Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS215152.roa
File: AS215152.roa (raw, json)
Hash identifier: 6LScDx7kF3NGnXxTdZzKdup6DYJqX3CdCSHZzimuZsM=
Subject key identifier: D4:C8:1F:57:09:E9:BA:5F:00:0E:7C:A3:B8:27:01:E6:AB:11:FD:C4
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 504E82AD4B6F89E1067132AA9A59761F4D5EA92C
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS215152.roa
Signing time: Sat 18 Apr 2026 16:15:40 +0000
ROA not before: Sat 18 Apr 2026 16:10:40 +0000
ROA not after: Sat 17 Apr 2027 16:15:40 +0000
asID: 215152
IP address blocks: 51.194.130.0/24 maxlen: 24
51.194.155.0/24 maxlen: 24
51.194.183.0/24 maxlen: 24
51.194.224.0/24 maxlen: 24
51.194.230.0/24 maxlen: 24
51.194.244.0/24 maxlen: 24
51.194.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:4e:82:ad:4b:6f:89:e1:06:71:32:aa:9a:59:76:1f:4d:5e:a9:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Apr 18 16:10:40 2026 GMT
Not After : Apr 17 16:15:40 2027 GMT
Subject: CN=D4C81F5709E9BA5F000E7CA3B82701E6AB11FDC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a8:4b:49:8d:66:a6:2d:d9:9a:60:07:3a:c4:
44:aa:e3:53:71:1a:79:35:b7:84:be:dc:34:23:06:
bf:f4:04:a2:41:b0:39:36:43:57:6e:57:f4:3a:f5:
be:2d:77:17:3a:f0:05:8e:10:24:70:2c:ec:32:a6:
2a:99:45:57:92:32:20:85:ad:7d:20:9c:85:bd:41:
21:39:16:95:dd:dd:fd:af:47:d8:39:5d:ac:0e:21:
19:8d:a8:20:85:6b:06:cb:dd:b4:81:fa:30:bd:ff:
46:19:1e:96:0f:6a:94:5e:78:29:f7:49:87:17:c5:
57:db:53:ba:28:48:47:69:04:38:5a:51:c8:aa:b9:
68:1f:e6:bd:5d:f7:99:d6:72:af:f6:7e:10:37:0c:
b2:e8:0e:d1:5f:b3:ef:48:38:8a:d4:4d:ae:6f:4e:
8b:a8:af:58:86:ab:cf:f5:45:ed:55:ed:cb:dc:77:
e6:2b:c1:3a:35:cd:43:41:a7:f1:87:bd:22:30:af:
3e:97:ae:1f:bd:13:5a:3d:6c:de:b7:90:0f:40:1f:
46:0b:d6:96:85:25:ac:52:fd:3e:ab:3c:a4:d6:b3:
22:41:03:ea:4b:62:69:71:b7:86:d3:58:92:66:0b:
7f:78:14:88:07:5b:f0:b1:df:79:4c:36:eb:ff:bf:
f8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C8:1F:57:09:E9:BA:5F:00:0E:7C:A3:B8:27:01:E6:AB:11:FD:C4
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS215152.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.194.130.0/24
51.194.155.0/24
51.194.183.0/24
51.194.224.0/24
51.194.230.0/24
51.194.244.0/23
Signature Algorithm: sha256WithRSAEncryption
86:1c:9e:bc:7d:9a:71:8f:17:b2:ae:cd:e6:6c:71:9d:1d:c2:
59:79:53:93:24:19:60:4c:65:68:38:6f:53:ef:a9:6a:e7:c2:
75:66:92:4f:71:ee:3c:02:08:b6:d7:56:ab:88:43:9f:9c:15:
fc:31:89:04:61:7a:92:3f:d3:64:07:a5:5f:e7:44:d7:16:2a:
dc:1e:c6:21:23:0d:29:17:60:c1:94:af:45:08:ca:c9:b9:68:
62:a5:36:17:5d:c6:c0:2b:df:88:97:a5:a6:6c:9e:ff:dd:b1:
4b:3b:9c:55:e1:bd:b6:11:16:23:6b:cd:36:8b:20:8e:85:84:
b8:84:87:d1:14:02:f8:04:e7:0f:f6:b0:c0:7f:f8:5e:41:68:
33:9d:dc:f8:7a:f4:ed:f0:e0:a2:36:93:29:b8:af:4b:05:d3:
b4:89:63:61:f3:fe:79:36:4f:25:05:cc:d8:90:18:2c:c8:08:
c1:dc:9d:bc:05:99:fc:48:b5:26:9c:79:6e:93:03:ee:3f:7c:
f6:5d:5b:de:63:00:5e:48:b5:1c:51:86:0a:b4:63:7e:3b:c7:
a9:a7:db:17:47:2b:f1:b9:33:a2:e6:dc:c2:3d:88:c7:25:b0:
50:e9:b9:4f:1b:25:b9:7d:79:1b:fb:d6:15:f0:56:e9:c6:b3:
34:56:0f:ca
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgIUUE6CrUtvieEGcTKqmll2H01eqSwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMGUyMGNjZjUwODNhNjNiOWY1ODg3ZTNlYTM5ZDA0ZTJk
NjJiM2RhNTAeFw0yNjA0MTgxNjEwNDBaFw0yNzA0MTcxNjE1NDBaMDMxMTAvBgNV
BAMTKEQ0QzgxRjU3MDlFOUJBNUYwMDBFN0NBM0I4MjcwMUU2QUIxMUZEQzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2qEtJjWamLdmaYAc6xESq41Nx
Gnk1t4S+3DQjBr/0BKJBsDk2Q1duV/Q69b4tdxc68AWOECRwLOwypiqZRVeSMiCF
rX0gnIW9QSE5FpXd3f2vR9g5XawOIRmNqCCFawbL3bSB+jC9/0YZHpYPapReeCn3
SYcXxVfbU7ooSEdpBDhaUciquWgf5r1d95nWcq/2fhA3DLLoDtFfs+9IOIrUTa5v
Touor1iGq8/1Re1V7cvcd+YrwTo1zUNBp/GHvSIwrz6Xrh+9E1o9bN63kA9AH0YL
1paFJaxS/T6rPKTWsyJBA+pLYmlxt4bTWJJmC394FIgHW/Cx33lMNuv/v/hrAgMB
AAGjggIoMIICJDAdBgNVHQ4EFgQU1MgfVwnpul8ADnyjuCcB5qsR/cQwHwYDVR0j
BBgwFoAUDiDM9Qg6Y7n1iH4+o50E4tYrPaUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOTZlNGFjODYtMTgwMy00OTRkLThhN2ItYzA1MWE2MzEw
NzUyLzAvMEUyMENDRjUwODNBNjNCOUY1ODg3RTNFQTM5RDA0RTJENjJCM0RBNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RpRE05UWc2WTduMWlINC1vNTBFNHRZ
clBhVS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzk2ZTRhYzg2LTE4MDMt
NDk0ZC04YTdiLWMwNTFhNjMxMDc1Mi8wL0FTMjE1MTUyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAM8KC
AwQAM8KbAwQAM8K3AwQAM8LgAwQAM8LmAwQBM8L0MA0GCSqGSIb3DQEBCwUAA4IB
AQCGHJ68fZpxjxeyrs3mbHGdHcJZeVOTJBlgTGVoOG9T76lq58J1ZpJPce48Agi2
11ariEOfnBX8MYkEYXqSP9NkB6Vf50TXFircHsYhIw0pF2DBlK9FCMrJuWhipTYX
XcbAK9+Il6WmbJ7/3bFLO5xV4b22ERYja802iyCOhYS4hIfRFAL4BOcP9rDAf/he
QWgzndz4evTt8OCiNpMpuK9LBdO0iWNh8/55Nk8lBczYkBgsyAjB3J28BZn8SLUm
nHlukwPuP3z2XVveYwBeSLUcUYYKtGN+O8epp9sXRyvxuTOi5tzCPYjHJbBQ6blP
GyW5fXkb+9YV8FbpxrM0Vg/K
-----END CERTIFICATE-----
Generated at Sun Apr 19 09:56:41 2026 by rpki-client