Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS154383.roa
File: AS154383.roa (raw, json)
Hash identifier: Fi7sbrczzFEtv/ehptdUIqlEp6aEdIHE2wXj89IVPf0=
Subject key identifier: BE:7F:27:8D:75:1D:88:E0:C2:61:69:61:4C:0E:17:6F:BC:D9:57:FF
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 6D53B5616D984CF066CC0A6E239E842C0DA1BFFC
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS154383.roa
Signing time: Wed 10 Jun 2026 14:23:17 +0000
ROA not before: Wed 10 Jun 2026 14:18:17 +0000
ROA not after: Wed 09 Jun 2027 14:23:17 +0000
asID: 154383
IP address blocks: 176.53.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:53:b5:61:6d:98:4c:f0:66:cc:0a:6e:23:9e:84:2c:0d:a1:bf:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Jun 10 14:18:17 2026 GMT
Not After : Jun 9 14:23:17 2027 GMT
Subject: CN=BE7F278D751D88E0C26169614C0E176FBCD957FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:74:ef:0a:53:f4:26:8d:72:6f:12:9f:f5:6c:
97:e9:23:ee:3b:49:bd:bc:29:7e:96:d5:d4:ed:86:
f4:7f:8d:9d:52:46:99:c6:10:d6:34:74:1a:45:d9:
2b:d8:16:0c:95:a0:ba:e3:74:0f:b1:c0:bf:1c:6c:
9a:2b:7e:67:0b:2c:45:a8:c8:dd:87:1f:f4:21:0b:
b3:90:bd:8e:39:e9:08:c8:3e:b8:d1:24:14:a0:80:
c8:77:4a:93:cd:86:d2:68:88:a3:7f:2d:5c:b4:7a:
9c:b8:f2:0e:56:0f:ad:66:d8:d4:26:36:2d:13:cd:
c1:7c:33:fb:92:15:c7:8f:94:87:b6:23:61:4c:c2:
c8:bf:f4:b9:e9:bb:99:30:11:91:9d:71:a2:cd:87:
90:3e:cc:cf:db:65:6b:ec:92:bf:7f:e5:15:36:ad:
0e:c5:d1:81:5e:a0:36:9d:88:f0:c6:5d:4d:69:1b:
4e:09:86:49:77:d4:f0:c5:56:73:26:79:10:c3:45:
ab:23:20:8f:3f:42:d2:e9:fb:a0:23:05:e4:cb:bb:
f3:2a:fe:b1:1e:5d:84:fa:f0:8b:b4:b0:1e:47:ac:
2b:b3:3e:6e:dd:74:af:8c:d8:fb:00:76:f9:c5:16:
16:7e:16:40:5d:0e:ff:62:d1:c3:b7:17:e3:4c:42:
f7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7F:27:8D:75:1D:88:E0:C2:61:69:61:4C:0E:17:6F:BC:D9:57:FF
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS154383.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.159.0/24
Signature Algorithm: sha256WithRSAEncryption
84:ec:68:0f:10:c4:5a:cb:f2:96:f5:8d:bf:ca:0d:df:ff:7c:
fc:6f:23:52:cd:33:97:4e:a8:30:99:d3:29:09:d3:a9:97:ae:
08:b3:95:ce:d6:0f:cd:65:d7:9c:73:72:0a:44:b1:3c:bc:ba:
72:a8:a8:61:60:2f:7c:0b:14:8a:ad:ed:33:b9:8f:8a:df:75:
66:83:41:ca:5e:7f:6b:7c:d2:42:1d:50:8c:72:c6:22:49:4d:
94:7d:57:00:71:9c:3d:6d:70:54:98:db:d5:52:e1:3f:ec:3f:
e5:31:87:44:b3:be:7a:c3:4c:b9:d6:53:fe:54:bb:fd:f0:48:
bc:0b:5d:71:ed:8f:0b:8c:6b:37:ac:21:7a:b2:a4:89:64:d1:
fb:0e:f1:94:96:80:fb:6a:db:fb:5f:ae:3a:bb:7c:81:92:13:
5e:20:1f:21:f1:4b:d1:14:88:f4:2f:97:9b:ff:15:89:c2:f9:
fe:31:0c:53:c5:34:84:24:15:3f:5e:b5:ee:2b:79:6c:8d:6b:
71:d8:f0:50:cf:bd:61:0e:90:d8:7b:23:23:cd:5d:ce:2a:4d:
51:93:9d:f7:2e:9c:50:71:6e:f8:d2:51:1a:ee:85:1f:af:b8:
2d:61:a5:8d:a7:12:8c:b8:69:4a:fb:90:5f:4c:d7:67:00:60:
ba:5b:7a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:38:06 2026 by rpki-client