Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS26769.roa
File: AS26769.roa (raw, json)
Hash identifier: vrOcSqwIfwkHlMHg1MM+zvPSRRTDSiKFadrdsOBxJa0=
Subject key identifier: 06:61:48:0B:F6:DD:30:79:36:F5:F8:9E:6C:17:35:1A:0C:5E:D7:61
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 1B22F324E7719820B757E2B8151983FBD5EC4BFE
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS26769.roa
Signing time: Fri 03 Apr 2026 05:37:43 +0000
ROA not before: Fri 03 Apr 2026 05:32:43 +0000
ROA not after: Fri 02 Apr 2027 05:37:43 +0000
asID: 26769
IP address blocks: 140.150.225.0/24 maxlen: 24
143.14.51.0/24 maxlen: 24
155.117.51.0/24 maxlen: 24
162.141.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:22:f3:24:e7:71:98:20:b7:57:e2:b8:15:19:83:fb:d5:ec:4b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 3 05:32:43 2026 GMT
Not After : Apr 2 05:37:43 2027 GMT
Subject: CN=0661480BF6DD307936F5F89E6C17351A0C5ED761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3e:04:ff:c1:6e:03:bc:fb:81:ae:42:7e:31:
cf:4b:af:a6:60:73:95:06:42:d1:65:9f:fb:1f:c2:
eb:2a:18:06:bc:c2:58:0f:7b:50:2c:81:db:61:42:
03:96:3e:89:66:a4:e8:d1:37:f1:1d:6d:30:70:a8:
18:de:97:d3:be:bf:2b:ed:30:31:59:2c:d9:17:59:
e1:1d:0b:43:a3:35:e4:bc:eb:6f:b1:d2:27:66:f2:
a5:b1:fc:ac:ac:fb:b8:db:59:43:75:c8:a5:90:0a:
df:59:12:3d:d7:ca:f8:43:5d:96:86:37:a2:f1:68:
da:85:7d:fa:85:a0:7f:92:80:6c:ad:5f:4f:49:d5:
03:5f:69:1c:5c:79:24:b8:0b:b6:fe:e2:18:c8:ed:
b0:53:27:0c:80:b1:8b:10:2e:44:36:c3:d8:1e:d4:
c1:8e:ff:b8:f9:19:4c:ec:c2:0a:77:93:59:a3:7c:
a4:02:8e:3a:1a:9e:f6:4a:d6:87:ea:f9:bb:3f:49:
54:10:9a:2e:d4:f3:2a:88:48:5b:20:58:37:4b:d3:
be:80:7c:42:a4:08:a5:09:fd:b4:0f:ef:83:c9:2b:
8c:ba:20:71:a9:9a:75:0c:86:ed:5a:f7:6b:88:b6:
e7:d4:a4:56:0d:7a:42:67:1b:d9:06:a3:a9:61:06:
15:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:61:48:0B:F6:DD:30:79:36:F5:F8:9E:6C:17:35:1A:0C:5E:D7:61
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS26769.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.225.0/24
143.14.51.0/24
155.117.51.0/24
162.141.50.0/24
Signature Algorithm: sha256WithRSAEncryption
40:6b:aa:97:5e:a8:7d:09:46:6e:ad:b9:59:0c:e7:84:ff:14:
49:0d:d2:9c:4f:63:4d:df:4c:ae:9d:9f:f4:4b:cb:cd:1c:e0:
bd:62:03:43:ca:39:5c:6c:3f:2f:9c:70:0c:50:67:ee:a8:82:
f6:dd:8f:68:e2:8e:dd:3d:05:2e:57:c7:e2:88:13:47:4d:bc:
54:95:b5:9c:69:38:6a:e4:ac:96:a6:d1:1d:fd:e9:84:09:57:
71:68:1d:9e:c7:67:de:d0:64:ac:2b:2b:b5:eb:95:2e:02:57:
ae:6e:a2:23:48:29:0f:51:05:18:c3:00:16:40:3a:e7:db:7c:
94:f1:ad:74:4f:34:76:f6:2e:18:a5:4e:34:65:64:0f:5b:22:
68:5c:61:1b:59:5a:99:3a:4a:e8:9a:4a:5c:90:73:e8:fc:a2:
00:1b:2a:84:58:76:23:e1:45:79:df:b3:50:ec:d5:fe:73:0a:
8c:3f:64:67:19:7d:21:bc:59:a1:df:d3:19:06:48:24:77:7b:
e1:36:c3:ea:e4:19:fe:77:45:94:f9:eb:10:09:40:0a:a8:d8:
97:3c:c5:ab:b1:8a:97:97:00:b0:d0:d4:9c:af:00:93:f7:06:
cf:a4:06:03:51:59:d1:65:20:0d:68:fd:7f:66:b5:66:6e:d0:
1d:46:c1:24
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUGyLzJOdxmCC3V+K4FRmD+9XsS/4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNjA0MDMwNTMyNDNaFw0yNzA0MDIwNTM3NDNaMDMxMTAvBgNV
BAMTKDA2NjE0ODBCRjZERDMwNzkzNkY1Rjg5RTZDMTczNTFBMEM1RUQ3NjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdPgT/wW4DvPuBrkJ+Mc9Lr6Zg
c5UGQtFln/sfwusqGAa8wlgPe1AsgdthQgOWPolmpOjRN/EdbTBwqBjel9O+vyvt
MDFZLNkXWeEdC0OjNeS862+x0idm8qWx/Kys+7jbWUN1yKWQCt9ZEj3XyvhDXZaG
N6LxaNqFffqFoH+SgGytX09J1QNfaRxceSS4C7b+4hjI7bBTJwyAsYsQLkQ2w9ge
1MGO/7j5GUzswgp3k1mjfKQCjjoanvZK1ofq+bs/SVQQmi7U8yqISFsgWDdL076A
fEKkCKUJ/bQP74PJK4y6IHGpmnUMhu1a92uItufUpFYNekJnG9kGo6lhBhWRAgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQUBmFIC/bdMHk29fiebBc1Ggxe12EwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjY3Njkucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBACMluED
BACPDjMDBACbdTMDBACijTIwDQYJKoZIhvcNAQELBQADggEBAEBrqpdeqH0JRm6t
uVkM54T/FEkN0pxPY03fTK6dn/RLy80c4L1iA0PKOVxsPy+ccAxQZ+6ogvbdj2ji
jt09BS5Xx+KIE0dNvFSVtZxpOGrkrJam0R396YQJV3FoHZ7HZ97QZKwrK7XrlS4C
V65uoiNIKQ9RBRjDABZAOufbfJTxrXRPNHb2LhilTjRlZA9bImhcYRtZWpk6Suia
SlyQc+j8ogAbKoRYdiPhRXnfs1Ds1f5zCow/ZGcZfSG8WaHf0xkGSCR3e+E2w+rk
Gf53RZT56xAJQAqo2Jc8xauxipeXALDQ1JyvAJP3Bs+kBgNRWdFlIA1o/X9mtWZu
0B1GwSQ=
-----END CERTIFICATE-----
Generated at Fri Apr 17 15:10:56 2026 by rpki-client