Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS13335.roa
File: AS13335.roa (raw, json)
Hash identifier: suJo0urJv1xxuoHy7+NTbTiW4I2o16HcBJzg8fNv/vc=
Subject key identifier: 9F:D3:63:35:95:57:50:FB:E1:8E:08:F2:EF:9A:3E:E7:BF:C4:C1:8B
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 74D509613E90627F957505378843849C6FF5F31F
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS13335.roa
Signing time: Wed 03 Jun 2026 21:45:05 +0000
ROA not before: Wed 03 Jun 2026 21:40:05 +0000
ROA not after: Wed 02 Jun 2027 21:45:05 +0000
asID: 13335
IP address blocks: 140.233.180.0/24 maxlen: 24
143.14.142.0/24 maxlen: 24
143.14.163.0/24 maxlen: 24
143.14.165.0/24 maxlen: 24
143.14.167.0/24 maxlen: 24
143.14.168.0/24 maxlen: 24
143.14.176.0/22 maxlen: 24
143.14.224.0/24 maxlen: 24
143.14.251.0/24 maxlen: 24
155.117.208.0/23 maxlen: 23
167.148.69.0/24 maxlen: 24
167.148.120.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 19:43:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:d5:09:61:3e:90:62:7f:95:75:05:37:88:43:84:9c:6f:f5:f3:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jun 3 21:40:05 2026 GMT
Not After : Jun 2 21:45:05 2027 GMT
Subject: CN=9FD36335955750FBE18E08F2EF9A3EE7BFC4C18B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:25:58:1d:fd:19:36:df:04:3e:ae:f9:06:23:
48:d5:26:7f:8b:d3:c4:ad:1a:9f:8d:44:cc:dc:7f:
27:91:b8:f1:67:ae:67:8c:85:3c:f5:ac:c8:4f:46:
c9:0f:65:a9:3e:52:a3:2f:e9:90:17:b2:4f:27:ff:
8d:69:4f:da:ae:88:96:72:79:af:62:e4:8a:3d:b8:
7e:67:7c:41:29:37:b3:80:3c:5b:d1:65:cc:03:80:
ea:7a:50:05:70:ac:40:16:95:a1:de:b5:d8:57:a9:
e4:f5:1b:59:30:aa:14:1a:e9:1e:f4:38:b5:34:dd:
4c:57:24:ef:67:e5:a2:5d:da:e9:88:e6:87:9b:bd:
d8:20:ec:74:93:7e:62:e3:78:3c:67:a7:89:bd:c6:
b6:65:a5:41:9f:45:f4:cb:27:de:92:03:d4:d2:90:
13:5e:c1:c0:c2:78:65:20:bc:72:ab:ce:07:a5:37:
95:e5:2d:6b:49:dd:29:11:0e:f8:91:ef:a3:56:ae:
10:39:3f:5f:ae:da:dd:37:a3:ab:81:74:d3:7d:87:
b0:72:a2:88:03:2f:64:b4:76:3b:2f:48:19:6b:6f:
bd:d8:82:fe:1b:b2:fe:d7:04:a6:50:88:98:fe:d2:
71:b2:ed:a6:2f:c6:9e:26:cb:be:a9:19:e4:83:36:
24:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:D3:63:35:95:57:50:FB:E1:8E:08:F2:EF:9A:3E:E7:BF:C4:C1:8B
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS13335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.180.0/24
143.14.142.0/24
143.14.163.0/24
143.14.165.0/24
143.14.167.0-143.14.168.255
143.14.176.0/22
143.14.224.0/24
143.14.251.0/24
155.117.208.0/23
167.148.69.0/24
167.148.120.0/23
Signature Algorithm: sha256WithRSAEncryption
07:6a:d6:24:f1:01:69:52:7e:70:e6:ba:2b:75:2b:2b:18:da:
ec:42:37:21:a6:4d:2a:a3:49:81:87:c3:a2:f8:f6:7d:0b:6b:
1a:f3:a5:5f:f6:47:8c:f7:26:e9:51:84:b5:d7:89:2d:ac:db:
7b:3b:5f:28:3d:3f:42:55:00:da:42:a3:e6:e8:3c:5d:7b:d6:
d3:50:c6:b4:43:83:4d:d9:97:40:3b:b6:5e:8c:84:ce:35:d2:
6f:d3:8e:07:db:39:19:0a:b7:95:db:d6:de:29:cc:d0:f8:18:
56:d8:ab:91:87:e7:32:13:30:da:7a:36:8a:3c:0e:ff:3c:c1:
23:9d:f1:9c:69:90:25:f3:4c:e3:06:d0:8a:82:83:99:1a:53:
90:6a:77:af:50:dd:46:e1:1c:fe:e0:34:87:f8:d8:88:04:91:
35:67:34:22:aa:03:64:6f:4d:c4:19:c3:65:e8:e7:4c:6f:e3:
a6:31:25:22:8f:db:e5:82:e4:95:79:b8:17:7d:af:94:b1:83:
79:58:85:a0:72:36:d3:ac:a3:b9:43:ed:7a:6c:9f:76:eb:e0:
b7:bc:8a:ed:03:8a:5b:ec:62:4b:d7:94:56:b3:4e:14:b5:84:
35:64:55:86:ad:38:5d:90:da:4c:07:87:e2:01:b2:c7:a9:21:
9a:6e:81:e6
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIUdNUJYT6QYn+VdQU3iEOEnG/18x8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNjA2MDMyMTQwMDVaFw0yNzA2MDIyMTQ1MDVaMDMxMTAvBgNV
BAMTKDlGRDM2MzM1OTU1NzUwRkJFMThFMDhGMkVGOUEzRUU3QkZDNEMxOEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRJVgd/Rk23wQ+rvkGI0jVJn+L
08StGp+NRMzcfyeRuPFnrmeMhTz1rMhPRskPZak+UqMv6ZAXsk8n/41pT9quiJZy
ea9i5Io9uH5nfEEpN7OAPFvRZcwDgOp6UAVwrEAWlaHetdhXqeT1G1kwqhQa6R70
OLU03UxXJO9n5aJd2umI5oebvdgg7HSTfmLjeDxnp4m9xrZlpUGfRfTLJ96SA9TS
kBNewcDCeGUgvHKrzgelN5XlLWtJ3SkRDviR76NWrhA5P1+u2t03o6uBdNN9h7By
oogDL2S0djsvSBlrb73Ygv4bsv7XBKZQiJj+0nGy7aYvxp4my76pGeSDNiRbAgMB
AAGjggJNMIICSTAdBgNVHQ4EFgQUn9NjNZVXUPvhjgjy75o+57/EwYswHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTMzMzUucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwYwYIKwYBBQUHAQcBAf8EVDBSMFAEAgABMEoDBACM6bQD
BACPDo4DBACPDqMDBACPDqUwDAMEAI8OpwMEAI8OqAMEAo8OsAMEAI8O4AMEAI8O
+wMEAZt10AMEAKeURQMEAaeUeDANBgkqhkiG9w0BAQsFAAOCAQEAB2rWJPEBaVJ+
cOa6K3UrKxja7EI3IaZNKqNJgYfDovj2fQtrGvOlX/ZHjPcm6VGEtdeJLazbeztf
KD0/QlUA2kKj5ug8XXvW01DGtEODTdmXQDu2XoyEzjXSb9OOB9s5GQq3ldvW3inM
0PgYVtirkYfnMhMw2no2ijwO/zzBI53xnGmQJfNM4wbQioKDmRpTkGp3r1DdRuEc
/uA0h/jYiASRNWc0IqoDZG9NxBnDZejnTG/jpjElIo/b5YLklXm4F32vlLGDeViF
oHI206yjuUPtemyfduvgt7yK7QOKW+xiS9eUVrNOFLWENWRVhq04XZDaTAeH4gGy
x6khmm6B5g==
-----END CERTIFICATE-----
Generated at Sat Jun 13 09:13:01 2026 by rpki-client