Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS5511.roa
File: AS5511.roa (raw, json)
Hash identifier: pF3mFiDGhiSxfSjnN5FIlkZNyyjtdgYm5S1NhRARyTw=
Subject key identifier: 54:73:16:72:A7:BE:14:40:3A:89:D9:55:8D:B9:5D:57:28:61:0C:CC
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 6A78BD56BE8BA3AF8541E0F59F42FE1EB28BA400
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS5511.roa
Signing time: Fri 05 Jun 2026 17:47:29 +0000
ROA not before: Fri 05 Jun 2026 17:42:29 +0000
ROA not after: Fri 04 Jun 2027 17:47:29 +0000
asID: 5511
IP address blocks: 45.154.104.0/24 maxlen: 24
193.29.97.0/24 maxlen: 24
193.151.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 17:54:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:78:bd:56:be:8b:a3:af:85:41:e0:f5:9f:42:fe:1e:b2:8b:a4:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jun 5 17:42:29 2026 GMT
Not After : Jun 4 17:47:29 2027 GMT
Subject: CN=54731672A7BE14403A89D9558DB95D5728610CCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:cd:07:57:8c:f6:0a:b3:38:0c:02:fd:5f:96:
e8:75:26:87:6c:cf:6e:3a:68:f6:9f:29:36:0f:05:
67:5c:c3:28:67:e1:3f:83:5c:5e:cb:da:3a:ac:bb:
12:10:c0:d1:72:17:29:f8:9e:0b:7d:60:6e:82:8a:
9c:33:4e:12:23:61:7c:fd:87:19:a2:ae:a8:28:72:
15:ce:47:2d:25:df:50:50:58:5d:a6:48:ad:2c:c4:
d3:16:07:1e:7f:7d:db:21:46:48:9f:22:3a:88:4e:
5e:88:06:dd:1e:7c:ec:fd:0c:c8:99:e0:05:c4:69:
03:20:95:b2:e8:71:f0:cd:a8:04:df:1d:f7:64:56:
c7:07:e7:21:c4:01:89:32:41:6a:03:3f:55:f8:ca:
a5:f4:2a:5c:b1:25:b2:c2:ca:fd:aa:8b:5a:ba:eb:
14:ed:96:e5:f3:51:de:c5:8d:84:86:aa:bc:88:04:
0c:35:5f:5e:83:cd:99:9f:d5:09:5c:82:6a:68:6f:
d0:b6:ff:67:c3:18:fd:6a:fb:c0:68:c1:66:b1:b9:
c2:74:cd:53:87:15:08:6d:e8:d7:1b:94:3b:88:06:
8e:2e:72:3d:75:60:55:8c:7e:d4:14:00:27:a2:2f:
e8:1b:09:da:15:d7:57:67:4d:64:1d:61:ea:4b:f9:
93:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:73:16:72:A7:BE:14:40:3A:89:D9:55:8D:B9:5D:57:28:61:0C:CC
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS5511.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.104.0/24
193.29.97.0/24
193.151.183.0/24
Signature Algorithm: sha256WithRSAEncryption
06:53:a2:28:45:27:1a:55:ac:3e:1c:5e:a0:c7:24:21:86:c9:
2c:e6:f9:e0:c3:b8:7c:b5:de:9a:1e:5c:fb:d0:fb:e0:13:a9:
56:2d:03:ed:7f:42:e5:c0:59:01:15:38:31:8d:5f:59:29:76:
ff:cc:4a:c5:c5:69:32:85:88:2b:3f:ec:14:ad:3c:d4:5b:ae:
8d:35:80:f8:98:b9:b7:94:97:f7:59:ba:b0:c7:f0:90:f2:5f:
f7:45:c4:dc:58:94:16:04:95:2e:22:25:9a:18:c8:19:f6:fd:
14:93:ab:ab:47:72:40:d4:a8:c8:e7:dd:77:8d:bc:2c:88:bf:
7d:0a:44:59:36:6b:0f:2b:e5:82:c1:38:5f:ab:5b:b6:dd:ed:
e0:d1:5d:ee:34:1d:f6:b5:1c:b3:78:c8:9c:6c:b1:44:e5:fd:
d0:c0:3a:8b:cf:c7:9e:f7:54:e2:07:75:51:53:fa:96:10:c6:
c5:30:86:3d:af:c7:56:a0:b5:93:77:f6:33:21:a7:e6:80:ef:
c3:62:b6:f1:6e:6c:f7:61:2f:ea:a9:3a:19:f5:7c:d8:d2:42:
0c:66:5d:d2:ac:bd:49:6b:bc:4e:b0:43:02:7f:6e:c5:91:06:
4d:f2:a9:32:46:91:7e:76:3d:0c:7d:7e:68:e6:2f:60:2e:af:
24:50:30:57
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jun 13 10:46:16 2026 by rpki-client