Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: z6SQk595oL8zUMDWyZ1Y2hIN82cDtJZdbJFHO8hWlyY=
Subject key identifier: 1B:A2:E5:0F:59:C3:31:6F:07:11:65:5E:C5:F5:09:CC:0A:75:7B:26
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 1AD6C0931B9535C30AA746432A43C4DAB9B8A608
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS174.roa
Signing time: Wed 10 Jun 2026 11:54:58 +0000
ROA not before: Wed 10 Jun 2026 11:49:58 +0000
ROA not after: Wed 09 Jun 2027 11:54:58 +0000
asID: 174
IP address blocks: 51.194.140.0/24 maxlen: 24
51.194.247.0/24 maxlen: 24
51.241.56.0/24 maxlen: 24
51.241.186.0/24 maxlen: 24
188.220.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:d6:c0:93:1b:95:35:c3:0a:a7:46:43:2a:43:c4:da:b9:b8:a6:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Jun 10 11:49:58 2026 GMT
Not After : Jun 9 11:54:58 2027 GMT
Subject: CN=1BA2E50F59C3316F0711655EC5F509CC0A757B26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:87:11:16:2c:af:d9:2f:c4:9d:78:61:25:79:
c8:79:d3:48:ef:f9:87:81:ad:a7:1f:07:b8:01:5e:
d6:b2:aa:99:32:d0:ed:1c:d6:f1:68:ad:10:07:5f:
83:4e:6f:14:4a:00:c5:4d:8c:97:c1:d9:52:ef:05:
e6:02:29:7d:ab:cb:67:af:f0:36:82:e5:9a:c5:6c:
68:5f:d8:eb:bc:7c:2d:c5:f6:98:09:18:a4:46:3d:
1b:38:cb:3f:ff:75:25:86:06:e3:c6:ea:db:e9:8d:
09:8c:21:ea:42:7c:a9:28:b8:6b:3e:f3:51:64:7f:
47:ce:93:91:6d:10:b0:f8:6f:75:cc:09:4e:fd:9a:
09:ca:dc:7a:cb:0f:41:12:55:3c:d2:eb:a2:da:8e:
97:6c:ae:8c:c0:d3:41:a5:0a:56:22:80:dd:e0:a1:
8f:60:19:92:33:50:8f:61:df:c1:7a:0d:8d:0a:38:
8e:de:56:0c:50:55:f3:3d:59:3b:a4:83:9a:b5:0b:
22:64:af:3b:52:1b:36:26:0e:d1:10:5a:60:65:7d:
22:a7:d8:af:b1:60:39:fc:da:b9:b0:06:70:f9:5d:
a3:87:69:88:93:1b:15:24:e4:50:05:08:1b:68:ef:
59:17:79:e5:77:cf:6d:1c:8a:eb:e3:64:be:32:be:
db:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A2:E5:0F:59:C3:31:6F:07:11:65:5E:C5:F5:09:CC:0A:75:7B:26
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.194.140.0/24
51.194.247.0/24
51.241.56.0/24
51.241.186.0/24
188.220.249.0/24
Signature Algorithm: sha256WithRSAEncryption
45:a4:fb:aa:3d:6a:00:44:d3:af:a2:da:98:d6:7b:94:57:aa:
f0:41:87:ee:13:9e:60:e8:5e:24:9c:e9:4b:cc:bc:bd:8a:38:
12:d1:70:e5:69:35:85:c3:5f:b8:02:00:9d:3d:d7:5d:42:09:
9e:cf:39:db:ee:52:00:71:e7:56:8d:5f:de:14:13:3e:de:cf:
e4:71:35:b8:37:7a:63:cb:1b:e0:23:9a:79:23:d6:a1:58:18:
2a:58:50:a1:f7:46:39:7a:49:2a:9e:5d:6b:ba:82:c3:02:ef:
0c:04:b5:66:6a:10:e1:6f:7a:d5:eb:47:ee:65:f9:02:31:99:
ca:e7:94:84:41:a6:3c:cf:9e:0d:de:f1:6e:38:27:48:ff:12:
d7:53:76:79:57:8a:60:0b:ee:d4:2a:97:b5:eb:f4:31:45:88:
fd:6a:4b:ea:41:ac:1a:85:43:a5:75:8d:2e:ad:43:29:fe:2d:
a9:fc:fb:d7:f5:ef:01:f0:0d:56:4f:9d:a7:07:57:2e:4a:2e:
b8:0e:7e:e0:13:44:72:08:e9:56:af:73:1c:7e:4c:bb:a4:45:
f6:07:91:17:87:ce:94:92:16:a5:b1:4a:12:4c:c6:b9:bf:52:
3b:c8:a5:e1:22:70:9a:08:cb:88:d5:72:f0:84:2a:46:66:cf:
73:d5:57:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:37:57 2026 by rpki-client