Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS10753.roa
File: AS10753.roa (raw, json)
Hash identifier: 0hVT91BMgin9i1Brv5ql18KLft29UWpipDc67Q4sjtE=
Subject key identifier: 8C:55:1E:FA:30:43:34:9C:E3:E4:E5:81:52:81:45:E6:53:A9:0E:D9
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 6B11EB843435C396E14A9D6376D318D984F3277F
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS10753.roa
Signing time: Fri 20 Feb 2026 19:13:59 +0000
ROA not before: Fri 20 Feb 2026 19:08:59 +0000
ROA not after: Fri 19 Feb 2027 19:13:59 +0000
asID: 10753
IP address blocks: 136.143.243.0/24 maxlen: 24
136.143.245.0/24 maxlen: 24
136.143.246.0/24 maxlen: 24
136.143.252.0/24 maxlen: 24
136.143.254.0/24 maxlen: 24
148.135.145.0/24 maxlen: 24
148.135.156.0/24 maxlen: 24
203.100.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 12:54:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:11:eb:84:34:35:c3:96:e1:4a:9d:63:76:d3:18:d9:84:f3:27:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 20 19:08:59 2026 GMT
Not After : Feb 19 19:13:59 2027 GMT
Subject: CN=8C551EFA3043349CE3E4E581528145E653A90ED9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:38:78:9c:37:ba:47:52:fb:ce:42:2d:99:f5:
c3:da:86:a4:fd:aa:71:fa:0b:82:11:43:d9:39:87:
bb:27:36:0e:d4:60:75:e7:10:66:2b:99:97:3a:fa:
12:8b:db:a8:68:dd:68:08:1d:1e:45:ee:25:af:97:
b5:c8:90:24:e3:6f:ab:a7:85:22:05:04:0d:2b:27:
f9:62:5d:8a:78:fd:6c:46:2f:d0:75:10:c9:dd:4f:
5a:9b:87:85:8c:a5:f3:f9:48:77:dc:e1:a6:93:27:
7a:8a:f0:cd:ea:1b:2d:64:8e:dc:e5:2d:dd:ca:56:
ae:9b:88:10:c7:d5:fd:45:c5:e6:e6:60:0c:83:75:
e7:ff:90:01:a4:ee:42:cb:e0:11:a0:36:bd:9e:e8:
73:e5:b2:83:e1:c9:d8:13:ae:4a:e5:fc:2e:30:48:
e2:b4:0f:9a:ff:05:2a:2c:25:bf:58:f3:5b:21:8d:
5d:59:37:2d:a3:ac:38:44:11:fb:20:b8:1a:50:5c:
82:63:74:c7:9c:21:52:9b:01:8e:28:72:14:b0:34:
7e:49:17:24:9f:10:7e:78:f1:df:6a:c4:11:62:7b:
2d:b8:54:49:cb:6d:2b:6e:87:64:74:86:8b:a8:af:
79:be:0f:32:61:6b:7d:ba:4d:dd:d0:7b:a2:1d:97:
4f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:55:1E:FA:30:43:34:9C:E3:E4:E5:81:52:81:45:E6:53:A9:0E:D9
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS10753.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
136.143.243.0/24
136.143.245.0-136.143.246.255
136.143.252.0/24
136.143.254.0/24
148.135.145.0/24
148.135.156.0/24
203.100.210.0/24
Signature Algorithm: sha256WithRSAEncryption
84:4b:14:03:dc:01:a3:0a:3e:85:27:0e:e7:c4:bd:a7:f3:32:
db:ad:4c:c6:aa:e4:3a:b4:33:19:0d:e9:29:35:1c:7a:96:1f:
e5:f9:93:c6:71:8a:4e:b5:2e:35:b5:40:93:50:22:94:24:b5:
bb:cf:60:cf:28:27:c4:ce:e6:5e:b7:15:f8:c0:b1:8f:e7:8b:
28:20:45:b4:56:c0:69:6f:a1:d0:e4:2f:ed:8d:cb:45:74:03:
3d:0b:19:22:7f:54:f7:4e:61:2f:3e:08:5f:07:24:96:eb:13:
c3:98:6e:c5:f4:40:68:5b:b5:37:a8:5d:21:d3:be:c4:dc:36:
05:89:d4:6e:b6:83:c7:5b:4d:e1:ab:5d:f1:60:15:30:e7:4b:
1d:a3:3e:d3:92:77:df:47:56:69:50:e5:54:5b:3e:6e:07:89:
c8:05:c1:46:ff:57:7c:d4:14:0b:fd:f4:32:24:76:1a:bc:1d:
a1:b5:e3:0f:09:da:6f:73:8f:15:f5:c3:4b:a0:37:52:8d:ce:
30:ae:2a:11:81:3e:84:7e:ea:e5:28:7c:19:4e:48:87:bc:a8:
34:05:ba:3e:7a:d5:71:ce:5f:f5:39:dc:37:89:44:bc:b4:17:
19:68:d1:35:7a:de:03:61:16:36:e5:d2:de:37:77:7f:82:62:
18:5b:ca:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 21:53:56 2026 by rpki-client