Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS401783.roa
File: AS401783.roa (raw, json)
Hash identifier: EJT8w4eM5IVNo7P5U9Ri5mo2Yz4Z0a0RiAX4AJeWc4I=
Subject key identifier: AE:0A:7D:18:29:77:30:B5:46:4B:9E:7F:F0:33:EC:C7:F8:A2:C4:A5
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 5BAFF36FEE695C2FDEBD203A01CB36E58E084DCA
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS401783.roa
Signing time: Tue 07 Apr 2026 16:47:11 +0000
ROA not before: Tue 07 Apr 2026 16:42:11 +0000
ROA not after: Tue 06 Apr 2027 16:47:11 +0000
asID: 401783
IP address blocks: 96.62.32.0/24 maxlen: 24
96.62.39.0/24 maxlen: 24
96.62.40.0/24 maxlen: 24
96.62.41.0/24 maxlen: 24
96.62.120.0/24 maxlen: 24
96.62.163.0/24 maxlen: 24
96.62.170.0/24 maxlen: 24
96.62.179.0/24 maxlen: 24
96.62.189.0/24 maxlen: 24
96.62.198.0/24 maxlen: 24
96.62.199.0/24 maxlen: 24
96.62.212.0/24 maxlen: 24
162.141.132.0/24 maxlen: 24
167.148.71.0/24 maxlen: 24
167.148.114.0/24 maxlen: 24
167.148.133.0/24 maxlen: 24
167.148.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:af:f3:6f:ee:69:5c:2f:de:bd:20:3a:01:cb:36:e5:8e:08:4d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 7 16:42:11 2026 GMT
Not After : Apr 6 16:47:11 2027 GMT
Subject: CN=AE0A7D18297730B5464B9E7FF033ECC7F8A2C4A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:56:01:4a:77:6a:75:38:b6:30:bb:91:a4:5a:
73:1f:31:bd:6d:15:d7:6d:3f:fb:7d:01:9b:39:2b:
da:8f:04:89:62:46:9c:99:dc:29:86:ec:c2:d4:5e:
c2:c6:c2:dc:9c:eb:ae:99:68:28:a5:aa:b6:5b:eb:
59:33:29:f3:21:95:c5:99:d2:80:70:3e:7e:68:5a:
b0:04:fa:10:54:20:2f:28:55:48:30:9d:2a:dc:f5:
18:12:e2:42:ae:08:f7:f7:43:21:f1:5f:d1:1a:d3:
27:01:72:23:4e:ac:87:52:ff:14:d1:ab:a3:7c:6e:
fd:c8:01:a5:1b:74:90:9d:04:1d:aa:67:cd:0c:d4:
5b:2a:44:cd:99:b1:35:2c:2b:c5:14:53:d0:e3:d5:
25:76:2a:84:5a:52:40:70:1d:95:0f:cd:2d:3c:f6:
2a:b9:f9:b5:80:ca:b2:b8:c1:d8:36:d0:73:7a:81:
5f:5e:ae:66:27:74:57:ef:38:72:52:f3:0c:1a:f8:
dd:9a:5d:8b:35:7f:d7:d1:30:60:ad:0e:c4:6d:76:
cd:b6:3c:45:60:c7:c7:ed:6a:85:1f:5c:03:d2:c2:
53:e3:b5:79:5a:e4:5c:0d:34:27:26:5a:ce:b5:59:
1d:d2:e1:3b:60:8c:58:46:d5:96:8c:12:55:96:a5:
26:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:0A:7D:18:29:77:30:B5:46:4B:9E:7F:F0:33:EC:C7:F8:A2:C4:A5
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS401783.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.32.0/24
96.62.39.0-96.62.41.255
96.62.120.0/24
96.62.163.0/24
96.62.170.0/24
96.62.179.0/24
96.62.189.0/24
96.62.198.0/23
96.62.212.0/24
162.141.132.0/24
167.148.71.0/24
167.148.114.0/24
167.148.133.0/24
167.148.191.0/24
Signature Algorithm: sha256WithRSAEncryption
93:bf:2d:b9:97:4e:ff:4a:a3:29:11:57:f4:51:63:54:3f:89:
a7:46:ea:18:69:19:61:7b:57:77:da:cd:9c:1c:c0:4c:36:67:
ab:38:ba:51:89:ac:0b:03:31:42:8f:88:f9:c0:00:38:22:d1:
c2:56:b8:4d:25:6a:2e:48:30:cb:33:9e:98:b0:93:97:b6:b2:
e1:e5:60:cb:b8:fd:99:6f:ad:7c:c3:09:51:ed:1a:f8:de:96:
1a:75:0d:3b:2e:d2:6c:7d:6b:eb:85:50:a8:e8:b4:f0:a1:3b:
c1:9e:39:4f:d1:56:45:c3:20:9f:b1:a5:36:0c:c2:71:ef:84:
db:4e:71:d6:6f:55:d8:76:2c:9a:69:1e:6f:65:e3:b9:a1:af:
b4:42:d3:2e:32:5d:1a:e2:5a:89:72:95:31:93:ea:a8:c0:96:
ef:05:a3:46:f0:33:b8:a3:fd:1a:36:0e:9c:1d:9f:a7:49:f7:
cc:33:b4:9a:84:54:3b:86:7e:2b:a4:71:71:e0:c7:3d:1b:69:
2d:2c:46:b6:24:bf:23:00:50:b4:ed:12:ee:ee:e5:a4:5e:4b:
8f:49:77:f9:dd:46:60:bc:fe:8d:13:af:17:49:01:e9:71:70:
db:5d:b5:23:27:0f:5c:c5:fc:8c:ac:78:68:15:c1:05:35:3f:
8b:30:a8:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:53:19 2026 by rpki-client