4a:5e:79:2a:21:72:69:72:0b:
2e:35:07:a1:f4:68:b5:26:7b:07:30:12:88:f9:cf:
a8:df:1f:04:8d:d5:3e:0b:91:cf:53:bc:24:8c:58:
73:ad:da:1c:d2:5a:ec:be:b2:82:45:6e:67:74:9c:
59:ba:c0:25:f4:9c:c5:1c:32:cb:87:05:c8:30:16:
b4:aa:35:83:27:29:5e:ff:3d:cd:1e:ca:0f:b2:e7:
ec:4a:a9:0f:30:8f:88:5e:cd:8e:45:a1:9a:7d:05:
0e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:B2:71:F4:4B:43:C1:D0:8B:21:82:E3:A0:25:41:03:4E:FF:17:61
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.113.212.0/24
95.134.21.0-95.134.22.255
95.134.64.0/24
95.134.126.0/24
95.134.163.0/24
178.92.145.0/24
Signature Algorithm: sha256WithRSAEncryption
28:e0:8c:31:70:98:be:c2:53:79:e0:cb:90:ff:82:3c:5b:b6:
6c:6a:17:d9:2b:93:e5:55:5f:8a:11:9c:dc:e0:8d:d0:0c:4a:
fa:66:23:e7:9a:e2:61:e7:0e:e1:d7:5e:65:8a:7c:6a:b0:02:
e0:a7:ea:80:cd:2c:08:70:47:91:e6:79:44:f5:9a:67:3c:87:
2a:9d:58:23:be:b4:be:d0:3e:ce:5d:d9:f8:10:b3:5a:ca:d3:
83:af:95:4b:aa:f3:2d:80:de:e3:78:b3:0b:02:69:6e:53:62:
62:36:31:fc:1f:70:38:15:dd:1d:5d:a7:cd:d7:ae:04:26:c5:
af:6b:af:19:8d:bc:05:cc:ea:86:00:3c:83:cb:89:2e:af:d0:
41:71:41:bd:11:c4:44:ea:b5:4c:33:96:e1:82:b3:ec:05:a4:
f5:17:6c:14:18:38:f1:47:52:ad:dc:7a:47:16:de:36:a2:f2:
1b:25:89:f2:9e:f5:2f:67:8d:ac:0b:7e:85:31:f2:22:34:cc:
e9:9e:13:ab:89:ec:48:ab:b1:0d:57:be:52:bf:8e:51:0d:f9:
02:c5:4a:03:2d:f5:30:61:cd:af:21:4f:d2:ea:0f:1f:88:ab:
42:76:d9:55:5c:f6:ab:e2:e3:cf:a7:52:b0:2b:6b:ba:7e:9c:
cc:1b:5e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:48:16 2026 by rpki-client