Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: YXvQZUpd0MCtCtizJ+3lbScBxcfy9qvyw51V1I1GGsc=
Subject key identifier: C6:6E:76:69:96:71:13:84:08:F0:55:37:23:4F:4E:64:47:87:95:B5
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 58941F6ED0CFED2321427EDAD3BE9F48F919C63C
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS174.roa
Signing time: Mon 18 May 2026 11:19:33 +0000
ROA not before: Mon 18 May 2026 11:14:33 +0000
ROA not after: Mon 17 May 2027 11:19:33 +0000
asID: 174
IP address blocks: 77.241.72.0/24 maxlen: 24
77.241.73.0/24 maxlen: 24
77.241.74.0/24 maxlen: 24
77.241.75.0/24 maxlen: 24
193.38.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:94:1f:6e:d0:cf:ed:23:21:42:7e:da:d3:be:9f:48:f9:19:c6:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: May 18 11:14:33 2026 GMT
Not After : May 17 11:19:33 2027 GMT
Subject: CN=C66E76699671138408F05537234F4E64478795B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:eb:32:ae:40:31:45:89:d0:a0:ac:4f:a8:7a:
3c:04:6d:fa:69:1a:c7:b9:c3:b5:3b:67:f8:d4:09:
6d:24:c9:47:95:b4:df:f9:15:3a:01:3e:1b:6f:6c:
a6:68:be:76:34:e3:40:9d:9d:da:08:a0:70:e7:fc:
66:7f:75:f5:51:f4:5b:b9:cc:4b:0d:3f:36:31:ca:
66:c6:24:01:a9:7c:49:70:5f:df:cc:96:fb:97:fa:
f5:8b:9d:5a:9d:5a:39:33:1e:29:f1:8e:c0:7c:c8:
4f:a3:76:b9:37:5f:07:80:4c:24:66:dd:a9:4a:18:
d7:1e:f5:12:9b:10:46:24:22:0c:75:43:60:39:5a:
01:04:c5:d5:8e:c7:b5:c0:a5:6e:09:28:d7:e0:04:
bd:cc:64:77:dc:62:22:62:b1:3b:4a:b4:f1:da:98:
22:90:30:57:28:f6:e2:41:da:9f:c9:10:9b:73:7e:
66:b0:a2:47:d7:59:14:7d:71:7c:93:d2:95:03:c9:
05:21:be:03:76:27:3c:65:e2:3d:cb:bb:a0:07:e8:
30:c3:02:d1:cc:18:5f:f2:7c:1b:9c:b6:05:46:08:
f8:3e:a9:68:84:1d:1e:86:56:8e:ab:04:3e:95:bf:
51:bc:a2:7a:93:9d:bb:77:47:5b:7a:50:34:a5:48:
c7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:6E:76:69:96:71:13:84:08:F0:55:37:23:4F:4E:64:47:87:95:B5
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.72.0/22
193.38.45.0/24
Signature Algorithm: sha256WithRSAEncryption
58:b4:f0:77:d4:a0:08:93:43:50:e0:91:e9:4d:4d:00:2c:f0:
4d:95:5d:9d:72:87:49:8f:c5:d3:27:58:86:b1:dc:9f:ec:3a:
61:ec:7f:ea:dc:ba:cd:c9:62:9c:90:14:8d:5f:24:25:6e:fe:
4e:94:f8:60:d7:39:14:62:d8:8b:e6:6a:98:49:39:f6:97:51:
94:5f:96:95:cb:d5:4b:54:26:2a:26:89:12:72:fc:d0:c8:89:
c0:af:83:dd:ef:8e:87:c0:16:ee:6c:33:2b:12:f3:de:b8:18:
d5:97:b6:d8:56:90:91:4b:ac:f2:da:5e:d0:0a:0a:40:5f:d4:
b1:20:8b:f5:3f:98:ca:29:39:a4:88:67:51:f8:e6:1e:59:08:
8e:9d:7d:66:5e:43:40:11:33:52:df:d8:2b:35:c2:17:de:41:
33:cc:e8:39:46:dc:2d:18:1f:ff:30:1d:54:5e:82:be:d1:3a:
a9:bb:e7:72:63:de:12:d7:73:10:80:60:f2:98:f6:91:b7:15:
96:7c:97:86:7a:b5:d2:1a:84:7a:b1:65:c4:d9:cc:0a:6f:b2:
8b:bf:ad:ed:85:cd:96:ba:23:d8:a3:08:b3:8f:d5:ff:c8:6a:
f1:c1:bf:7c:62:2a:f6:0d:7c:b1:4b:e1:a3:66:16:aa:a4:9d:
05:2d:3b:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:43:08 2026 by rpki-client