Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS48974.roa
File: AS48974.roa (raw, json)
Hash identifier: 5IdivNqeDblOlzNTeVE514wPxJ+KzXu9e0tbjDXvuH0=
Subject key identifier: 28:0B:8F:87:9B:BC:1D:7F:CE:3E:72:48:5C:4E:5C:C0:EE:56:C0:A0
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 327660BC892F1A29B4D8275341A7A2EC297DF553
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS48974.roa
Signing time: Mon 08 Jun 2026 09:48:33 +0000
ROA not before: Mon 08 Jun 2026 09:43:33 +0000
ROA not after: Mon 07 Jun 2027 09:48:33 +0000
asID: 48974
IP address blocks: 51.146.70.0/24 maxlen: 24
78.105.143.0/24 maxlen: 24
188.221.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:76:60:bc:89:2f:1a:29:b4:d8:27:53:41:a7:a2:ec:29:7d:f5:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Jun 8 09:43:33 2026 GMT
Not After : Jun 7 09:48:33 2027 GMT
Subject: CN=280B8F879BBC1D7FCE3E72485C4E5CC0EE56C0A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:1f:1f:5e:18:9f:58:bb:50:e0:6d:18:a5:d4:
d1:68:11:6f:01:95:22:8b:69:5f:0b:79:b6:ee:56:
2c:06:10:be:58:29:27:d5:b2:e8:d0:25:e8:52:2d:
2b:60:72:53:0a:14:39:23:8a:8e:0c:69:b1:d8:aa:
d8:99:8d:d7:59:00:66:0b:e0:13:49:2c:ce:9a:55:
65:25:06:c6:25:46:08:a8:d5:28:e8:e1:f9:96:6f:
85:0e:d8:df:37:d0:75:d7:b2:f6:96:85:d7:59:a0:
d8:73:0d:67:92:dd:36:55:e7:ae:a7:47:73:0c:0b:
ae:ed:7d:5e:b6:7f:ea:75:bc:1f:57:f7:92:b6:4c:
de:10:00:31:01:9d:2f:7f:5c:d3:e3:c8:08:d5:c3:
ef:55:8e:31:c5:7a:23:4e:65:89:f3:cf:2b:91:df:
02:6a:c2:1a:61:10:0e:9d:a9:ba:d3:68:1a:ee:83:
ec:4b:b2:5d:97:7e:8e:7e:16:3a:ec:b8:07:60:10:
0b:18:a3:8d:6c:9d:06:08:bd:c8:3a:fe:fb:50:c6:
4b:e3:d7:74:73:7d:65:52:91:e5:08:96:d6:ed:83:
e7:93:19:09:98:03:e8:f2:9a:01:c3:85:ee:54:4e:
28:c6:b8:3a:2e:2e:a6:8a:9b:9d:d5:bd:28:1a:66:
0a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0B:8F:87:9B:BC:1D:7F:CE:3E:72:48:5C:4E:5C:C0:EE:56:C0:A0
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS48974.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.146.70.0/24
78.105.143.0/24
188.221.3.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:b7:5b:3e:b5:7b:58:8f:5a:ce:aa:0b:d4:98:04:68:4b:09:
91:ae:12:79:16:e0:ea:da:41:9a:ba:00:2f:9a:00:7e:2a:8a:
7c:74:7f:d2:46:4c:89:42:9c:d6:96:9a:80:1f:5e:a5:bf:31:
40:9a:42:7e:da:dc:07:34:39:98:9b:df:b3:ed:b7:6f:78:1a:
d6:0b:f3:6c:0e:21:4a:7f:e7:34:29:25:17:b7:23:5d:6e:34:
3d:56:8e:a7:8f:0b:18:7f:16:52:20:aa:d7:c5:ca:4c:86:88:
8f:9d:b0:aa:2b:7c:6b:23:ba:6f:9c:10:4e:55:f3:49:34:6c:
7b:76:2e:e5:4f:f4:c2:79:46:e3:83:fe:ec:17:88:1d:74:52:
87:71:7f:5b:11:75:cf:9c:be:75:95:1b:6d:aa:1a:db:e1:ee:
9c:b5:72:65:2b:00:f3:97:01:94:f3:30:01:de:b1:bb:ff:59:
81:b7:12:40:c9:b7:22:3f:60:89:1f:f3:35:b8:2d:19:6c:fd:
78:09:8e:6d:15:cf:d5:02:da:64:87:c7:82:da:25:b6:43:4d:
1a:6a:f2:24:ec:2b:d2:e7:55:78:04:c9:a9:77:1d:9f:9f:0b:
8c:bf:95:bd:2a:c2:b5:c7:26:e5:bf:85:af:6a:58:a0:b5:b3:
fd:f2:c9:5c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jun 17 08:37:33 2026 by rpki-client