Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS47447.roa
File: AS47447.roa (raw, json)
Hash identifier: YbGz7QNe3iBR5EZ9O9PucfC8jKP1aGvLLDzspCfmmyA=
Subject key identifier: 9A:23:2C:5B:49:46:B8:34:1C:0B:27:CE:5A:1B:91:A1:77:C4:7B:0F
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 18295C7C8D574E8C33C1EB002DF3ADE887904F29
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS47447.roa
Signing time: Mon 02 Feb 2026 12:55:36 +0000
ROA not before: Mon 02 Feb 2026 12:50:36 +0000
ROA not after: Mon 01 Feb 2027 12:55:36 +0000
asID: 47447
IP address blocks: 148.135.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:29:5c:7c:8d:57:4e:8c:33:c1:eb:00:2d:f3:ad:e8:87:90:4f:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 2 12:50:36 2026 GMT
Not After : Feb 1 12:55:36 2027 GMT
Subject: CN=9A232C5B4946B8341C0B27CE5A1B91A177C47B0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ff:e8:aa:dd:3e:c6:67:6b:24:f6:3f:c0:ec:
48:f5:16:07:a5:fa:89:ab:d6:8c:1a:33:6f:17:23:
ae:3d:be:3f:bd:ca:68:99:e0:78:c2:f1:c4:40:a3:
f4:5c:70:33:d2:dd:c6:f9:0a:1b:f4:54:d1:f4:c1:
88:89:0c:8f:a8:8d:e5:30:0c:69:4a:3e:a3:52:83:
2c:09:3f:fa:2f:2c:b2:24:fb:62:6b:b0:55:07:ff:
2e:f6:40:46:8a:1f:83:b9:f4:71:80:fb:bc:44:66:
63:e0:5e:5b:4d:bd:0b:89:3a:03:ab:b2:cd:ee:b2:
c7:be:89:7a:69:b0:4c:e4:2f:4b:5e:8f:92:cb:ab:
e5:ef:e3:48:30:0b:a5:5b:fa:09:06:8c:c8:24:6b:
8e:f5:cc:4d:cf:53:1e:23:57:73:78:0b:a1:f4:d2:
48:1c:a3:55:ec:a5:e8:8b:4e:af:80:0a:21:34:72:
fa:4d:0c:6e:cd:6b:47:8c:cd:b9:30:8d:72:00:c4:
64:b1:3a:41:e6:01:01:9f:d2:3d:81:46:97:f4:1e:
33:a6:d1:8b:8c:45:bf:a1:23:57:f7:7a:5c:98:9d:
01:c3:13:38:cd:ee:8c:92:c1:e3:26:ff:1e:78:8d:
80:08:78:f6:42:ec:5c:42:40:14:f8:03:77:82:c2:
a3:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:23:2C:5B:49:46:B8:34:1C:0B:27:CE:5A:1B:91:A1:77:C4:7B:0F
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS47447.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.135.182.0/24
Signature Algorithm: sha256WithRSAEncryption
30:66:f2:86:c1:a5:62:c7:a8:26:1a:ca:83:12:27:42:00:75:
84:57:04:b1:41:b4:79:1e:5b:d4:37:38:e8:5c:1d:1a:16:06:
8a:e8:0a:8c:6b:84:c2:7a:4d:34:b5:fa:c7:57:32:36:d0:38:
ce:84:a4:8f:fe:99:14:26:51:15:95:fd:3b:69:f2:c3:73:97:
d1:db:01:80:46:56:55:0c:b5:15:ae:95:0d:12:de:80:8f:dc:
06:47:27:79:bb:18:06:21:06:38:d3:c7:e5:d1:58:2d:88:05:
75:56:7b:74:4c:25:46:16:da:ce:d2:58:97:1d:57:fc:b8:3b:
7b:0c:29:35:f4:13:7f:89:07:75:37:5c:42:91:08:5d:84:f2:
03:61:08:75:e3:e0:f8:47:8b:98:f3:b7:9f:60:66:25:03:71:
ce:4a:3e:bd:1e:d1:b9:21:ca:e8:60:e2:4c:76:20:b8:6f:0d:
08:1b:90:fb:51:69:63:c0:ec:ce:a2:3a:75:35:a5:d1:c8:59:
64:1d:e0:24:15:59:09:1d:af:0d:d5:9d:03:48:54:80:93:4d:
16:54:8b:2c:c4:cf:f8:b6:77:d4:ed:51:4d:0c:de:0c:eb:21:
6e:51:2a:7c:9c:d7:85:3d:f3:b4:80:7a:da:c9:af:26:8a:81:
92:15:36:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:33:00 2026 by rpki-client