Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395793.roa
File: AS395793.roa (raw, json)
Hash identifier: jhlJqB/jhp16PUh7p7Fp1avpuJ8bvwtGgekAfMzoIFo=
Subject key identifier: 7A:C8:E0:A3:28:59:EB:E6:1D:69:56:44:99:0B:01:6C:20:D7:D4:3A
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 1C3EF0583C402D1CB75AEC1608C51AC2BE1926C3
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395793.roa
Signing time: Tue 28 Apr 2026 08:47:06 +0000
ROA not before: Tue 28 Apr 2026 08:42:06 +0000
ROA not after: Tue 27 Apr 2027 08:47:06 +0000
asID: 395793
IP address blocks: 95.134.78.0/24 maxlen: 24
95.134.81.0/24 maxlen: 24
95.134.82.0/24 maxlen: 24
95.134.131.0/24 maxlen: 24
95.134.148.0/24 maxlen: 24
95.134.150.0/24 maxlen: 24
95.134.202.0/24 maxlen: 24
95.135.102.0/24 maxlen: 24
95.135.194.0/24 maxlen: 24
95.135.223.0/24 maxlen: 24
178.93.122.0/24 maxlen: 24
178.94.170.0/24 maxlen: 24
178.94.171.0/24 maxlen: 24
178.95.229.0/24 maxlen: 24
178.95.245.0/24 maxlen: 24
178.95.246.0/24 maxlen: 24
178.95.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:3e:f0:58:3c:40:2d:1c:b7:5a:ec:16:08:c5:1a:c2:be:19:26:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 28 08:42:06 2026 GMT
Not After : Apr 27 08:47:06 2027 GMT
Subject: CN=7AC8E0A32859EBE61D695644990B016C20D7D43A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:85:8f:6a:d1:e0:44:0f:27:2f:d8:89:70:b9:
81:25:b5:16:13:7f:09:71:0c:08:a5:db:76:ad:6c:
a0:96:dd:f0:a3:1b:ca:e6:6c:56:c8:ae:61:48:e8:
ea:d9:08:f9:8e:ce:df:20:f6:5a:75:c9:fd:a3:89:
59:e2:85:77:2e:fb:5e:f9:f0:8d:73:d3:60:14:7f:
28:af:83:d1:6c:11:c7:98:b1:d7:7c:67:d4:73:7d:
5a:34:10:cb:56:55:e9:b3:cd:ac:30:0f:a3:68:45:
09:09:e3:b2:1c:b7:67:38:91:81:1d:b1:2a:65:72:
9f:4c:fe:3a:ba:f9:17:5e:ab:2e:29:f0:73:53:bf:
5e:81:07:de:ca:44:a0:8f:b1:52:ec:4b:72:de:72:
24:e9:c5:54:ab:e2:79:a5:79:9e:23:02:87:62:da:
c9:ff:81:ec:c9:ab:72:60:75:68:00:ff:6f:f6:e4:
9a:e2:50:4c:ca:b8:22:b1:00:7b:47:8a:b1:7f:c7:
2f:e8:e8:0f:96:37:52:c9:89:01:a2:dc:b4:9d:2a:
15:59:a3:de:d4:e8:41:3d:04:5c:c6:40:e5:33:ef:
79:ea:05:d9:48:34:9e:7d:1b:53:d5:c2:53:af:6b:
6c:aa:c5:3d:f9:30:83:2c:b8:32:67:8b:6e:84:8f:
3d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C8:E0:A3:28:59:EB:E6:1D:69:56:44:99:0B:01:6C:20:D7:D4:3A
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395793.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.134.78.0/24
95.134.81.0-95.134.82.255
95.134.131.0/24
95.134.148.0/24
95.134.150.0/24
95.134.202.0/24
95.135.102.0/24
95.135.194.0/24
95.135.223.0/24
178.93.122.0/24
178.94.170.0/23
178.95.229.0/24
178.95.245.0-178.95.247.255
Signature Algorithm: sha256WithRSAEncryption
91:1e:fe:c4:1b:58:cc:55:90:a2:16:5b:d9:71:9c:63:43:76:
2f:e3:93:3e:83:b1:2e:83:dc:36:95:8e:e8:ce:2d:d7:8c:57:
46:d3:bb:8f:eb:16:d5:9d:6b:c0:d6:db:a7:6a:c0:bb:08:ad:
d4:0e:ea:1a:b7:7e:c1:55:e8:1b:60:a3:c0:25:2d:60:cd:4c:
b0:00:5f:6b:33:7c:d8:53:e8:90:7a:e6:72:33:1c:88:bc:bb:
a8:8f:50:7e:ea:f9:85:25:02:67:69:3a:9d:21:2e:34:3c:62:
dd:69:5d:90:e1:b8:58:a7:a7:4d:f9:a7:0c:62:00:6a:a6:aa:
95:3a:a5:dd:34:b9:c4:a8:a0:cc:89:e2:ad:7b:48:71:36:d6:
0c:ec:b9:db:a4:ba:3f:b1:db:0f:90:71:d8:d9:88:93:75:9f:
9d:7e:dd:b7:e4:c9:0e:8f:ca:6a:80:9c:da:f4:d5:d6:e5:60:
bc:45:50:a0:7a:36:46:23:fa:fa:3b:66:81:39:57:1a:d2:2a:
63:c5:0a:d3:23:66:b2:1e:57:1a:be:64:d2:05:f1:e3:9e:9f:
b1:e6:4b:58:4b:19:99:35:76:0e:1b:73:a4:92:3f:d0:a6:17:
ec:6d:e3:f8:da:cb:22:3e:6c:1d:91:94:fe:30:4d:05:4a:9c:
5c:f9:60:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:24:02 2026 by rpki-client