Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS54004.roa
File: AS54004.roa (raw, json)
Hash identifier: zyy9oxCkRLWLRJbM1ISXn7dyMCGwzC/KGrqaIH8/fbA=
Subject key identifier: AD:5C:D3:E0:3B:08:9E:B1:39:EB:1D:87:9F:C5:AF:5E:B7:5E:5E:D1
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 05C61A341BAD338C3706775F1431B609FEE70860
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS54004.roa
Signing time: Sat 07 Feb 2026 11:55:37 +0000
ROA not before: Sat 07 Feb 2026 11:50:37 +0000
ROA not after: Sat 06 Feb 2027 11:55:37 +0000
asID: 54004
IP address blocks: 147.79.32.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:c6:1a:34:1b:ad:33:8c:37:06:77:5f:14:31:b6:09:fe:e7:08:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 7 11:50:37 2026 GMT
Not After : Feb 6 11:55:37 2027 GMT
Subject: CN=AD5CD3E03B089EB139EB1D879FC5AF5EB75E5ED1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d6:7a:e1:c1:14:20:60:e3:cc:82:51:5b:db:
66:bd:42:ce:dc:a2:17:00:cc:41:62:02:bf:22:63:
b6:80:9d:d3:b3:b7:4a:00:6b:87:b4:ae:67:32:44:
75:45:34:a0:f2:79:ed:89:22:db:2e:2c:12:4f:0d:
b2:7e:f1:80:ed:a2:4c:d7:f5:eb:42:a9:bb:81:b7:
38:20:79:48:de:1c:8b:95:62:9d:20:fc:f1:64:c7:
4a:8e:a5:21:0a:0c:c1:b2:bc:d4:29:1d:85:94:43:
75:6c:5a:b7:0c:25:e7:38:1b:80:8c:c1:03:86:ae:
c0:56:c1:ef:8a:ad:c8:9d:0b:30:e4:ab:1f:9e:d7:
8b:be:dc:54:b0:8a:da:e6:00:1d:4b:fe:d1:21:70:
b9:2c:28:07:7c:ba:93:14:9d:30:49:e7:b4:86:58:
74:8f:fe:3d:11:63:9d:49:cd:23:10:48:26:ca:2e:
b8:79:54:d2:19:5b:27:1e:b2:02:b9:91:63:af:fa:
2b:61:4c:29:b1:c8:42:3d:cf:23:26:de:58:d6:ce:
e9:4b:d5:7c:66:f0:24:ce:4b:07:66:2a:f6:54:6e:
a5:a0:d0:f2:d8:6b:6d:3c:88:0a:8a:6e:9a:99:f3:
f9:e8:13:b4:4b:0a:f9:51:96:5b:f0:a2:cc:c7:15:
c7:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:5C:D3:E0:3B:08:9E:B1:39:EB:1D:87:9F:C5:AF:5E:B7:5E:5E:D1
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS54004.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.32.0/20
Signature Algorithm: sha256WithRSAEncryption
b3:ae:15:7c:1d:3d:87:12:47:f6:f7:74:2c:8e:8c:51:d1:41:
5a:de:0c:99:ed:fe:bb:7a:f0:63:fa:e7:e3:56:bd:9b:ec:2b:
91:ed:03:bb:1f:20:5f:04:9c:0a:75:d8:42:00:87:c0:01:7d:
18:b7:18:1b:3f:04:32:c5:4a:02:52:c4:48:30:4b:b0:a2:e1:
a1:29:4f:3f:1c:68:a2:64:32:72:5e:dc:02:20:76:25:90:54:
19:cf:2f:b7:af:38:7f:c5:fd:f4:d1:86:fa:29:34:0d:a9:18:
35:21:09:7f:ed:11:44:7d:ba:67:7c:f2:15:d1:56:31:48:29:
41:ee:02:bd:70:7c:9e:a5:e3:16:9d:06:cf:f9:78:7e:be:20:
84:19:0c:e3:fa:56:43:7b:73:ed:98:53:2d:c1:9a:09:d3:40:
62:16:ac:0f:28:05:95:91:96:48:0d:a4:b8:73:d2:be:8b:d6:
df:96:75:9e:e6:ad:41:19:bd:26:1d:84:57:0a:c9:4c:6e:74:
dd:13:d2:73:4f:ef:6c:13:46:13:12:3b:92:08:d0:98:7f:3a:
a6:a5:20:00:70:89:04:ae:b4:f1:8c:c7:8a:71:16:5e:d0:db:
6d:ca:72:aa:4f:79:0a:b1:74:d9:bd:57:62:f4:e4:30:c4:7c:
0a:84:35:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:03:58 2026 by rpki-client