Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa
File: AS214025.roa (raw, json)
Hash identifier: Oybgn3B3qIOoE0bEX/F/R+TOjI3Kze4GRubN2RWRMkc=
Subject key identifier: 68:B4:A5:D9:26:08:5E:CF:0E:A0:4B:01:99:EB:02:A9:F8:B8:5A:D3
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 5C80E325519F9CD748B1F7FB2490A1A1A1548E19
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa
Signing time: Tue 24 Mar 2026 10:26:18 +0000
ROA not before: Tue 24 Mar 2026 10:21:18 +0000
ROA not after: Tue 23 Mar 2027 10:26:18 +0000
asID: 214025
IP address blocks: 46.202.51.0/24 maxlen: 24
46.202.62.0/24 maxlen: 24
46.202.66.0/24 maxlen: 24
46.203.98.0/24 maxlen: 24
46.203.203.0/24 maxlen: 24
92.112.36.0/24 maxlen: 24
92.113.112.0/23 maxlen: 24
92.113.124.0/23 maxlen: 24
92.113.142.0/23 maxlen: 24
95.135.201.0/24 maxlen: 24
178.95.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:80:e3:25:51:9f:9c:d7:48:b1:f7:fb:24:90:a1:a1:a1:54:8e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 24 10:21:18 2026 GMT
Not After : Mar 23 10:26:18 2027 GMT
Subject: CN=68B4A5D926085ECF0EA04B0199EB02A9F8B85AD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0d:68:46:97:01:d0:31:40:94:a8:76:95:aa:
60:38:a7:5b:da:49:ae:9e:fc:d7:98:1e:e8:c1:6e:
49:4e:2a:ea:28:98:ab:20:3c:bd:14:df:95:be:c2:
92:32:5b:14:88:10:dd:8c:c0:96:fd:7b:dd:96:fe:
ad:e0:fd:47:66:a9:2a:3f:8b:20:67:92:c2:2d:a3:
aa:31:8e:a2:35:ee:13:55:34:dd:65:36:38:e4:08:
45:92:fa:dd:43:bf:3e:39:59:e7:09:0c:54:20:54:
28:9b:7b:73:01:a0:be:a9:e2:7f:d4:2b:67:d8:b6:
c6:ba:26:ae:71:57:47:ae:7e:2d:2d:2b:ed:64:6a:
63:91:e4:0a:d5:c1:73:fa:2a:5d:fa:44:43:25:52:
54:49:d2:c4:cd:21:f6:f6:6d:7f:8f:61:23:53:92:
ca:94:78:0d:c1:cc:91:df:f0:1b:88:6b:c8:ed:e7:
f3:f4:d8:88:f0:e1:06:5c:e5:fe:84:09:86:d6:b9:
b7:0e:85:5e:96:2a:c6:d8:7b:44:d7:b1:7a:9c:42:
e2:c4:8f:94:3d:3f:a2:29:52:53:b0:7e:d6:6e:6c:
8b:6f:89:54:c0:48:16:46:64:dd:3d:b9:b2:9a:3a:
46:13:cb:23:1b:f0:50:4a:81:47:8d:ea:18:55:80:
cb:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B4:A5:D9:26:08:5E:CF:0E:A0:4B:01:99:EB:02:A9:F8:B8:5A:D3
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.51.0/24
46.202.62.0/24
46.202.66.0/24
46.203.98.0/24
46.203.203.0/24
92.112.36.0/24
92.113.112.0/23
92.113.124.0/23
92.113.142.0/23
95.135.201.0/24
178.95.5.0/24
Signature Algorithm: sha256WithRSAEncryption
11:fa:36:a9:20:4d:45:17:6d:58:77:15:6b:fa:59:44:fc:7f:
ad:59:a9:c9:dc:87:bf:d5:ea:eb:59:66:74:b2:99:00:a9:36:
cf:9c:ce:a2:a7:fc:15:00:2f:df:f7:c2:fd:bf:4e:b4:8f:c6:
2e:20:3a:26:7b:2c:94:61:14:1d:3b:c0:33:05:23:5f:e3:7d:
56:3d:8b:10:6d:66:c1:e5:16:58:60:4d:8c:08:44:6e:dc:b5:
26:1d:21:6e:e5:b4:06:7f:05:a6:d8:f6:39:e6:1d:e2:a8:d3:
69:31:d6:af:05:65:1f:c4:4e:1a:3e:cf:47:79:6e:84:d7:62:
0e:7d:64:dd:3d:1a:db:87:92:b0:64:2a:b4:24:4a:3d:3d:4f:
af:38:b9:13:8c:01:70:24:b8:84:6f:f2:a5:9a:c6:86:04:ae:
34:b8:f1:52:9e:42:4d:27:22:80:ea:13:a9:21:c6:96:30:64:
2c:6a:9a:87:1a:ef:c3:c6:73:7e:49:3c:cf:b5:41:37:09:0a:
af:c8:61:5e:b6:30:76:ee:35:fc:99:e9:95:7d:6c:a7:dc:37:
28:82:f1:53:88:62:f2:37:5c:5a:40:a2:d7:2c:07:95:1d:17:
14:44:cb:42:cb:af:06:2e:72:23:db:e0:2b:85:62:ef:3d:9a:
9f:26:36:5a
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgIUXIDjJVGfnNdIsff7JJChoaFUjhkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNjAzMjQxMDIxMThaFw0yNzAzMjMxMDI2MThaMDMxMTAvBgNV
BAMTKDY4QjRBNUQ5MjYwODVFQ0YwRUEwNEIwMTk5RUIwMkE5RjhCODVBRDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3DWhGlwHQMUCUqHaVqmA4p1va
Sa6e/NeYHujBbklOKuoomKsgPL0U35W+wpIyWxSIEN2MwJb9e92W/q3g/UdmqSo/
iyBnksIto6oxjqI17hNVNN1lNjjkCEWS+t1Dvz45WecJDFQgVCibe3MBoL6p4n/U
K2fYtsa6Jq5xV0eufi0tK+1kamOR5ArVwXP6Kl36REMlUlRJ0sTNIfb2bX+PYSNT
ksqUeA3BzJHf8BuIa8jt5/P02Ijw4QZc5f6ECYbWubcOhV6WKsbYe0TXsXqcQuLE
j5Q9P6IpUlOwftZubItviVTASBZGZN09ubKaOkYTyyMb8FBKgUeN6hhVgMs9AgMB
AAGjggJGMIICQjAdBgNVHQ4EFgQUaLSl2SYIXs8OoEsBmesCqfi4WtMwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE0MDI1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMFsGCCsGAQUFBwEHAQH/BEwwSjBIBAIAATBCAwQALsoz
AwQALso+AwQALspCAwQALstiAwQALsvLAwQAXHAkAwQBXHFwAwQBXHF8AwQBXHGO
AwQAX4fJAwQAsl8FMA0GCSqGSIb3DQEBCwUAA4IBAQAR+japIE1FF21YdxVr+llE
/H+tWanJ3Ie/1errWWZ0spkAqTbPnM6ip/wVAC/f98L9v060j8YuIDomeyyUYRQd
O8AzBSNf431WPYsQbWbB5RZYYE2MCERu3LUmHSFu5bQGfwWm2PY55h3iqNNpMdav
BWUfxE4aPs9HeW6E12IOfWTdPRrbh5KwZCq0JEo9PU+vOLkTjAFwJLiEb/KlmsaG
BK40uPFSnkJNJyKA6hOpIcaWMGQsapqHGu/DxnN+STzPtUE3CQqvyGFetjB27jX8
memVfWyn3DcogvFTiGLyN1xaQKLXLAeVHRcURMtCy68GLnIj2+ArhWLvPZqfJjZa
-----END CERTIFICATE-----
Generated at Thu Mar 26 05:31:08 2026 by rpki-client