Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS137517.roa
File: AS137517.roa (raw, json)
Hash identifier: jFGZ+9RkARjwPP4YKXeY6hzreznSKBPPq8qzCCuCkes=
Subject key identifier: 9E:F1:67:2C:83:26:5E:12:F2:40:57:D1:35:98:B9:4A:F8:EB:83:9E
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 6A9D2F35F97BB062DF540995631BA3F403DC259F
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS137517.roa
Signing time: Thu 12 Feb 2026 08:23:28 +0000
ROA not before: Thu 12 Feb 2026 08:18:28 +0000
ROA not after: Thu 11 Feb 2027 08:23:28 +0000
asID: 137517
IP address blocks: 141.11.57.0/24 maxlen: 24
141.11.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 04:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:9d:2f:35:f9:7b:b0:62:df:54:09:95:63:1b:a3:f4:03:dc:25:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Feb 12 08:18:28 2026 GMT
Not After : Feb 11 08:23:28 2027 GMT
Subject: CN=9EF1672C83265E12F24057D13598B94AF8EB839E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:26:a1:cd:6e:ee:3a:21:95:2b:4a:d2:ef:3b:
4e:9e:64:dc:92:dc:3a:29:92:5b:b8:d8:df:55:15:
16:cb:cd:bd:4b:d7:ca:e5:58:37:3b:1f:93:18:a0:
f8:51:8e:80:d7:32:5f:27:e3:e0:f9:93:f8:45:74:
a2:e0:ca:fb:51:15:fc:d5:d9:58:8d:4c:ad:14:66:
10:fa:6c:05:9b:e5:9e:b9:c1:cb:cf:4e:a8:9e:0e:
56:c8:44:bf:14:27:b8:d4:99:e7:de:60:2c:48:57:
8c:c3:58:03:92:4e:42:93:ed:38:5e:bf:76:6f:40:
e6:52:9d:a4:20:ea:92:84:31:77:6c:02:b1:0a:80:
e0:32:84:d9:2f:c0:8a:f9:1a:22:3c:a3:d5:81:7f:
e0:77:e7:1c:ea:03:da:18:f8:c6:4a:6b:b7:83:23:
0d:b9:2d:0a:03:d6:e2:ef:72:f9:f3:3a:e8:22:b3:
56:60:02:53:3f:03:ad:79:c0:eb:70:5e:8f:62:fc:
17:ad:6b:13:25:0a:72:90:00:6e:6c:7c:1c:74:a8:
ec:f7:55:f7:52:b8:f2:9c:cf:58:11:e5:6b:f6:4b:
cb:d4:a8:23:f0:73:c1:1a:87:09:68:ea:ea:1f:e8:
6d:7a:85:89:e1:f0:17:4a:a5:68:d0:d2:20:75:97:
7d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:F1:67:2C:83:26:5E:12:F2:40:57:D1:35:98:B9:4A:F8:EB:83:9E
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS137517.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.57.0/24
141.11.124.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:af:2d:00:9c:0c:99:a4:bb:03:7a:0e:d2:66:17:7e:60:7d:
a9:f3:d3:ff:a4:91:5e:ba:4a:b2:ed:7a:89:bb:2c:df:28:cf:
6a:b5:e5:f7:98:5a:e9:73:67:14:74:ff:de:c3:4c:de:2a:5f:
86:6d:5a:23:bc:7f:4b:c5:70:d7:a1:ae:55:a5:bf:c0:63:73:
15:3b:d3:89:fd:13:39:61:6a:b1:88:ba:f6:50:fe:50:64:be:
f9:87:b0:ba:d6:92:2f:c3:74:65:72:57:6e:1e:25:88:29:d2:
e3:1f:90:bf:f0:54:bd:88:74:20:ba:cd:05:38:6f:b0:86:8f:
aa:b4:d2:08:31:c3:1d:fe:0c:0a:0c:e1:31:69:b0:d0:3b:44:
8a:e8:a6:51:2f:c8:0d:37:1f:b1:80:fd:7c:6d:52:c6:67:64:
ea:16:08:3a:69:ca:da:8f:75:ce:b1:23:43:19:7f:45:b8:fd:
32:df:66:89:f5:0a:ca:ed:a0:ee:df:74:f5:58:d4:c9:93:83:
22:7d:0b:4c:c7:6a:c9:2d:f0:af:3a:7a:1e:34:0c:08:4e:fc:
5c:64:6a:6a:d8:65:09:f9:d7:e5:23:40:d8:d3:da:4d:20:a2:
50:16:60:3c:4f:72:32:95:17:86:7a:32:e2:00:46:8d:d3:bd:
d1:2f:5f:30
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIUap0vNfl7sGLfVAmVYxuj9APcJZ8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yNjAyMTIwODE4MjhaFw0yNzAyMTEwODIzMjhaMDMxMTAvBgNV
BAMTKDlFRjE2NzJDODMyNjVFMTJGMjQwNTdEMTM1OThCOTRBRjhFQjgzOUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrJqHNbu46IZUrStLvO06eZNyS
3Dopklu42N9VFRbLzb1L18rlWDc7H5MYoPhRjoDXMl8n4+D5k/hFdKLgyvtRFfzV
2ViNTK0UZhD6bAWb5Z65wcvPTqieDlbIRL8UJ7jUmefeYCxIV4zDWAOSTkKT7The
v3ZvQOZSnaQg6pKEMXdsArEKgOAyhNkvwIr5GiI8o9WBf+B35xzqA9oY+MZKa7eD
Iw25LQoD1uLvcvnzOugis1ZgAlM/A615wOtwXo9i/BetaxMlCnKQAG5sfBx0qOz3
VfdSuPKcz1gR5Wv2S8vUqCPwc8Eahwlo6uof6G16hYnh8BdKpWjQ0iB1l32dAgMB
AAGjggIQMIICDDAdBgNVHQ4EFgQUnvFnLIMmXhLyQFfRNZi5Svjrg54wHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTMTM3NTE3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAjQs5
AwQAjQt8MA0GCSqGSIb3DQEBCwUAA4IBAQDHry0AnAyZpLsDeg7SZhd+YH2p89P/
pJFeukqy7XqJuyzfKM9qteX3mFrpc2cUdP/ew0zeKl+GbVojvH9LxXDXoa5Vpb/A
Y3MVO9OJ/RM5YWqxiLr2UP5QZL75h7C61pIvw3RlclduHiWIKdLjH5C/8FS9iHQg
us0FOG+who+qtNIIMcMd/gwKDOExabDQO0SK6KZRL8gNNx+xgP18bVLGZ2TqFgg6
acraj3XOsSNDGX9FuP0y32aJ9QrK7aDu33T1WNTJk4MifQtMx2rJLfCvOnoeNAwI
TvxcZGpq2GUJ+dflI0DY09pNIKJQFmA8T3IylReGejLiAEaN073RL18w
-----END CERTIFICATE-----
Generated at Sun Mar 1 22:00:58 2026 by rpki-client