Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
File: AS5650.roa (raw, json)
Hash identifier: kuEYsq0GeOa1e5TmMQUUVZg4GiLn4ufYbu93n8OEgJQ=
Subject key identifier: 04:CE:33:30:18:BB:73:22:62:81:0A:33:4C:04:39:CE:66:AE:65:DB
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 137256587874F8190016AB209C840DDE0E3C52F4
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
Signing time: Fri 01 May 2026 04:28:21 +0000
ROA not before: Fri 01 May 2026 04:23:21 +0000
ROA not after: Fri 30 Apr 2027 04:28:21 +0000
asID: 5650
IP address blocks: 46.203.160.0/24 maxlen: 24
46.203.164.0/24 maxlen: 24
92.112.32.0/24 maxlen: 24
92.112.33.0/24 maxlen: 24
92.112.34.0/24 maxlen: 24
92.112.35.0/24 maxlen: 24
92.113.215.0/24 maxlen: 24
95.135.38.0/24 maxlen: 24
95.135.85.0/24 maxlen: 24
95.135.127.0/24 maxlen: 24
95.135.138.0/24 maxlen: 24
95.135.219.0/24 maxlen: 24
178.92.220.0/24 maxlen: 24
178.95.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:72:56:58:78:74:f8:19:00:16:ab:20:9c:84:0d:de:0e:3c:52:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 1 04:23:21 2026 GMT
Not After : Apr 30 04:28:21 2027 GMT
Subject: CN=04CE333018BB732262810A334C0439CE66AE65DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:41:14:55:a8:23:f4:21:f5:28:8f:90:0d:7a:
99:ad:ea:37:b3:90:a1:c0:e0:84:cc:9a:9d:9f:0c:
57:b2:1f:5e:3a:03:77:a0:f6:60:18:50:17:bb:7c:
60:e8:43:cb:c6:6a:ec:87:b4:2e:47:ff:9a:74:2b:
57:9e:2a:84:14:47:f2:49:4d:59:fb:7e:b1:10:aa:
2a:4b:ec:cd:6d:22:eb:51:bc:40:e3:9a:ec:8e:5b:
41:02:61:9b:df:4f:8e:96:87:b6:b0:93:38:0d:cf:
fc:3d:72:1d:57:22:1c:0a:ef:e7:f9:e5:01:d3:b2:
04:9b:29:39:47:6d:c6:ff:d6:5f:f9:37:e1:d0:63:
88:86:45:67:a7:61:95:80:de:ea:40:42:d3:be:5d:
c4:14:30:cf:af:4b:47:ce:63:f9:e4:b5:11:9d:e4:
ab:a7:dd:ca:6e:92:5c:c2:77:63:f3:aa:3d:5b:c1:
e5:29:7b:e5:7a:2b:d5:a7:b1:67:ef:c2:ec:62:30:
bd:b8:63:19:55:f4:5a:b1:bb:1a:b6:c4:b2:9a:1a:
6f:74:a8:48:eb:31:62:fb:03:60:88:34:ba:14:df:
4a:31:48:29:f3:8d:d0:f1:7a:07:40:25:93:bc:3c:
b4:41:2b:c2:42:00:6e:55:60:a7:7b:8b:37:78:08:
31:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:CE:33:30:18:BB:73:22:62:81:0A:33:4C:04:39:CE:66:AE:65:DB
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.160.0/24
46.203.164.0/24
92.112.32.0/22
92.113.215.0/24
95.135.38.0/24
95.135.85.0/24
95.135.127.0/24
95.135.138.0/24
95.135.219.0/24
178.92.220.0/24
178.95.191.0/24
Signature Algorithm: sha256WithRSAEncryption
57:81:11:39:9c:31:21:bc:7f:26:fc:12:7f:a0:5d:ef:b5:3b:
42:58:0f:26:c5:d0:c8:bb:54:5a:e8:7d:d9:6c:72:2c:b2:c9:
78:3b:9e:a7:6b:18:ed:1b:90:14:a7:26:34:46:14:a1:0e:62:
e2:7e:3f:a9:81:f2:e9:46:63:8e:d5:62:5c:e6:db:a0:f5:15:
d5:df:b0:88:85:79:93:00:fd:3d:56:4a:80:64:bd:96:fc:48:
0c:90:c4:81:15:e6:15:5e:67:d6:76:5c:af:7a:15:b3:73:2e:
f5:12:ca:8c:e0:07:f1:e8:47:28:45:2f:b6:75:1e:69:0c:99:
ce:a6:5a:ca:1d:d3:fb:cc:41:0b:99:8d:8b:7d:88:23:5b:d4:
a8:65:d4:89:c0:b3:4c:b8:8e:45:20:d4:2c:92:3b:ff:07:f9:
b4:bc:18:db:8f:78:d0:1f:71:1f:2d:60:74:c0:b9:f8:a8:cc:
14:a5:b4:fa:c2:53:f8:76:8a:35:22:0d:54:94:d6:7c:31:14:
ba:2b:67:7c:15:d0:f9:ad:02:14:40:26:a9:0a:d1:7a:a9:17:
21:3e:1b:60:a5:48:14:a3:f7:49:57:0a:63:92:f5:8f:d4:da:
2f:69:dd:5b:fe:14:4c:ac:93:97:81:60:15:c0:fb:19:a8:4e:
fc:33:10:23
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue May 12 22:38:16 2026 by rpki-client