Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
File: AS5650.roa (raw, json)
Hash identifier: KfcARqbY6gwymG2Z19KIou3mtg1i1HLLEyK2Ri/Rpws=
Subject key identifier: 49:DC:C3:8E:17:6C:28:15:90:B9:D2:D2:0C:27:17:B3:3D:61:91:28
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 4D307E9A93CA10158AF5EB87E85467FBDB6A0107
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
Signing time: Thu 26 Mar 2026 20:56:08 +0000
ROA not before: Thu 26 Mar 2026 20:51:08 +0000
ROA not after: Thu 25 Mar 2027 20:56:08 +0000
asID: 5650
IP address blocks: 46.203.160.0/24 maxlen: 24
46.203.164.0/24 maxlen: 24
92.112.32.0/24 maxlen: 24
92.112.33.0/24 maxlen: 24
92.112.34.0/24 maxlen: 24
92.112.35.0/24 maxlen: 24
92.112.157.0/24 maxlen: 24
92.113.215.0/24 maxlen: 24
95.135.38.0/24 maxlen: 24
95.135.85.0/24 maxlen: 24
95.135.127.0/24 maxlen: 24
95.135.138.0/24 maxlen: 24
95.135.219.0/24 maxlen: 24
178.92.220.0/24 maxlen: 24
178.95.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:30:7e:9a:93:ca:10:15:8a:f5:eb:87:e8:54:67:fb:db:6a:01:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 26 20:51:08 2026 GMT
Not After : Mar 25 20:56:08 2027 GMT
Subject: CN=49DCC38E176C281590B9D2D20C2717B33D619128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0f:25:d7:0e:f7:a3:fc:aa:42:ed:8c:c0:90:
f9:7a:d0:4f:24:16:76:5f:f6:8b:96:5a:a4:6b:d4:
59:0f:25:5c:93:0e:9e:10:35:22:89:aa:ea:58:28:
84:a1:26:ff:2b:af:1d:f7:47:8c:71:d7:95:83:c3:
b6:49:76:b4:02:2d:fa:a4:2f:58:c9:46:bd:30:de:
74:80:ca:b6:fd:f3:9e:c1:ce:f6:78:e0:69:36:aa:
22:e2:a3:59:cc:a5:02:fd:e6:c8:60:1a:e5:3f:68:
97:5b:4c:41:0c:75:2d:11:0e:4e:7b:95:e8:58:97:
7b:2b:27:57:9d:e3:5b:6a:ae:9f:c1:a6:b5:be:43:
95:8e:45:54:5d:94:20:6e:c1:5f:47:55:fd:67:43:
d8:b4:a1:a5:d2:48:af:47:f7:0f:60:3d:16:32:b4:
07:42:7f:ea:e5:01:13:1a:e4:64:ac:76:14:25:07:
74:58:69:8d:5b:b9:2f:97:48:9e:78:ae:85:63:cf:
f7:ff:d1:25:84:9a:64:26:ea:eb:dc:bb:a4:2c:35:
de:fe:6f:e0:68:0a:3e:e8:4a:cd:f4:00:71:2d:3a:
08:ef:39:c5:c4:c0:e7:2f:6a:84:7f:7e:57:b9:b5:
b2:5d:4b:6c:d2:75:b1:e1:2f:a6:ff:7a:ba:73:d2:
f6:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DC:C3:8E:17:6C:28:15:90:B9:D2:D2:0C:27:17:B3:3D:61:91:28
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.160.0/24
46.203.164.0/24
92.112.32.0/22
92.112.157.0/24
92.113.215.0/24
95.135.38.0/24
95.135.85.0/24
95.135.127.0/24
95.135.138.0/24
95.135.219.0/24
178.92.220.0/24
178.95.191.0/24
Signature Algorithm: sha256WithRSAEncryption
37:23:c6:2e:e8:1e:03:64:44:7c:5f:70:f5:e6:c8:03:25:56:
08:4c:30:a9:cd:00:72:06:a2:17:7f:52:b2:ae:ca:a6:03:48:
80:7c:a8:15:ac:4d:a7:44:a8:40:eb:f4:d2:3d:64:c7:be:e0:
4a:38:04:54:dd:3b:67:a1:9a:4b:81:7c:8a:a7:53:94:17:4d:
a8:71:02:de:d7:05:9e:1c:75:7a:28:07:27:1a:7c:bb:4d:f5:
37:77:91:17:6d:b5:be:d5:25:96:a5:4e:df:fd:35:ae:47:65:
d7:3f:b7:b7:68:7b:51:87:b4:d1:65:87:24:59:eb:21:d9:e8:
88:89:07:0d:45:9c:88:67:a0:23:ab:1d:f0:c2:0d:73:4d:b8:
9e:c2:ec:b3:ed:d5:20:69:d7:6c:e7:88:7e:8d:e1:1e:29:ac:
02:f4:33:99:c2:6f:37:27:48:e5:54:cc:74:73:92:5b:e9:a0:
72:87:70:c2:47:a1:68:a1:89:c6:6f:96:ae:e5:b6:28:a0:49:
8a:ac:69:c6:d8:d2:bc:bf:5c:01:d2:6f:cc:3d:47:65:4a:d9:
04:6e:ed:5e:96:7c:e5:d1:44:4f:67:8a:63:0f:f6:09:79:f0:
ec:25:67:ef:83:6e:23:95:d5:ef:b8:48:fc:4e:c0:99:e1:79:
e9:75:c1:ca
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIUTTB+mpPKEBWK9euH6FRn+9tqAQcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNjAzMjYyMDUxMDhaFw0yNzAzMjUyMDU2MDhaMDMxMTAvBgNV
BAMTKDQ5RENDMzhFMTc2QzI4MTU5MEI5RDJEMjBDMjcxN0IzM0Q2MTkxMjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXDyXXDvej/KpC7YzAkPl60E8k
FnZf9ouWWqRr1FkPJVyTDp4QNSKJqupYKIShJv8rrx33R4xx15WDw7ZJdrQCLfqk
L1jJRr0w3nSAyrb9857BzvZ44Gk2qiLio1nMpQL95shgGuU/aJdbTEEMdS0RDk57
lehYl3srJ1ed41tqrp/BprW+Q5WORVRdlCBuwV9HVf1nQ9i0oaXSSK9H9w9gPRYy
tAdCf+rlARMa5GSsdhQlB3RYaY1buS+XSJ54roVjz/f/0SWEmmQm6uvcu6QsNd7+
b+BoCj7oSs30AHEtOgjvOcXEwOcvaoR/fle5tbJdS2zSdbHhL6b/erpz0vYHAgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQUSdzDjhdsKBWQudLSDCcXsz1hkSgwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNTY1MC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjBhBggrBgEFBQcBBwEB/wRSMFAwTgQCAAEwSAMEAC7LoAME
AC7LpAMEAlxwIAMEAFxwnQMEAFxx1wMEAF+HJgMEAF+HVQMEAF+HfwMEAF+HigME
AF+H2wMEALJc3AMEALJfvzANBgkqhkiG9w0BAQsFAAOCAQEANyPGLugeA2REfF9w
9ebIAyVWCEwwqc0AcgaiF39Ssq7KpgNIgHyoFaxNp0SoQOv00j1kx77gSjgEVN07
Z6GaS4F8iqdTlBdNqHEC3tcFnhx1eigHJxp8u031N3eRF221vtUllqVO3/01rkdl
1z+3t2h7UYe00WWHJFnrIdnoiIkHDUWciGegI6sd8MINc024nsLss+3VIGnXbOeI
fo3hHimsAvQzmcJvNydI5VTMdHOSW+mgcodwwkehaKGJxm+WruW2KKBJiqxpxtjS
vL9cAdJvzD1HZUrZBG7tXpZ85dFET2eKYw/2CXnw7CVn74NuI5XV77hI/E7AmeF5
6XXByg==
-----END CERTIFICATE-----
Generated at Sat Mar 28 10:13:54 2026 by rpki-client