Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS214025.roa
File: AS214025.roa (raw, json)
Hash identifier: izGyAX9SrpYP8l1LF/aXpFD+jrfGA595favEyW04Mho=
Subject key identifier: 11:13:C6:B8:1A:D7:75:25:1A:78:58:A3:66:99:C8:61:22:F3:CA:88
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 6E59B13EC44341B33330B7CADE3DC5B1739F0770
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS214025.roa
Signing time: Thu 16 Apr 2026 13:54:50 +0000
ROA not before: Thu 16 Apr 2026 13:49:50 +0000
ROA not after: Thu 15 Apr 2027 13:54:50 +0000
asID: 214025
IP address blocks: 51.194.139.0/24 maxlen: 24
51.194.212.0/24 maxlen: 24
51.194.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:59:b1:3e:c4:43:41:b3:33:30:b7:ca:de:3d:c5:b1:73:9f:07:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Apr 16 13:49:50 2026 GMT
Not After : Apr 15 13:54:50 2027 GMT
Subject: CN=1113C6B81AD775251A7858A36699C86122F3CA88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a6:84:c2:63:5c:bd:b9:9e:b4:e9:54:36:5e:
c4:ae:b7:27:13:c9:95:8a:d4:92:8b:0a:bb:0d:2e:
d1:29:a1:c6:9a:0f:f3:58:15:76:d2:9f:ab:c1:ad:
f1:49:f0:cb:07:74:8e:46:30:40:74:d1:f7:21:82:
96:48:80:18:28:d3:2e:8c:90:a5:8a:4f:15:4e:57:
02:5b:d2:ff:94:c6:79:b5:02:5a:05:76:93:8f:3b:
1f:80:b7:ff:fe:53:6e:a4:3a:f9:87:b9:46:fd:7a:
3a:12:76:77:66:35:c1:af:54:a2:f2:db:a8:6c:20:
55:bb:7d:fa:b0:82:48:e7:9d:99:f3:44:ae:84:81:
ac:09:31:52:6f:c2:90:29:e7:17:22:3f:de:e8:2f:
8e:30:62:8b:3c:10:73:78:a0:26:31:bd:20:43:3b:
60:b3:0d:fd:87:85:c4:c8:ee:4e:6e:4a:29:e0:be:
8c:67:ea:04:cb:2e:c0:55:f7:49:a5:26:6d:e7:19:
40:b5:1b:fa:1e:d7:a4:a3:a8:94:ae:51:27:2d:1b:
9b:52:1e:29:99:ca:51:9d:03:b0:1f:12:be:2a:60:
c4:fd:07:8d:a1:a4:5b:0b:f0:35:8a:c9:ba:f8:2f:
b9:c3:0d:07:e7:a3:3b:8a:74:f8:ef:40:25:44:e8:
96:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:13:C6:B8:1A:D7:75:25:1A:78:58:A3:66:99:C8:61:22:F3:CA:88
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS214025.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.194.139.0/24
51.194.212.0/24
51.194.229.0/24
Signature Algorithm: sha256WithRSAEncryption
23:bd:b3:f3:dd:9d:aa:3c:b8:10:94:fa:8a:ac:00:3d:d4:ba:
03:54:ef:67:f9:86:fb:52:63:5e:e5:c0:25:72:52:de:6a:fc:
48:ea:4c:71:13:3b:10:28:e0:37:09:79:2e:aa:63:f4:dd:b5:
4e:12:2e:b0:0e:77:d4:6e:3d:b2:f7:a2:b0:a8:8b:a9:6e:10:
73:16:7a:e3:8e:6d:0c:cb:de:16:28:a0:05:1d:78:4d:08:3b:
7a:7f:cd:2f:3f:32:78:0a:64:e2:bc:4d:df:c0:6f:24:c4:0d:
00:8b:f5:29:04:06:19:70:5a:a1:3b:0e:b6:af:da:0c:f3:09:
9a:fd:1b:ed:80:80:5f:3e:cd:51:06:fd:70:42:f1:83:e9:9f:
79:b6:07:5f:cb:20:81:b5:49:cf:28:41:d1:4e:24:68:49:ae:
27:4f:02:14:4b:b5:36:9f:5e:77:af:4e:a1:24:bf:ab:4c:f2:
62:60:8b:ee:73:d6:e7:b1:88:5b:3e:c1:4d:61:2e:e7:ce:e1:
cf:95:6f:b3:0a:b2:41:c6:e2:09:e9:3f:30:e9:ed:71:1a:35:
d5:36:ee:e6:fa:23:b7:c8:d5:97:ea:c9:3a:b1:f2:00:d4:a4:
d0:de:a5:3a:b1:cd:2c:04:f6:1c:95:f7:c3:a5:13:60:75:d7:
8a:66:79:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:37:30 2026 by rpki-client