Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa
File: AS137517.roa (raw, json)
Hash identifier: lKrUKWCiwNIaI83IbTYMxvli0h+Ikbn9TETtPjyS7ik=
Subject key identifier: 54:5E:0D:86:1B:F1:94:AF:B1:EA:4A:28:41:8D:39:23:C8:E7:02:3B
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 07BF9CF7FDF26F5051EBCBDBCDC4BD783DE292EF
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa
Signing time: Thu 07 May 2026 08:34:18 +0000
ROA not before: Thu 07 May 2026 08:29:18 +0000
ROA not after: Thu 06 May 2027 08:34:18 +0000
asID: 137517
IP address blocks: 91.124.176.0/24 maxlen: 24
95.134.51.0/24 maxlen: 24
95.134.86.0/24 maxlen: 24
95.135.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:bf:9c:f7:fd:f2:6f:50:51:eb:cb:db:cd:c4:bd:78:3d:e2:92:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 7 08:29:18 2026 GMT
Not After : May 6 08:34:18 2027 GMT
Subject: CN=545E0D861BF194AFB1EA4A28418D3923C8E7023B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:78:f0:93:70:28:a3:d5:78:40:5a:65:57:45:
d6:91:70:ad:a2:5e:3c:3d:79:84:f8:b8:9c:a9:2c:
8f:5c:f8:96:85:6e:ec:93:2c:da:4f:fa:e2:01:c5:
67:85:45:32:37:10:c5:11:84:75:5d:72:1b:23:53:
84:de:62:90:ff:9f:e7:95:ed:c9:fe:d8:28:f1:26:
3c:2e:97:44:fe:c9:19:26:3c:da:4a:c3:18:d2:07:
69:56:3c:11:f3:13:aa:3f:7d:db:34:99:b9:b9:97:
00:49:e1:9a:93:73:b5:1a:1e:59:e2:fc:d2:53:bc:
ff:9e:22:d7:e7:96:75:6f:00:20:d9:ac:f7:b9:19:
98:e4:93:c6:06:39:49:ba:17:5f:b3:8d:93:c0:f6:
0d:99:59:22:a1:7c:9a:3c:81:29:95:6c:3e:e3:0d:
3c:32:f9:47:02:02:41:03:97:08:02:42:b8:fb:fc:
f0:bc:f0:b8:4f:88:0e:c9:8a:e4:58:25:5a:52:f1:
bb:58:06:8b:00:08:86:59:94:b8:02:07:66:89:68:
e0:09:fe:5e:00:20:a9:0f:e1:9c:2f:a1:35:5b:d8:
c5:96:f0:94:77:6f:3b:d4:79:73:1b:b6:78:fc:f0:
e2:3c:b8:7e:6b:23:7a:ff:bd:ba:d3:25:0f:88:08:
4c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:5E:0D:86:1B:F1:94:AF:B1:EA:4A:28:41:8D:39:23:C8:E7:02:3B
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS137517.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.176.0/24
95.134.51.0/24
95.134.86.0/24
95.135.82.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:fa:aa:10:9e:a3:91:48:4f:44:77:5b:2d:ba:36:86:8e:9b:
79:ad:9a:73:46:28:53:34:66:75:1d:2c:e5:88:43:d3:6f:75:
24:a8:50:1e:2f:d1:f9:61:0c:46:72:70:49:0a:14:31:aa:32:
ef:19:a6:08:0e:8b:0c:6f:ee:85:55:d5:84:00:51:b7:d3:04:
74:74:13:ca:72:cf:31:67:4a:e4:53:74:a4:29:cc:cc:23:27:
90:0c:a7:45:c8:21:63:8d:b0:03:a7:4f:ef:c3:f4:0b:86:f9:
78:5b:c0:4f:73:18:57:f7:94:b8:91:40:47:71:fa:52:28:1c:
d9:36:8e:9c:95:ff:b2:5d:27:ef:79:aa:61:b2:a5:a2:12:82:
c5:c8:71:0f:d4:46:78:f8:77:7a:5d:58:a2:6d:7d:7e:be:df:
7d:dd:69:74:c9:8f:9e:2a:eb:7c:40:3f:d5:47:3b:f9:dd:d6:
39:31:b6:61:bc:4a:97:a0:49:61:43:39:3b:e6:6b:16:ec:e2:
09:03:2a:77:18:55:b2:3e:1c:e6:46:0f:64:4e:08:36:a5:42:
7c:e9:2a:0f:9f:8b:03:a3:7a:37:e4:3c:ca:1e:a5:3f:56:72:
6e:b9:b5:a5:9b:75:88:70:f3:4e:e2:55:59:2f:7e:2a:88:e5:
af:85:e2:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:09:27 2026 by rpki-client