Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa
File: AS137517.roa (raw, json)
Hash identifier: FyWCgjTAGZcDNj5mh8QCrUnlDTQv7uhoptpGWvXEnT4=
Subject key identifier: 1C:9F:B6:FD:9D:07:8A:BF:D9:51:93:D8:0F:FF:DF:F3:9B:A9:37:C5
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 49E853F3CC028DFAE40C20263584CDE65B3BE035
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa
Signing time: Mon 16 Mar 2026 08:39:18 +0000
ROA not before: Mon 16 Mar 2026 08:34:18 +0000
ROA not after: Mon 15 Mar 2027 08:39:18 +0000
asID: 137517
IP address blocks: 91.124.176.0/24 maxlen: 24
95.134.51.0/24 maxlen: 24
95.134.53.0/24 maxlen: 24
95.134.86.0/24 maxlen: 24
95.135.82.0/24 maxlen: 24
178.92.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:e8:53:f3:cc:02:8d:fa:e4:0c:20:26:35:84:cd:e6:5b:3b:e0:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 16 08:34:18 2026 GMT
Not After : Mar 15 08:39:18 2027 GMT
Subject: CN=1C9FB6FD9D078ABFD95193D80FFFDFF39BA937C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:df:97:c5:9c:88:50:3c:f7:87:d3:a2:95:a0:
05:6a:2e:d9:1a:b4:b3:51:5d:19:be:58:4c:6a:0e:
0c:1e:2b:91:bb:5a:63:c4:35:a6:1d:1c:eb:dd:8b:
f3:a8:3c:5f:35:7d:de:1b:83:43:2e:b7:06:45:c4:
0b:e1:ae:0b:a9:fd:51:2e:80:c5:5a:15:e0:73:0c:
fe:4e:e2:18:2e:b5:ec:e8:31:31:fb:05:b3:95:4e:
58:ca:57:5d:4a:03:9c:92:98:bd:cc:9f:08:de:2e:
52:51:40:1c:db:67:f0:c5:0b:ae:aa:53:0d:69:e5:
20:d5:70:b4:a7:21:91:72:b1:86:ed:42:fa:0d:bf:
7a:90:c4:9f:69:ed:bb:68:b0:28:27:17:b9:db:eb:
b7:3a:20:88:e2:ea:fc:e6:1b:20:ea:74:75:3d:31:
bf:83:71:ef:e3:34:c1:9a:fd:bd:43:3a:63:75:6e:
c9:91:63:30:de:f3:ff:08:4d:58:b0:5d:89:41:7e:
4b:05:37:51:21:33:a1:11:8e:ef:de:35:0b:b3:cc:
9d:50:bb:77:a7:63:43:e4:0b:a8:f4:eb:96:82:2a:
c4:89:96:24:7e:b4:eb:5f:c7:8f:51:e5:70:c6:fa:
e5:dd:a3:7b:94:1c:d2:d7:6a:54:94:37:fa:1b:ba:
f2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:9F:B6:FD:9D:07:8A:BF:D9:51:93:D8:0F:FF:DF:F3:9B:A9:37:C5
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.176.0/24
95.134.51.0/24
95.134.53.0/24
95.134.86.0/24
95.135.82.0/24
178.92.157.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:81:d6:0b:19:a0:9f:da:c7:79:1e:18:a5:60:94:70:41:d0:
81:84:6a:72:f8:37:77:56:ae:62:c1:31:e6:d7:32:d7:f3:c1:
88:98:95:fd:88:bc:a2:15:90:a2:e0:17:c6:fb:a7:22:ce:a4:
6c:28:5a:96:ff:63:27:ba:fb:39:b3:c4:94:91:bd:8a:a4:2a:
82:2a:7e:9f:b1:3b:d1:70:60:f2:a9:0a:0e:80:bc:51:5a:96:
3d:55:9d:ef:51:d9:9b:61:40:f5:19:fb:54:7b:dd:89:06:e5:
a3:32:93:aa:10:04:4c:54:3a:5a:cd:b1:6e:d0:49:8c:91:64:
9a:c1:05:20:4d:83:41:55:fb:3f:bc:7b:1d:f4:5c:a6:51:a8:
e9:21:52:ae:5b:cc:3a:23:c6:ec:4b:cf:e1:a5:61:ea:76:c0:
51:0a:11:78:9e:3b:79:9f:fc:d2:3f:07:11:85:8d:2b:44:d5:
55:c8:48:0e:77:af:f1:57:72:17:5f:d3:d0:da:3d:48:a9:bd:
bc:e7:df:4a:1c:f6:81:e9:2e:4b:87:26:ca:1e:36:ae:8d:a6:
73:50:55:3b:26:41:d1:6e:fc:d5:67:ec:4e:18:25:d5:ef:0d:
67:cd:14:4b:49:fa:eb:d2:24:a5:f0:9e:4b:05:0c:2e:0a:9c:
f7:e8:39:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:48:27 2026 by rpki-client