Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS20473.roa
File: AS20473.roa (raw, json)
Hash identifier: HW97h1pEtjjtTjNNlin41xlJJvhFPp/mVFv0MmOWGJ8=
Subject key identifier: 80:80:E8:68:32:F2:E5:27:A0:BE:5D:C4:C9:64:AA:F0:7F:FE:7F:FD
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 5ED40B5CF847E1F519CA37F7DE82A7631D58F91C
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS20473.roa
Signing time: Thu 23 Apr 2026 08:48:40 +0000
ROA not before: Thu 23 Apr 2026 08:43:40 +0000
ROA not after: Thu 22 Apr 2027 08:48:40 +0000
asID: 20473
IP address blocks: 91.124.14.0/23 maxlen: 23
91.124.18.0/23 maxlen: 23
91.124.40.0/23 maxlen: 23
91.124.42.0/23 maxlen: 23
91.124.52.0/24 maxlen: 24
91.124.55.0/24 maxlen: 24
91.124.57.0/24 maxlen: 24
91.124.58.0/24 maxlen: 24
91.124.67.0/24 maxlen: 24
91.124.80.0/23 maxlen: 24
91.124.83.0/24 maxlen: 24
91.124.87.0/24 maxlen: 24
91.124.89.0/24 maxlen: 24
91.124.139.0/24 maxlen: 24
91.124.145.0/24 maxlen: 24
91.124.147.0/24 maxlen: 24
91.124.148.0/24 maxlen: 24
91.124.170.0/24 maxlen: 24
91.124.172.0/23 maxlen: 24
91.124.174.0/24 maxlen: 24
91.124.177.0/24 maxlen: 24
91.124.178.0/23 maxlen: 24
91.124.185.0/24 maxlen: 24
91.124.186.0/24 maxlen: 24
91.124.236.0/23 maxlen: 23
92.112.147.0/24 maxlen: 24
95.135.12.0/23 maxlen: 23
95.135.18.0/23 maxlen: 23
95.135.24.0/23 maxlen: 23
95.135.30.0/23 maxlen: 23
95.135.36.0/23 maxlen: 23
95.135.48.0/23 maxlen: 23
95.135.54.0/23 maxlen: 23
95.135.68.0/23 maxlen: 23
95.135.124.0/23 maxlen: 23
95.135.126.0/24 maxlen: 24
95.135.160.0/23 maxlen: 23
95.135.164.0/24 maxlen: 24
95.135.166.0/23 maxlen: 24
95.135.173.0/24 maxlen: 24
95.135.178.0/24 maxlen: 24
95.135.181.0/24 maxlen: 24
95.135.191.0/24 maxlen: 24
95.135.202.0/23 maxlen: 23
95.135.230.0/24 maxlen: 24
95.135.240.0/23 maxlen: 23
95.135.244.0/23 maxlen: 23
95.135.249.0/24 maxlen: 24
95.135.254.0/23 maxlen: 23
178.92.20.0/24 maxlen: 24
178.92.22.0/24 maxlen: 24
178.92.28.0/23 maxlen: 24
178.92.40.0/22 maxlen: 22
178.92.48.0/24 maxlen: 24
178.92.58.0/24 maxlen: 24
178.92.62.0/24 maxlen: 24
178.92.72.0/23 maxlen: 23
178.92.96.0/23 maxlen: 23
178.92.110.0/23 maxlen: 23
178.92.120.0/22 maxlen: 22
178.92.125.0/24 maxlen: 24
178.92.126.0/23 maxlen: 23
178.92.128.0/23 maxlen: 23
178.92.136.0/23 maxlen: 23
178.92.142.0/23 maxlen: 23
178.92.146.0/23 maxlen: 23
178.92.158.0/23 maxlen: 23
178.92.162.0/23 maxlen: 23
178.92.188.0/23 maxlen: 23
178.92.192.0/23 maxlen: 23
178.92.194.0/23 maxlen: 23
178.92.204.0/23 maxlen: 23
178.92.208.0/23 maxlen: 23
178.92.216.0/23 maxlen: 23
178.92.218.0/23 maxlen: 23
178.93.78.0/23 maxlen: 23
178.93.80.0/22 maxlen: 22
178.93.86.0/24 maxlen: 24
178.93.88.0/24 maxlen: 24
178.93.91.0/24 maxlen: 24
178.93.93.0/24 maxlen: 24
178.93.95.0/24 maxlen: 24
178.93.98.0/24 maxlen: 24
178.93.108.0/24 maxlen: 24
178.93.110.0/24 maxlen: 24
178.93.117.0/24 maxlen: 24
178.93.118.0/23 maxlen: 23
178.93.160.0/23 maxlen: 23
178.93.164.0/23 maxlen: 23
178.93.170.0/23 maxlen: 23
178.93.176.0/23 maxlen: 23
178.93.178.0/23 maxlen: 23
178.93.182.0/23 maxlen: 23
178.93.184.0/23 maxlen: 23
178.93.200.0/23 maxlen: 23
178.93.212.0/23 maxlen: 23
178.93.216.0/23 maxlen: 23
178.93.223.0/24 maxlen: 24
178.93.225.0/24 maxlen: 24
178.93.226.0/24 maxlen: 24
178.93.229.0/24 maxlen: 24
178.93.230.0/23 maxlen: 24
178.93.232.0/24 maxlen: 24
178.93.238.0/23 maxlen: 23
178.93.246.0/23 maxlen: 23
178.93.248.0/23 maxlen: 23
178.93.250.0/23 maxlen: 23
178.93.252.0/23 maxlen: 23
178.94.10.0/23 maxlen: 23
178.94.14.0/23 maxlen: 23
178.94.22.0/23 maxlen: 23
178.94.24.0/23 maxlen: 23
178.94.28.0/23 maxlen: 23
178.94.30.0/23 maxlen: 23
178.94.36.0/23 maxlen: 23
178.94.42.0/23 maxlen: 23
178.94.128.0/21 maxlen: 21
178.94.136.0/22 maxlen: 22
178.94.160.0/23 maxlen: 23
178.94.162.0/24 maxlen: 24
178.94.168.0/24 maxlen: 24
178.94.175.0/24 maxlen: 24
178.94.176.0/23 maxlen: 23
178.94.178.0/23 maxlen: 24
178.94.180.0/24 maxlen: 24
178.94.182.0/23 maxlen: 23
178.94.184.0/24 maxlen: 24
178.94.187.0/24 maxlen: 24
178.94.229.0/24 maxlen: 24
178.94.231.0/24 maxlen: 24
178.94.235.0/24 maxlen: 24
178.94.236.0/24 maxlen: 24
178.94.241.0/24 maxlen: 24
178.94.248.0/24 maxlen: 24
178.94.250.0/23 maxlen: 23
178.94.252.0/23 maxlen: 23
178.95.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:d4:0b:5c:f8:47:e1:f5:19:ca:37:f7:de:82:a7:63:1d:58:f9:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 23 08:43:40 2026 GMT
Not After : Apr 22 08:48:40 2027 GMT
Subject: CN=8080E86832F2E527A0BE5DC4C964AAF07FFE7FFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:54:04:c2:9a:8f:fa:4d:fe:05:de:b2:7d:fd:
5b:1a:e8:e2:fa:c2:fa:65:a6:8d:5d:d7:78:53:35:
8c:20:cb:d0:0e:97:b6:3a:cd:fc:b6:c1:b0:3b:c5:
56:6b:5f:42:de:ad:16:a5:df:16:74:17:47:df:f3:
ad:0d:c2:29:31:83:99:f2:e7:9a:97:df:34:9c:89:
01:2f:9a:01:57:96:ea:6a:c5:fb:e2:79:91:e1:47:
0e:53:d8:d8:b5:90:82:a7:66:22:f0:ec:70:c4:6a:
53:b0:3d:c0:b2:c2:96:15:40:f0:43:cc:b2:d7:82:
5f:da:69:cb:ab:34:11:1a:f6:16:b6:74:99:a7:59:
40:99:71:54:9c:c4:57:af:50:c9:47:a9:7b:61:d0:
28:26:1e:78:c2:35:91:97:1d:e1:b1:86:8d:8e:9c:
b2:ed:1f:94:0b:2d:84:fc:60:de:47:e9:ee:4d:47:
87:9c:dc:6d:2f:d6:05:52:74:29:1b:bb:8e:07:96:
f9:af:a0:77:76:e9:7b:4e:a6:b2:ac:0c:77:58:e2:
6c:da:68:d5:bd:32:94:07:de:11:12:2a:0f:50:1f:
cd:e9:24:17:37:62:b5:6b:fa:c2:70:60:ae:c1:0e:
86:08:23:ea:fd:b9:4a:62:ec:ef:c4:00:38:8b:9f:
45:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:80:E8:68:32:F2:E5:27:A0:BE:5D:C4:C9:64:AA:F0:7F:FE:7F:FD
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS20473.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.14.0/23
91.124.18.0/23
91.124.40.0/22
91.124.52.0/24
91.124.55.0/24
91.124.57.0-91.124.58.255
91.124.67.0/24
91.124.80.0/23
91.124.83.0/24
91.124.87.0/24
91.124.89.0/24
91.124.139.0/24
91.124.145.0/24
91.124.147.0-91.124.148.255
91.124.170.0/24
91.124.172.0-91.124.174.255
91.124.177.0-91.124.179.255
91.124.185.0-91.124.186.255
91.124.236.0/23
92.112.147.0/24
95.135.12.0/23
95.135.18.0/23
95.135.24.0/23
95.135.30.0/23
95.135.36.0/23
95.135.48.0/23
95.135.54.0/23
95.135.68.0/23
95.135.124.0-95.135.126.255
95.135.160.0/23
95.135.164.0/24
95.135.166.0/23
95.135.173.0/24
95.135.178.0/24
95.135.181.0/24
95.135.191.0/24
95.135.202.0/23
95.135.230.0/24
95.135.240.0/23
95.135.244.0/23
95.135.249.0/24
95.135.254.0/23
178.92.20.0/24
178.92.22.0/24
178.92.28.0/23
178.92.40.0/22
178.92.48.0/24
178.92.58.0/24
178.92.62.0/24
178.92.72.0/23
178.92.96.0/23
178.92.110.0/23
178.92.120.0/22
178.92.125.0-178.92.129.255
178.92.136.0/23
178.92.142.0/23
178.92.146.0/23
178.92.158.0/23
178.92.162.0/23
178.92.188.0/23
178.92.192.0/22
178.92.204.0/23
178.92.208.0/23
178.92.216.0/22
178.93.78.0-178.93.83.255
178.93.86.0/24
178.93.88.0/24
178.93.91.0/24
178.93.93.0/24
178.93.95.0/24
178.93.98.0/24
178.93.108.0/24
178.93.110.0/24
178.93.117.0-178.93.119.255
178.93.160.0/23
178.93.164.0/23
178.93.170.0/23
178.93.176.0/22
178.93.182.0-178.93.185.255
178.93.200.0/23
178.93.212.0/23
178.93.216.0/23
178.93.223.0/24
178.93.225.0-178.93.226.255
178.93.229.0-178.93.232.255
178.93.238.0/23
178.93.246.0-178.93.253.255
178.94.10.0/23
178.94.14.0/23
178.94.22.0-178.94.25.255
178.94.28.0/22
178.94.36.0/23
178.94.42.0/23
178.94.128.0-178.94.139.255
178.94.160.0-178.94.162.255
178.94.168.0/24
178.94.175.0-178.94.180.255
178.94.182.0-178.94.184.255
178.94.187.0/24
178.94.229.0/24
178.94.231.0/24
178.94.235.0-178.94.236.255
178.94.241.0/24
178.94.248.0/24
178.94.250.0-178.94.253.255
178.95.197.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:9a:53:4e:ce:b1:f4:24:b8:d6:08:94:84:b8:a2:c7:d6:5f:
5c:ba:70:07:fe:b7:62:e6:33:15:09:c9:41:32:3c:93:d7:c8:
a4:59:02:37:16:d5:e5:8f:a5:ed:01:10:08:b7:1d:72:36:ea:
d0:f8:51:a5:1f:cb:a7:7e:63:6c:4c:08:8a:db:a5:84:99:09:
4a:b0:34:35:54:39:71:85:65:f4:36:53:2c:e2:98:c5:5c:6b:
34:36:4b:ad:2b:b9:15:f0:e2:0d:b9:23:4e:3c:06:0c:17:d7:
5f:ef:17:fc:41:b2:16:ad:a0:94:ba:e9:a2:f5:cf:d3:8e:e7:
58:0f:a3:5f:14:f7:23:25:4d:6a:a6:37:a0:b5:08:e5:a1:d4:
32:5b:cf:86:e2:4e:04:f6:5a:2c:29:99:b2:c4:70:95:9f:ad:
26:c6:d1:e3:3e:bd:0e:d8:88:39:a8:a1:13:fb:d6:6b:16:7a:
ab:f5:3e:a5:c9:be:92:56:c5:af:0f:a6:59:9c:fd:7b:f4:0c:
9f:be:8e:e8:4a:9b:d7:c4:53:a3:98:c7:45:98:b4:ff:a5:02:
aa:b7:3f:b7:4f:f4:c2:e8:1d:a4:41:07:b5:3d:08:77:67:5b:
80:77:7b:50:e3:2c:79:21:b6:fa:aa:9f:8b:17:4e:81:b4:cc:
19:c7:5a:e2
-----BEGIN CERTIFICATE-----
MIIIHzCCBwegAwIBAgIUXtQLXPhH4fUZyjf33oKnYx1Y+RwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNjA0MjMwODQzNDBaFw0yNzA0MjIwODQ4NDBaMDMxMTAvBgNV
BAMTKDgwODBFODY4MzJGMkU1MjdBMEJFNURDNEM5NjRBQUYwN0ZGRTdGRkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaVATCmo/6Tf4F3rJ9/Vsa6OL6
wvplpo1d13hTNYwgy9AOl7Y6zfy2wbA7xVZrX0LerRal3xZ0F0ff860Nwikxg5ny
55qX3zSciQEvmgFXlupqxfvieZHhRw5T2Ni1kIKnZiLw7HDEalOwPcCywpYVQPBD
zLLXgl/aacurNBEa9ha2dJmnWUCZcVScxFevUMlHqXth0CgmHnjCNZGXHeGxho2O
nLLtH5QLLYT8YN5H6e5NR4ec3G0v1gVSdCkbu44HlvmvoHd26XtOprKsDHdY4mza
aNW9MpQH3hESKg9QH83pJBc3YrVr+sJwYK7BDoYII+r9uUpi7O/EADiLn0XpAgMB
AAGjggUpMIIFJTAdBgNVHQ4EFgQUgIDoaDLy5Segvl3EyWSq8H/+f/0wHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjA0NzMucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwggM9BggrBgEFBQcBBwEB/wSCAywwggMoMIIDJAQCAAEw
ggMcAwQBW3wOAwQBW3wSAwQCW3woAwQAW3w0AwQAW3w3MAwDBABbfDkDBABbfDoD
BABbfEMDBAFbfFADBABbfFMDBABbfFcDBABbfFkDBABbfIsDBABbfJEwDAMEAFt8
kwMEAFt8lAMEAFt8qjAMAwQCW3ysAwQAW3yuMAwDBABbfLEDBAJbfLAwDAMEAFt8
uQMEAFt8ugMEAVt87AMEAFxwkwMEAV+HDAMEAV+HEgMEAV+HGAMEAV+HHgMEAV+H
JAMEAV+HMAMEAV+HNgMEAV+HRDAMAwQCX4d8AwQAX4d+AwQBX4egAwQAX4ekAwQB
X4emAwQAX4etAwQAX4eyAwQAX4e1AwQAX4e/AwQBX4fKAwQAX4fmAwQBX4fwAwQB
X4f0AwQAX4f5AwQBX4f+AwQAslwUAwQAslwWAwQBslwcAwQCslwoAwQAslwwAwQA
slw6AwQAslw+AwQBslxIAwQBslxgAwQBslxuAwQCslx4MAwDBACyXH0DBAGyXIAD
BAGyXIgDBAGyXI4DBAGyXJIDBAGyXJ4DBAGyXKIDBAGyXLwDBAKyXMADBAGyXMwD
BAGyXNADBAKyXNgwDAMEAbJdTgMEArJdUAMEALJdVgMEALJdWAMEALJdWwMEALJd
XQMEALJdXwMEALJdYgMEALJdbAMEALJdbjAMAwQAsl11AwQDsl1wAwQBsl2gAwQB
sl2kAwQBsl2qAwQCsl2wMAwDBAGyXbYDBAGyXbgDBAGyXcgDBAGyXdQDBAGyXdgD
BACyXd8wDAMEALJd4QMEALJd4jAMAwQAsl3lAwQAsl3oAwQBsl3uMAwDBAGyXfYD
BAGyXfwDBAGyXgoDBAGyXg4wDAMEAbJeFgMEAbJeGAMEArJeHAMEAbJeJAMEAbJe
KjAMAwQHsl6AAwQCsl6IMAwDBAWyXqADBACyXqIDBACyXqgwDAMEALJerwMEALJe
tDAMAwQBsl62AwQAsl64AwQAsl67AwQAsl7lAwQAsl7nMAwDBACyXusDBACyXuwD
BACyXvEDBACyXvgwDAMEAbJe+gMEAbJe/AMEALJfxTANBgkqhkiG9w0BAQsFAAOC
AQEAoZpTTs6x9CS41giUhLiix9ZfXLpwB/63YuYzFQnJQTI8k9fIpFkCNxbV5Y+l
7QEQCLcdcjbq0PhRpR/Lp35jbEwIitulhJkJSrA0NVQ5cYVl9DZTLOKYxVxrNDZL
rSu5FfDiDbkjTjwGDBfXX+8X/EGyFq2glLrpovXP047nWA+jXxT3IyVNaqY3oLUI
5aHUMlvPhuJOBPZaLCmZssRwlZ+tJsbR4z69DtiIOaihE/vWaxZ6q/U+pcm+klbF
rw+mWZz9e/QMn76O6Eqb18RTo5jHRZi0/6UCqrc/t0/0wugdpEEHtT0Id2dbgHd7
UOMseSG2+qqfixdOgbTMGcda4g==
-----END CERTIFICATE-----
Generated at Wed May 13 00:24:44 2026 by rpki-client