Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5511.roa
File: AS5511.roa (raw, json)
Hash identifier: W+b8+kn/FQ2l+W+JatelxQWqAUP+7/whtbgohg84ryw=
Subject key identifier: CF:0F:55:CD:24:A7:34:4E:D3:30:CC:61:78:3C:DC:B0:78:F0:57:6E
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 7AAAC5ADBD27A5C28647AEE967E1FBC9BF6C7711
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5511.roa
Signing time: Wed 20 Aug 2025 00:00:26 +0000
ROA not before: Tue 19 Aug 2025 23:55:26 +0000
ROA not after: Wed 19 Aug 2026 00:00:26 +0000
asID: 5511
IP address blocks: 46.202.3.0/24 maxlen: 24
46.202.34.0/24 maxlen: 24
46.202.38.0/24 maxlen: 24
46.202.42.0/24 maxlen: 24
46.202.55.0/24 maxlen: 24
46.202.58.0/24 maxlen: 24
46.202.65.0/24 maxlen: 24
46.203.1.0/24 maxlen: 24
46.203.4.0/24 maxlen: 24
46.203.15.0/24 maxlen: 24
46.203.20.0/24 maxlen: 24
46.203.30.0/24 maxlen: 24
46.203.41.0/24 maxlen: 24
46.203.42.0/24 maxlen: 24
46.203.53.0/24 maxlen: 24
46.203.60.0/24 maxlen: 24
46.203.76.0/24 maxlen: 24
46.203.82.0/24 maxlen: 24
46.203.86.0/24 maxlen: 24
46.203.144.0/24 maxlen: 24
46.203.184.0/24 maxlen: 24
91.124.244.0/22 maxlen: 24
91.124.248.0/22 maxlen: 24
92.112.0.0/24 maxlen: 24
92.112.12.0/24 maxlen: 24
92.112.130.0/24 maxlen: 24
92.112.159.0/24 maxlen: 24
95.135.183.0/24 maxlen: 24
178.93.60.0/22 maxlen: 24
178.93.172.0/22 maxlen: 24
178.93.204.0/22 maxlen: 24
178.95.64.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:34:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:aa:c5:ad:bd:27:a5:c2:86:47:ae:e9:67:e1:fb:c9:bf:6c:77:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Aug 19 23:55:26 2025 GMT
Not After : Aug 19 00:00:26 2026 GMT
Subject: CN=CF0F55CD24A7344ED330CC61783CDCB078F0576E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fa:4e:bf:bf:24:17:be:d9:11:7f:0c:1e:07:
b1:ca:b2:d8:bc:54:72:35:d4:48:c0:d4:27:87:b6:
67:6c:e8:60:9a:12:c8:6d:98:f0:71:f2:4a:0a:59:
22:87:ed:2e:9a:dc:f9:c2:b9:34:c7:72:77:8c:63:
b2:86:4b:06:9d:db:e1:49:71:74:e9:19:6a:3c:14:
b3:b5:3c:b2:b0:93:1e:d4:1d:41:73:5b:7a:9f:8b:
57:28:14:1f:48:7a:e0:a1:b8:94:0c:20:18:a8:91:
2e:20:62:bb:ab:41:68:7b:83:10:93:c8:fe:00:a2:
cc:2c:27:de:67:a3:38:0b:87:8c:85:71:a3:24:3a:
7a:2a:3c:41:32:0e:78:f0:89:d6:49:b3:31:f7:49:
2c:be:51:da:d4:82:36:3b:17:6d:8f:b9:79:6b:2d:
c7:f5:1c:3c:fb:b2:aa:d1:63:8a:38:da:7c:2d:2f:
f0:8f:03:87:50:08:9a:8c:88:15:01:14:cb:e3:d8:
1e:e6:d1:2b:41:3f:e8:ec:67:31:09:0b:79:bb:68:
ac:ef:01:46:3a:28:45:90:02:1b:50:40:2b:02:e9:
0c:90:e7:01:3b:44:63:86:8c:35:b8:fb:3d:9a:c9:
2c:21:78:7d:fe:9e:a0:5b:d9:85:09:fb:a1:be:c1:
a2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0F:55:CD:24:A7:34:4E:D3:30:CC:61:78:3C:DC:B0:78:F0:57:6E
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5511.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.3.0/24
46.202.34.0/24
46.202.38.0/24
46.202.42.0/24
46.202.55.0/24
46.202.58.0/24
46.202.65.0/24
46.203.1.0/24
46.203.4.0/24
46.203.15.0/24
46.203.20.0/24
46.203.30.0/24
46.203.41.0-46.203.42.255
46.203.53.0/24
46.203.60.0/24
46.203.76.0/24
46.203.82.0/24
46.203.86.0/24
46.203.144.0/24
46.203.184.0/24
91.124.244.0-91.124.251.255
92.112.0.0/24
92.112.12.0/24
92.112.130.0/24
92.112.159.0/24
95.135.183.0/24
178.93.60.0/22
178.93.172.0/22
178.93.204.0/22
178.95.64.0/22
Signature Algorithm: sha256WithRSAEncryption
87:95:8f:e3:97:20:26:35:19:73:a9:02:0b:50:61:b7:31:28:
45:93:ed:20:a7:9d:dc:a4:ca:5d:0f:44:03:33:64:62:50:4a:
4d:3e:22:04:1e:99:f7:1a:90:5e:0e:e6:8d:b2:91:6f:a0:52:
91:d9:42:07:8a:a1:1c:c8:0f:5f:e2:da:fe:d4:45:9d:7a:b2:
4c:a6:14:2d:3a:84:67:6e:56:ab:da:6b:19:1a:ce:95:1c:5b:
9f:e2:ab:5f:f2:35:a3:ed:dd:94:96:8d:50:68:d5:ca:06:fc:
dd:1c:41:55:7d:41:1b:cd:00:00:c2:80:2e:47:42:0b:b8:db:
9f:69:3e:a2:b7:af:e1:ef:3a:8d:02:09:27:35:b1:41:b6:ea:
38:b3:a1:58:36:2f:89:8d:c0:f4:23:77:80:92:30:3d:1e:da:
01:3d:e3:aa:43:fd:6e:a2:86:38:7d:95:bb:84:b4:2c:b9:8c:
ef:21:72:99:f2:c2:55:18:66:20:91:54:49:c9:60:0a:b7:9a:
83:9c:65:87:95:da:29:5c:f8:e7:5b:08:df:90:86:b1:c6:df:
06:ac:c2:5d:6e:cf:99:8f:7a:6f:e7:67:f4:86:b4:3a:71:eb:
a5:8c:f0:a9:83:97:f1:a1:01:dc:4f:52:ae:d8:03:34:84:2c:
dd:41:0f:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:17:27 2025 by rpki-client