Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215152.roa
File: AS215152.roa (raw, json)
Hash identifier: +yk/9phoPBVM0WVVp+bgIevPXL+2O8geaehsOi2/Wwg=
Subject key identifier: 44:99:2D:22:A7:D9:00:70:48:C1:87:A0:D5:36:8E:D5:BA:11:85:BF
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 50C71F1C53B5434A49FADD762D3A1F934DCE94B5
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215152.roa
Signing time: Tue 09 Jun 2026 18:36:01 +0000
ROA not before: Tue 09 Jun 2026 18:31:01 +0000
ROA not after: Tue 08 Jun 2027 18:36:01 +0000
asID: 215152
IP address blocks: 143.14.130.0/24 maxlen: 24
150.241.254.0/24 maxlen: 24
155.117.126.0/24 maxlen: 24
155.117.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 19:43:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:c7:1f:1c:53:b5:43:4a:49:fa:dd:76:2d:3a:1f:93:4d:ce:94:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jun 9 18:31:01 2026 GMT
Not After : Jun 8 18:36:01 2027 GMT
Subject: CN=44992D22A7D9007048C187A0D5368ED5BA1185BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f5:f8:5f:03:af:b1:f4:98:bc:c9:2b:45:12:
14:01:0c:ad:54:c8:9d:ba:1c:a0:ad:6b:8d:28:cc:
47:0c:a5:1a:ac:3a:74:21:de:1f:0d:ca:e9:67:a1:
bb:13:bc:3e:e6:68:48:64:4b:3a:9e:80:18:5f:96:
e2:b5:fd:98:74:c4:96:9d:2a:c0:12:a2:f7:d6:ca:
9a:79:e6:d7:25:a1:3c:5f:ca:47:d4:e8:c7:c9:f9:
6a:ac:ba:aa:75:ba:5c:ed:44:ab:90:ab:49:af:6a:
67:9f:00:06:7d:ed:df:e7:2c:da:6d:05:79:7b:c7:
bd:44:52:7d:18:d1:32:18:12:26:3b:c1:a5:9a:e9:
07:8d:b2:fb:44:01:70:15:b1:61:6a:48:40:14:b3:
fc:35:9c:1b:f9:4c:01:9d:93:ab:a4:2e:ca:53:fc:
66:43:dd:df:ae:8e:b5:83:9f:80:ac:83:23:46:c1:
d2:f8:7a:fd:20:e5:b1:02:b1:25:15:bf:11:bb:4b:
7b:7b:d6:0d:64:7e:6c:e0:89:06:8f:26:ec:4f:97:
cc:57:a7:96:09:a8:28:89:d9:99:0c:e5:2d:37:09:
9e:3b:7e:1d:16:5c:4a:a5:65:f2:66:42:2a:76:ce:
4e:37:f4:37:14:f6:a5:ff:eb:a3:f8:80:28:7a:91:
b4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:99:2D:22:A7:D9:00:70:48:C1:87:A0:D5:36:8E:D5:BA:11:85:BF
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215152.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.14.130.0/24
150.241.254.0/24
155.117.126.0/24
155.117.190.0/24
Signature Algorithm: sha256WithRSAEncryption
09:24:0a:95:2e:42:1b:7b:f0:37:da:68:c7:49:97:0d:0c:fb:
45:c0:0c:36:02:ad:aa:5d:43:74:01:3e:6e:b2:c7:23:27:5d:
6b:3b:28:3d:7e:ca:86:04:f7:7e:d5:ec:b0:d8:fa:e0:67:07:
2a:62:71:97:dc:d0:10:ac:1e:f4:72:a0:0c:99:2f:2b:ad:1e:
be:5b:91:55:7b:3a:db:14:63:a0:70:25:88:07:d2:35:90:b2:
cd:f3:ac:21:8a:96:4f:82:a3:79:96:60:cd:1e:ef:2d:fc:b4:
59:84:28:f2:ac:6f:b2:3d:9e:c5:4e:87:ef:f9:b5:c3:f0:7f:
35:f8:7f:78:a6:6f:6f:f3:73:17:1d:09:8a:99:51:ec:66:98:
f8:d4:bc:b1:05:c8:a9:fd:3f:79:a4:ad:e4:b6:55:03:b5:81:
cd:6d:b6:79:57:0e:d6:66:6f:53:8a:00:7c:36:65:99:41:65:
30:cf:6e:69:29:32:3b:b2:ba:6d:82:7e:93:bf:44:a5:7a:4a:
66:e9:1f:c4:cf:02:31:58:4d:ef:ce:d3:9d:4b:8e:34:b4:45:
0b:ce:6d:cc:1f:77:62:7b:64:b6:e2:d1:05:2f:b5:cd:8b:38:
73:84:b5:6e:1c:26:52:9c:ff:f6:9c:a7:48:c7:b0:05:ff:36:
b0:d7:af:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:00:28 2026 by rpki-client