Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS4766.roa
File: AS4766.roa (raw, json)
Hash identifier: RKGkjxK3KT3DQlhWPvsyRrUUxZCkiVdTYsBbEmI2sWk=
Subject key identifier: 47:78:FA:79:8A:4F:5A:0A:E1:A4:87:C3:CF:DB:91:B2:DF:71:52:61
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 6BCD9EAB5D169EDC9D407A6420B933F3CAE7DCFF
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS4766.roa
Signing time: Wed 08 Apr 2026 00:07:17 +0000
ROA not before: Wed 08 Apr 2026 00:02:17 +0000
ROA not after: Wed 07 Apr 2027 00:07:17 +0000
asID: 4766
IP address blocks: 168.222.6.0/24 maxlen: 24
168.222.11.0/24 maxlen: 24
168.222.63.0/24 maxlen: 24
168.222.123.0/24 maxlen: 24
168.222.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:cd:9e:ab:5d:16:9e:dc:9d:40:7a:64:20:b9:33:f3:ca:e7:dc:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 8 00:02:17 2026 GMT
Not After : Apr 7 00:07:17 2027 GMT
Subject: CN=4778FA798A4F5A0AE1A487C3CFDB91B2DF715261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c8:8e:eb:af:f0:78:53:7f:44:d3:61:ae:9f:
24:68:75:e8:cf:4f:8e:80:8a:19:97:2a:71:20:fe:
1b:e7:04:7f:b4:53:a8:fe:cf:25:16:b4:9c:e0:84:
32:8d:bf:a4:6d:34:a2:5a:d8:32:a5:cd:6f:82:41:
11:af:04:e6:a8:6a:cb:d2:4b:32:66:0a:75:08:66:
57:f6:e8:7a:f2:9a:54:50:a0:47:79:a9:02:0a:e2:
c8:78:58:94:f4:45:2b:86:5e:1f:9a:5c:3e:d6:ec:
84:28:3b:2d:c7:f9:83:c6:31:bb:19:25:dc:c9:6e:
67:f9:b2:65:0b:a8:f2:81:d6:17:82:eb:b1:59:25:
c9:5f:d3:a0:40:7b:c8:98:b5:7d:48:ed:fe:4e:ef:
74:f0:a0:ce:cf:25:a1:ac:7c:95:86:ba:c6:7b:ff:
ba:86:fd:7c:44:20:6f:c1:5b:04:8e:7e:aa:7a:95:
85:69:c0:70:47:ff:13:49:07:cb:22:d0:57:84:83:
19:27:2a:d3:ed:dd:1f:5f:da:a4:9c:16:5c:9a:66:
3d:3e:ca:34:84:f4:7c:aa:e1:ad:42:1b:48:66:3a:
c0:f0:4b:97:7b:dc:4a:d7:f8:e4:5e:7b:b7:27:63:
5d:8c:2b:0b:d2:aa:95:b7:65:93:16:46:5a:40:6e:
fd:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:78:FA:79:8A:4F:5A:0A:E1:A4:87:C3:CF:DB:91:B2:DF:71:52:61
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS4766.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.222.6.0/24
168.222.11.0/24
168.222.63.0/24
168.222.123.0-168.222.124.255
Signature Algorithm: sha256WithRSAEncryption
2c:fa:0f:08:83:5f:a0:fa:4c:18:8e:cb:a0:21:c2:06:2e:bc:
41:66:3d:c7:84:b6:61:b5:4d:a5:28:e9:b3:75:94:d1:0e:88:
46:11:7a:4f:6a:03:e7:30:a0:91:8b:79:05:a9:7f:f7:30:f6:
08:a2:ec:5a:3a:9d:ab:de:0b:95:65:8e:9a:74:6c:bf:9d:57:
2f:48:c5:0b:40:63:68:41:44:c1:7f:44:8c:53:33:dc:64:db:
b2:87:70:79:71:37:f1:51:d7:b6:e3:19:a6:a0:88:99:37:4c:
5f:2d:a7:9b:dc:fd:d1:84:6f:b4:dd:fd:a1:55:14:24:c4:30:
bc:c2:12:68:49:07:ef:ea:c9:18:ed:9f:7d:79:56:0d:3e:e7:
e8:fc:14:b9:f8:f6:ee:c7:ea:9d:79:e8:55:a4:d8:e0:bd:51:
2f:2d:67:0b:a5:47:5f:0c:1b:de:4f:28:f3:fe:02:0a:2d:50:
6a:84:27:5d:9f:01:8a:c1:79:e1:75:32:76:58:6d:d9:9f:a6:
80:1a:5a:a4:b7:73:fa:46:92:41:58:07:84:5c:a5:86:3b:09:
95:e7:b8:64:03:6c:c5:16:5e:c3:93:7e:db:6c:8b:90:d1:99:
e5:b8:c4:0c:49:88:ee:90:14:32:35:6d:dc:66:59:13:22:0f:
c4:08:8a:17
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgIUa82eq10WntydQHpkILkz88rn3P8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNjA0MDgwMDAyMTdaFw0yNzA0MDcwMDA3MTdaMDMxMTAvBgNV
BAMTKDQ3NzhGQTc5OEE0RjVBMEFFMUE0ODdDM0NGREI5MUIyREY3MTUyNjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCyI7rr/B4U39E02GunyRodejP
T46AihmXKnEg/hvnBH+0U6j+zyUWtJzghDKNv6RtNKJa2DKlzW+CQRGvBOaoasvS
SzJmCnUIZlf26HrymlRQoEd5qQIK4sh4WJT0RSuGXh+aXD7W7IQoOy3H+YPGMbsZ
JdzJbmf5smULqPKB1heC67FZJclf06BAe8iYtX1I7f5O73TwoM7PJaGsfJWGusZ7
/7qG/XxEIG/BWwSOfqp6lYVpwHBH/xNJB8si0FeEgxknKtPt3R9f2qScFlyaZj0+
yjSE9Hyq4a1CG0hmOsDwS5d73ErX+ORee7cnY12MKwvSqpW3ZZMWRlpAbv2JAgMB
AAGjggIiMIICHjAdBgNVHQ4EFgQUR3j6eYpPWgrhpIfDz9uRst9xUmEwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNDc2Ni5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjA5BggrBgEFBQcBBwEB/wQqMCgwJgQCAAEwIAMEAKjeBgME
AKjeCwMEAKjePzAMAwQAqN57AwQAqN58MA0GCSqGSIb3DQEBCwUAA4IBAQAs+g8I
g1+g+kwYjsugIcIGLrxBZj3HhLZhtU2lKOmzdZTRDohGEXpPagPnMKCRi3kFqX/3
MPYIouxaOp2r3guVZY6adGy/nVcvSMULQGNoQUTBf0SMUzPcZNuyh3B5cTfxUde2
4xmmoIiZN0xfLaeb3P3RhG+03f2hVRQkxDC8whJoSQfv6skY7Z99eVYNPufo/BS5
+Pbux+qdeehVpNjgvVEvLWcLpUdfDBveTyjz/gIKLVBqhCddnwGKwXnhdTJ2WG3Z
n6aAGlqkt3P6RpJBWAeEXKWGOwmV57hkA2zFFl7Dk37bbIuQ0ZnluMQMSYjukBQy
NW3cZlkTIg/ECIoX
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:14:05 2026 by rpki-client