Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
File: AS135402.roa (raw, json)
Hash identifier: CGrQIFl9Iw846nzwmLWgfkVDVgqyuY3R3exNcjtKj78=
Subject key identifier: 02:C5:66:5B:37:00:D9:41:6E:3C:32:98:A8:F1:26:B8:38:B2:7F:60
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 3219920ED56DF13CBFD353E4073602CC68689C43
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
Signing time: Thu 07 May 2026 08:33:12 +0000
ROA not before: Thu 07 May 2026 08:28:12 +0000
ROA not after: Thu 06 May 2027 08:33:12 +0000
asID: 135402
IP address blocks: 92.113.212.0/24 maxlen: 24
95.134.21.0/24 maxlen: 24
95.134.22.0/24 maxlen: 24
95.134.64.0/24 maxlen: 24
95.134.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:19:92:0e:d5:6d:f1:3c:bf:d3:53:e4:07:36:02:cc:68:68:9c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 7 08:28:12 2026 GMT
Not After : May 6 08:33:12 2027 GMT
Subject: CN=02C5665B3700D9416E3C3298A8F126B838B27F60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e2:6a:0a:6e:ae:b3:1f:5f:e1:21:00:24:ca:
7d:35:4c:82:ee:3a:e0:30:5d:56:35:af:bf:57:39:
cc:af:6b:5c:db:6e:7c:3f:45:05:c0:09:fd:80:fc:
8d:9d:65:2c:df:37:56:0f:c3:88:34:1b:1c:c6:32:
03:55:a3:8e:61:73:40:65:2e:68:36:b6:88:6e:26:
ca:98:a5:3f:5c:95:a8:c4:1f:72:c5:d2:4d:78:1e:
d5:79:9d:9a:58:5d:72:46:d2:64:d6:fb:20:15:2b:
00:4b:5c:c3:73:85:eb:5b:f7:d4:7b:b5:4a:98:11:
c1:2e:3c:96:c1:c4:1c:58:92:43:d2:59:cf:69:10:
85:5b:d6:1d:11:8d:c0:0e:b7:3a:38:f9:69:83:47:
44:aa:a2:4f:4e:70:ba:39:2b:60:ef:df:65:09:94:
b2:38:82:b8:a1:a1:3b:2b:bd:58:da:2e:75:0b:90:
21:e9:51:aa:93:f6:a0:0d:52:1f:cb:ec:e3:4a:cc:
69:57:c2:94:56:c0:eb:0e:e1:01:e2:19:33:fc:75:
a2:c9:fd:c9:84:b6:51:71:f4:4f:37:9f:e7:32:b2:
c1:41:73:5e:7e:79:62:fb:29:d8:38:92:72:e7:c2:
28:64:03:73:7d:68:33:64:4f:01:69:04:1a:42:e7:
65:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:C5:66:5B:37:00:D9:41:6E:3C:32:98:A8:F1:26:B8:38:B2:7F:60
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.113.212.0/24
95.134.21.0-95.134.22.255
95.134.64.0/24
95.134.126.0/24
Signature Algorithm: sha256WithRSAEncryption
95:f0:19:9d:7a:65:81:c7:b8:4e:9d:c2:9d:90:56:15:7a:95:
91:87:4d:7e:b2:10:3f:a9:51:67:e1:27:c9:6e:d4:0d:f5:b8:
08:c0:fe:ac:a7:4f:65:ca:c6:da:9a:ac:3a:12:d7:69:37:e3:
8a:92:85:17:27:84:99:de:0a:3e:48:3b:22:04:55:ac:23:fe:
7b:82:8d:5f:ce:ba:84:2c:4b:e5:b5:28:a8:1a:dc:b6:cc:d0:
d5:da:f9:36:07:a5:93:11:c5:3d:32:56:2c:38:e7:8e:83:33:
5d:9e:60:6f:a8:40:a1:5f:0a:26:57:bd:3a:01:a2:4d:1d:e0:
d5:f6:ef:a7:65:f1:1a:1c:15:25:49:fd:bb:b5:56:da:96:87:
cf:95:2d:30:cb:c9:74:26:a5:11:3d:da:39:e3:14:4e:8c:90:
96:5c:e3:ed:7b:84:52:f1:53:9c:9e:93:15:dc:0b:8f:36:21:
88:e6:ea:74:f0:e2:3e:57:04:6a:72:9d:39:bb:df:35:d7:69:
29:99:e7:bd:96:98:bc:dd:58:6e:24:c2:ef:bc:7f:52:38:f3:
7f:dc:7e:63:e4:10:1d:a7:64:94:4f:69:dc:c9:58:77:6a:37:
bb:f4:ca:c0:70:38:77:83:e4:6f:3e:01:c8:fd:9d:53:f5:cd:
fe:b3:3a:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:28:05 2026 by rpki-client