Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS197761.roa
File: AS197761.roa (raw, json)
Hash identifier: lasQx2qoZTJYqMs2EhK/4MK/yr2ISL2eleWyHZ9h/qM=
Subject key identifier: F3:5B:09:99:41:B9:8C:E9:A5:0E:6F:AF:E6:C3:1A:55:A3:F9:8A:D3
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 23C59B6AA5254FE4A93188AEF310C163AE818943
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS197761.roa
Signing time: Thu 11 Jun 2026 21:27:01 +0000
ROA not before: Thu 11 Jun 2026 21:22:01 +0000
ROA not after: Thu 10 Jun 2027 21:27:01 +0000
asID: 197761
IP address blocks: 83.171.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 19:27:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:c5:9b:6a:a5:25:4f:e4:a9:31:88:ae:f3:10:c1:63:ae:81:89:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Jun 11 21:22:01 2026 GMT
Not After : Jun 10 21:27:01 2027 GMT
Subject: CN=F35B099941B98CE9A50E6FAFE6C31A55A3F98AD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c5:ff:53:a1:90:0e:5f:d7:f6:8e:8d:cb:bc:
55:11:48:2a:43:07:47:1a:47:b9:03:32:f0:c1:a4:
81:57:32:5a:c3:b3:4c:f2:8f:53:50:e8:1a:6f:99:
c8:8a:84:ba:5d:d5:6d:a0:b0:53:52:09:d3:b9:06:
6c:4b:fa:87:4c:f9:02:dd:50:5d:23:66:0e:4f:cd:
4e:43:1d:f0:98:93:05:ac:0c:bf:8e:29:db:35:f3:
fa:97:e4:31:59:ff:82:6b:33:5b:a6:93:e0:aa:78:
94:3c:6d:c9:5b:5f:b1:50:ba:dd:3a:48:79:32:00:
3e:73:88:eb:11:50:fe:d2:97:73:ff:87:72:3a:97:
7d:87:fc:e2:ed:6d:e7:ce:13:f2:21:74:91:39:0b:
34:03:d6:0e:56:be:5c:3d:f1:f8:46:48:03:17:4a:
b9:41:a1:dd:e1:54:af:b6:bf:61:43:78:15:f0:a8:
da:cc:3d:05:71:7c:2e:b1:45:4e:12:5c:da:cb:19:
c4:4c:b7:77:fc:b9:33:d1:3e:6b:32:a2:98:ac:7c:
21:48:7b:38:e7:da:6f:04:0e:66:03:fe:31:f8:73:
d2:33:ef:f1:f6:3a:fe:6a:55:0c:39:2d:99:fa:57:
7a:2e:7d:fa:7d:22:09:b1:21:f1:44:fb:86:35:7e:
8c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:5B:09:99:41:B9:8C:E9:A5:0E:6F:AF:E6:C3:1A:55:A3:F9:8A:D3
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS197761.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.244.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:60:f2:e1:a9:e5:2d:ef:30:db:4f:58:b1:16:4d:02:a3:78:
08:dc:44:75:3f:75:b7:a0:d8:49:a7:de:c7:a1:c9:46:b2:8b:
ad:7c:1d:d4:dc:0a:0a:14:6e:a9:38:fc:ef:5e:b4:12:a0:82:
d0:fc:3f:86:02:c6:b6:a3:23:a1:27:f4:3f:6a:01:be:89:34:
b6:38:39:7d:22:f0:b3:60:6f:50:e3:ef:9b:23:11:5d:b5:98:
65:f1:c3:cb:63:4a:55:8a:2f:b3:63:e8:09:81:4c:bd:68:fa:
da:42:6c:d0:93:48:e6:16:17:3a:75:4e:c1:42:b4:3b:7d:09:
1a:ef:43:6e:04:81:dd:79:b9:37:57:6d:e1:cb:1b:c5:c7:15:
cb:e1:f2:74:a5:f9:e1:23:b2:41:74:a1:26:86:14:02:53:7b:
1e:29:b0:eb:e9:a5:d5:9c:eb:5a:e7:bb:b9:b4:a0:94:26:1e:
e3:9d:60:02:3b:bc:07:af:04:56:d6:2a:7c:77:d9:20:0a:8b:
f1:95:5f:d4:dd:d2:6d:8d:ee:0d:68:06:29:62:49:b3:42:a0:
54:84:6e:bc:b7:75:2d:7b:26:bb:1f:56:35:3a:e9:1d:21:57:
7f:ed:b2:86:1a:aa:3a:b1:e1:b7:d0:4c:1f:36:59:3c:53:dc:
d9:e0:88:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 08:50:50 2026 by rpki-client