Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS202736.roa
File: AS202736.roa (raw, json)
Hash identifier: Vru6WSILwIOaM+fUT0UoCVQ4o5hgxlwnW3N77rwgoH4=
Subject key identifier: 79:D8:EF:69:67:D5:DC:DF:7B:B6:A6:3B:8A:07:40:E4:78:45:31:72
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 51C6FC322ED4DE56461D9D465E61DE8A3BB914CA
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS202736.roa
Signing time: Sun 15 Feb 2026 05:58:08 +0000
ROA not before: Sun 15 Feb 2026 05:53:08 +0000
ROA not after: Sun 14 Feb 2027 05:58:08 +0000
asID: 202736
IP address blocks: 96.62.0.0/19 maxlen: 24
96.62.85.0/24 maxlen: 24
143.14.78.0/24 maxlen: 24
143.14.254.0/24 maxlen: 24
148.135.234.0/23 maxlen: 24
148.135.240.0/23 maxlen: 24
150.241.162.0/23 maxlen: 24
162.141.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 12:54:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:c6:fc:32:2e:d4:de:56:46:1d:9d:46:5e:61:de:8a:3b:b9:14:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 15 05:53:08 2026 GMT
Not After : Feb 14 05:58:08 2027 GMT
Subject: CN=79D8EF6967D5DCDF7BB6A63B8A0740E478453172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d5:93:a4:38:a3:39:82:a9:47:02:3f:85:03:
8d:5c:b1:4e:66:60:0c:ff:ee:3d:d0:ed:72:2c:c8:
2f:4c:4c:b0:fb:6c:62:40:8f:f3:5a:44:b4:59:2c:
2c:ad:bb:1b:44:e9:c3:4d:32:51:5b:0c:ad:50:d8:
b8:9c:ac:59:a0:26:b9:46:d1:25:d2:5c:be:3f:50:
81:73:f7:21:de:37:df:3d:fe:dc:6c:e7:98:f2:de:
08:67:b8:e2:52:09:2d:af:78:10:eb:59:c2:4c:cb:
cf:37:34:4f:d1:fe:62:4b:97:f7:b5:69:5c:06:1f:
25:34:12:49:7d:a6:c2:09:59:35:71:76:72:5b:0b:
6f:fa:2a:ba:83:57:5f:2e:32:43:e2:4b:df:af:a1:
78:03:b0:f3:67:41:9a:dc:77:21:2a:fb:3a:3b:0a:
f7:e9:75:5b:17:c4:84:a3:18:db:9e:54:8d:6a:f0:
05:ab:ff:9f:ed:a4:7b:6c:da:60:fa:25:8d:ed:a5:
6f:87:d6:cb:40:be:33:6a:b2:6e:79:4c:9c:73:bd:
59:63:65:38:02:3e:00:27:b4:b2:89:44:f9:6e:55:
50:fa:d6:65:11:21:28:53:3f:df:bf:1c:00:81:16:
51:3e:fb:2a:f0:24:a1:f4:2c:f3:0d:6e:09:43:41:
fa:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D8:EF:69:67:D5:DC:DF:7B:B6:A6:3B:8A:07:40:E4:78:45:31:72
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS202736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.0.0/19
96.62.85.0/24
143.14.78.0/24
143.14.254.0/24
148.135.234.0/23
148.135.240.0/23
150.241.162.0/23
162.141.21.0/24
Signature Algorithm: sha256WithRSAEncryption
31:8d:96:1a:fb:da:ed:40:3c:12:19:8b:e9:0f:ff:67:32:88:
ea:b8:32:7b:12:97:cc:d9:39:c7:4b:bf:52:6f:d1:e4:d8:0e:
49:17:a3:ed:1f:29:69:8f:b5:2a:b2:8f:b6:f3:6a:27:1a:5e:
91:df:af:53:2a:62:d5:f7:a4:15:d3:93:3f:ee:78:3a:c9:b3:
52:c8:a8:2d:27:ab:d1:51:0c:45:cb:58:d1:15:77:47:2a:7c:
c0:3d:0e:b3:d9:f5:02:08:22:43:ce:20:ee:7a:db:b5:7c:3c:
88:ba:25:ae:15:31:45:a4:d5:c1:f2:e0:d4:70:61:50:5c:b9:
5a:fb:c8:1a:f1:8c:18:fa:42:45:b9:f0:66:5f:e7:f9:91:90:
00:c1:17:8e:76:1b:0d:33:2d:a2:f1:c0:d0:34:47:ed:f4:88:
97:23:86:87:f4:47:c2:ef:a6:e3:c5:dc:d3:2f:0f:28:7a:9e:
c9:37:5e:c6:23:f9:cc:14:88:da:02:92:f3:27:44:2b:7f:14:
5f:46:56:68:0e:ab:06:1f:76:ba:aa:cc:29:8f:c0:f4:14:16:
c5:99:88:0a:99:6a:bf:c2:4b:f3:cf:73:4b:3c:54:e1:7b:6c:
08:0a:8b:71:fe:37:c9:66:be:46:8a:dd:0e:7f:7d:07:e8:0e:
62:28:75:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:39:43 2026 by rpki-client