Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS44355.roa
File: AS44355.roa (raw, json)
Hash identifier: RB/DMR7v2gQ7rt+meYTPcLFh8L8JjlgAQtzcpt7ak8E=
Subject key identifier: EA:CE:1C:41:84:77:59:B1:3B:A9:E0:C4:58:B7:CF:51:F5:BC:4A:C8
Certificate issuer: /CN=c4ce7d8902405ba4598f84b6a41c27d722834b1c
Certificate serial: 569D0E05D542CB6F467E44F6E51D42D8BA031931
Authority key identifier: C4:CE:7D:89:02:40:5B:A4:59:8F:84:B6:A4:1C:27:D7:22:83:4B:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS44355.roa
Signing time: Sun 12 Apr 2026 03:08:31 +0000
ROA not before: Sun 12 Apr 2026 03:03:31 +0000
ROA not after: Sun 11 Apr 2027 03:08:31 +0000
asID: 44355
IP address blocks: 193.57.167.0/24 maxlen: 24
2a0f:85c0:2::/48 maxlen: 48
2a0f:85c0:400::/48 maxlen: 48
2a0f:85c2:20::/48 maxlen: 48
2a0f:85c2:100::/40 maxlen: 40
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl
rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.mft
rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:9d:0e:05:d5:42:cb:6f:46:7e:44:f6:e5:1d:42:d8:ba:03:19:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ce7d8902405ba4598f84b6a41c27d722834b1c
Validity
Not Before: Apr 12 03:03:31 2026 GMT
Not After : Apr 11 03:08:31 2027 GMT
Subject: CN=EACE1C41847759B13BA9E0C458B7CF51F5BC4AC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:91:ed:d1:6a:44:29:18:ed:3d:37:42:d3:3c:
89:c4:a7:fa:aa:b6:17:5e:9f:19:90:75:bf:6f:82:
35:11:8f:84:ac:c6:85:f8:8a:99:3f:05:8f:76:d2:
b7:3c:45:27:22:fd:0d:69:ff:c1:81:fc:ed:ce:e9:
98:18:e2:29:bb:3e:13:7c:cd:5e:68:2f:10:00:79:
1c:a0:05:98:bf:ad:81:d7:e8:7d:cb:c9:e2:ef:af:
db:0c:8a:ab:75:1f:b6:b6:8f:95:3c:d1:82:14:1d:
1f:59:12:21:60:ec:6e:95:db:e4:cf:5e:6c:02:16:
2d:c5:82:2a:9a:60:fe:37:17:76:cc:5c:04:28:20:
66:c5:84:ee:98:51:f7:5c:99:c4:26:1e:5b:1f:a6:
80:9a:4b:fc:91:e3:11:ea:dc:7d:9e:3b:16:45:9c:
43:15:98:de:61:04:cb:cd:79:ed:ae:b0:1e:3d:f9:
f6:11:27:e8:a2:23:d8:58:c5:13:17:82:55:89:32:
ae:b4:d6:71:63:05:14:84:9b:a6:e6:a1:94:fc:47:
a7:5f:20:ab:4d:27:89:de:e7:27:0e:79:d0:bc:9c:
cb:61:1d:d7:78:a1:bb:82:c2:b6:32:85:a7:30:19:
e4:eb:92:bb:8e:e5:af:ae:58:93:93:55:9e:ae:47:
6c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:CE:1C:41:84:77:59:B1:3B:A9:E0:C4:58:B7:CF:51:F5:BC:4A:C8
X509v3 Authority Key Identifier:
keyid:C4:CE:7D:89:02:40:5B:A4:59:8F:84:B6:A4:1C:27:D7:22:83:4B:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS44355.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.167.0/24
IPv6:
2a0f:85c0:2::/48
2a0f:85c0:400::/48
2a0f:85c2:20::/48
2a0f:85c2:100::/40
Signature Algorithm: sha256WithRSAEncryption
ca:aa:2a:81:8b:9e:5b:e7:19:06:ce:60:9b:f1:ae:4b:a9:07:
68:fa:b4:9a:f7:b5:ab:ea:86:42:42:5e:97:a2:9f:90:49:1e:
bb:9c:8e:86:35:44:af:a6:90:8a:32:e8:d3:22:24:6a:ab:f0:
92:79:b7:13:10:31:ca:c4:a0:26:08:26:25:86:b6:b1:16:96:
cc:35:3d:f1:71:2c:f5:02:96:6f:3d:e9:03:4c:28:89:9c:69:
e1:fd:7c:2d:35:ea:75:68:0c:1e:59:cd:ff:99:68:86:e8:ac:
6c:03:6b:b7:c7:a4:58:b4:aa:f5:38:5d:51:e8:43:7b:d7:25:
f8:c2:af:70:7d:5b:84:35:bf:49:14:1f:56:fb:32:be:21:8b:
65:be:e4:b7:fb:32:cc:94:6c:c6:0c:81:dc:71:d9:e7:6e:60:
3d:08:4b:95:e7:35:96:56:d0:7f:1a:54:b3:8b:23:45:dd:3a:
d2:f9:1c:5c:dc:ba:cf:69:37:c7:c7:5e:b3:98:ff:52:b1:fd:
06:3e:a6:4b:8a:04:6d:ae:60:a2:dc:cd:c0:b0:5d:4a:26:88:
be:08:58:c5:01:50:d6:22:b4:bd:c9:e0:f8:82:5f:f4:33:44:
b2:38:15:14:eb:f0:41:c9:c6:05:d3:2a:fe:1b:f0:00:34:8b:
a6:8c:a9:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:53:57 2026 by rpki-client