Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: h4msvqK4hRd9gZ+uxf1eF67dxsWZnRQQfTQnS03r0Iw=
Subject key identifier: 3D:D9:6A:2A:5A:93:47:8E:12:36:7B:ED:64:17:93:E1:B4:9D:E8:58
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 0BBBBC3E9586208E0D1642D54F00DEBAE43893A7
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa
Signing time: Fri 27 Feb 2026 18:32:22 +0000
ROA not before: Fri 27 Feb 2026 18:27:22 +0000
ROA not after: Fri 26 Feb 2027 18:32:22 +0000
asID: 174
IP address blocks: 96.62.32.0/24 maxlen: 24
96.62.33.0/24 maxlen: 24
96.62.34.0/24 maxlen: 24
96.62.35.0/24 maxlen: 24
96.62.36.0/24 maxlen: 24
96.62.38.0/24 maxlen: 24
96.62.39.0/24 maxlen: 24
96.62.40.0/24 maxlen: 24
96.62.41.0/24 maxlen: 24
96.62.42.0/24 maxlen: 24
96.62.43.0/24 maxlen: 24
96.62.44.0/24 maxlen: 24
96.62.46.0/24 maxlen: 24
96.62.64.0/24 maxlen: 24
96.62.65.0/24 maxlen: 24
96.62.66.0/24 maxlen: 24
96.62.67.0/24 maxlen: 24
96.62.68.0/24 maxlen: 24
96.62.70.0/24 maxlen: 24
96.62.102.0/24 maxlen: 24
96.62.104.0/24 maxlen: 24
96.62.106.0/24 maxlen: 24
96.62.107.0/24 maxlen: 24
96.62.108.0/24 maxlen: 24
96.62.109.0/24 maxlen: 24
96.62.110.0/24 maxlen: 24
96.62.112.0/24 maxlen: 24
96.62.113.0/24 maxlen: 24
96.62.116.0/24 maxlen: 24
96.62.117.0/24 maxlen: 24
96.62.118.0/24 maxlen: 24
96.62.119.0/24 maxlen: 24
96.62.120.0/24 maxlen: 24
96.62.121.0/24 maxlen: 24
96.62.122.0/24 maxlen: 24
96.62.123.0/24 maxlen: 24
96.62.124.0/24 maxlen: 24
96.62.125.0/24 maxlen: 24
96.62.126.0/24 maxlen: 24
96.62.132.0/24 maxlen: 24
96.62.133.0/24 maxlen: 24
96.62.134.0/24 maxlen: 24
96.62.136.0/24 maxlen: 24
96.62.137.0/24 maxlen: 24
96.62.138.0/24 maxlen: 24
96.62.139.0/24 maxlen: 24
96.62.141.0/24 maxlen: 24
96.62.142.0/24 maxlen: 24
96.62.143.0/24 maxlen: 24
96.62.146.0/24 maxlen: 24
96.62.147.0/24 maxlen: 24
96.62.160.0/24 maxlen: 24
96.62.161.0/24 maxlen: 24
96.62.162.0/24 maxlen: 24
96.62.163.0/24 maxlen: 24
96.62.164.0/24 maxlen: 24
96.62.165.0/24 maxlen: 24
96.62.166.0/24 maxlen: 24
96.62.167.0/24 maxlen: 24
96.62.168.0/24 maxlen: 24
96.62.169.0/24 maxlen: 24
96.62.170.0/24 maxlen: 24
96.62.171.0/24 maxlen: 24
96.62.172.0/24 maxlen: 24
96.62.173.0/24 maxlen: 24
96.62.174.0/24 maxlen: 24
96.62.175.0/24 maxlen: 24
96.62.177.0/24 maxlen: 24
96.62.178.0/24 maxlen: 24
96.62.179.0/24 maxlen: 24
96.62.188.0/24 maxlen: 24
96.62.189.0/24 maxlen: 24
96.62.196.0/24 maxlen: 24
96.62.198.0/24 maxlen: 24
96.62.199.0/24 maxlen: 24
96.62.212.0/24 maxlen: 24
96.62.213.0/24 maxlen: 24
96.62.215.0/24 maxlen: 24
96.62.225.0/24 maxlen: 24
96.62.226.0/24 maxlen: 24
96.62.230.0/24 maxlen: 24
96.62.236.0/24 maxlen: 24
96.62.237.0/24 maxlen: 24
96.62.238.0/24 maxlen: 24
96.62.239.0/24 maxlen: 24
96.62.240.0/24 maxlen: 24
96.62.241.0/24 maxlen: 24
96.62.245.0/24 maxlen: 24
96.62.246.0/24 maxlen: 24
96.62.252.0/24 maxlen: 24
140.233.160.0/22 maxlen: 22
143.14.33.0/24 maxlen: 24
143.14.66.0/24 maxlen: 24
143.14.132.0/24 maxlen: 24
143.14.146.0/24 maxlen: 24
143.14.148.0/24 maxlen: 24
143.14.153.0/24 maxlen: 24
143.14.155.0/24 maxlen: 24
143.14.195.0/24 maxlen: 24
143.14.197.0/24 maxlen: 24
143.14.245.0/24 maxlen: 24
155.117.23.0/24 maxlen: 24
155.117.86.0/24 maxlen: 24
155.117.97.0/24 maxlen: 24
155.117.102.0/24 maxlen: 24
155.117.105.0/24 maxlen: 24
155.117.106.0/24 maxlen: 24
155.117.116.0/24 maxlen: 24
155.117.218.0/24 maxlen: 24
162.141.37.0/24 maxlen: 24
162.141.38.0/24 maxlen: 24
162.141.51.0/24 maxlen: 24
162.141.54.0/24 maxlen: 24
162.141.55.0/24 maxlen: 24
162.141.103.0/24 maxlen: 24
162.141.118.0/24 maxlen: 24
162.141.128.0/24 maxlen: 24
162.141.129.0/24 maxlen: 24
162.141.155.0/24 maxlen: 24
162.141.164.0/24 maxlen: 24
167.148.135.0/24 maxlen: 24
167.148.138.0/24 maxlen: 24
167.148.147.0/24 maxlen: 24
167.148.148.0/24 maxlen: 24
167.148.150.0/24 maxlen: 24
167.148.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:bb:bc:3e:95:86:20:8e:0d:16:42:d5:4f:00:de:ba:e4:38:93:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 27 18:27:22 2026 GMT
Not After : Feb 26 18:32:22 2027 GMT
Subject: CN=3DD96A2A5A93478E12367BED641793E1B49DE858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6b:a3:d2:43:be:34:9a:ed:34:6c:41:9b:34:
84:65:a4:0c:31:63:22:7a:17:c9:a9:e9:ac:e0:77:
06:d0:e3:b7:c4:93:3e:6f:d8:0e:56:00:32:8c:85:
10:68:4e:e3:24:1a:7c:bb:53:34:5d:13:b0:5b:a6:
78:92:0e:ea:6d:54:ef:1a:0c:7e:4f:47:7c:44:a3:
7b:79:f3:fe:59:21:1a:4a:c7:b5:05:6c:f5:5b:2a:
44:7a:5d:ce:e4:2e:69:a2:ee:4d:8c:01:b2:6d:55:
0b:ec:b1:c0:10:44:d3:7f:14:4b:08:ae:b1:47:da:
30:d4:14:51:f6:0a:ef:b8:51:59:da:44:73:d0:6a:
61:a5:b7:6d:6a:cb:d5:3e:4f:b0:b0:02:37:e2:9f:
e7:73:34:b8:93:6b:32:27:9f:e6:8a:f8:7b:d6:1c:
27:6c:8c:98:f9:48:bf:6e:78:94:a2:d5:26:21:51:
25:73:29:49:08:37:0b:3a:55:e7:b1:3a:3d:a2:70:
b2:d9:0c:23:7e:7c:f5:ff:69:d5:f1:8c:73:97:ac:
ca:ea:1c:ab:0c:f8:3d:96:fe:04:d7:b4:71:67:1b:
fc:4d:3d:16:0a:e8:e0:94:fb:cb:a3:2b:f2:1c:86:
d1:06:18:2f:36:ee:f2:06:be:68:ec:1c:b2:ee:34:
3a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D9:6A:2A:5A:93:47:8E:12:36:7B:ED:64:17:93:E1:B4:9D:E8:58
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.32.0-96.62.36.255
96.62.38.0-96.62.44.255
96.62.46.0/24
96.62.64.0-96.62.68.255
96.62.70.0/24
96.62.102.0/24
96.62.104.0/24
96.62.106.0-96.62.110.255
96.62.112.0/23
96.62.116.0-96.62.126.255
96.62.132.0-96.62.134.255
96.62.136.0/22
96.62.141.0-96.62.143.255
96.62.146.0/23
96.62.160.0/20
96.62.177.0-96.62.179.255
96.62.188.0/23
96.62.196.0/24
96.62.198.0/23
96.62.212.0/23
96.62.215.0/24
96.62.225.0-96.62.226.255
96.62.230.0/24
96.62.236.0-96.62.241.255
96.62.245.0-96.62.246.255
96.62.252.0/24
140.233.160.0/22
143.14.33.0/24
143.14.66.0/24
143.14.132.0/24
143.14.146.0/24
143.14.148.0/24
143.14.153.0/24
143.14.155.0/24
143.14.195.0/24
143.14.197.0/24
143.14.245.0/24
155.117.23.0/24
155.117.86.0/24
155.117.97.0/24
155.117.102.0/24
155.117.105.0-155.117.106.255
155.117.116.0/24
155.117.218.0/24
162.141.37.0-162.141.38.255
162.141.51.0/24
162.141.54.0/23
162.141.103.0/24
162.141.118.0/24
162.141.128.0/23
162.141.155.0/24
162.141.164.0/24
167.148.135.0/24
167.148.138.0/24
167.148.147.0-167.148.148.255
167.148.150.0/24
167.148.153.0/24
Signature Algorithm: sha256WithRSAEncryption
af:6a:11:10:7e:15:fe:91:61:f3:04:38:e1:25:8b:c1:7c:29:
39:d4:3d:65:a9:3c:63:a3:c5:b1:c1:12:4f:8a:c0:ac:9f:44:
d7:eb:0d:43:75:a4:ea:31:1d:e5:6d:3c:f7:fc:bd:63:41:1e:
a6:94:c9:47:e8:07:a0:fd:c1:14:7d:f0:80:c6:e1:40:2a:4f:
28:09:b4:fb:eb:d8:d3:f9:96:98:4b:5b:b6:c0:0d:f7:e4:bb:
a8:62:36:01:fc:74:55:ed:03:ca:d7:c4:cf:e8:68:ef:af:e5:
f6:72:d0:af:3c:e7:ca:6d:85:2b:6f:fe:c0:3d:7d:9a:46:b0:
f3:37:70:14:cb:04:65:e4:1f:62:cc:d9:a2:af:7b:20:9c:5d:
6f:1c:d5:e7:af:b9:e9:6d:c2:9f:8f:c6:50:99:b7:e7:46:c2:
5c:57:7b:d6:ca:66:b4:e8:8e:da:1a:7b:81:4c:49:ea:7e:8c:
d9:5e:ab:5e:82:be:40:cd:04:6a:a1:9c:94:6e:9c:d3:90:fc:
bd:82:09:39:0c:04:bf:d7:dc:37:62:c2:f9:a7:f9:2f:66:42:
3f:6a:a5:65:a9:82:e0:4c:cd:c0:1c:0b:78:9c:49:81:e3:e4:
d1:0b:48:48:2a:e8:76:65:e6:06:ad:87:37:72:5f:1d:4c:5d:
83:3b:83:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:02:34 2026 by rpki-client