Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS198831.roa
File: AS198831.roa (raw, json)
Hash identifier: HasMoLDmarB4FV75l6IDSlIKTI1tm1jYsCubU1tDT94=
Subject key identifier: 4B:E1:D1:A6:3C:82:A0:21:85:6A:89:71:84:0A:35:9F:51:22:34:6B
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 27F14EBC86F23B3DCC8B1E51B5C950D30D16AF2A
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS198831.roa
Signing time: Sat 23 May 2026 10:13:24 +0000
ROA not before: Sat 23 May 2026 10:08:24 +0000
ROA not after: Sat 22 May 2027 10:13:24 +0000
asID: 198831
IP address blocks: 141.11.113.0/24 maxlen: 24
141.11.120.0/24 maxlen: 24
141.11.180.0/24 maxlen: 24
141.11.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:f1:4e:bc:86:f2:3b:3d:cc:8b:1e:51:b5:c9:50:d3:0d:16:af:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: May 23 10:08:24 2026 GMT
Not After : May 22 10:13:24 2027 GMT
Subject: CN=4BE1D1A63C82A021856A8971840A359F5122346B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e0:b0:fe:14:9c:31:df:61:5e:92:83:ec:89:
a1:63:b8:b5:17:0b:cf:1b:88:98:af:d2:45:28:c8:
15:67:3d:87:e6:82:70:58:02:04:d5:81:e6:ec:45:
93:60:5d:dc:b1:6c:e9:7f:b0:2d:92:b2:73:e4:c4:
62:47:19:fe:68:86:7e:b7:20:cf:0e:4b:c4:d4:0c:
48:1b:f4:80:1a:0b:d1:7d:db:a9:03:3d:99:3e:f9:
11:af:7b:bc:64:91:6e:b4:cd:43:95:9a:b1:68:3a:
36:75:bf:e7:f1:24:49:8a:c4:e2:b3:12:97:66:a4:
29:de:4d:bb:52:cd:70:ac:44:a8:b0:3b:7a:a3:d5:
7f:41:84:c6:77:38:a0:1c:a5:25:58:30:81:95:48:
b4:7c:26:0f:e0:9c:bb:72:10:49:7d:2f:d8:40:cc:
1a:cd:d9:00:94:0d:df:90:72:ff:5d:81:60:2b:84:
13:a9:88:f2:d2:19:c4:84:b8:fe:1f:7f:98:2b:8c:
8e:78:28:0e:e7:1e:df:56:39:af:4c:ac:a0:ce:60:
0a:27:37:45:3c:63:d5:94:04:48:b7:c9:19:a0:e9:
e5:bb:a9:2d:60:0e:6e:78:a2:fe:13:0f:bd:4c:d7:
d3:ac:8b:0a:25:ae:50:49:a8:28:27:75:b6:71:fa:
c8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:E1:D1:A6:3C:82:A0:21:85:6A:89:71:84:0A:35:9F:51:22:34:6B
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS198831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.113.0/24
141.11.120.0/24
141.11.180.0/24
141.11.237.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:f2:3c:0e:f0:38:76:4d:5b:d3:14:28:24:6c:8f:5a:8e:91:
f3:41:ec:f7:c2:31:92:f1:c4:40:8d:d6:91:cc:57:9c:12:b6:
32:a3:44:ec:59:3b:35:fc:a6:34:78:c7:07:d4:ff:61:f4:b5:
df:32:62:58:34:ae:1b:da:c7:0d:77:10:be:38:76:7a:70:b5:
54:50:1c:ef:3d:43:27:83:e7:b8:3c:a1:a8:5f:47:fe:dc:03:
e2:ad:a1:5b:e9:d5:f9:29:ba:ab:fb:e4:69:ff:c2:88:1a:7a:
17:57:3e:11:cf:24:ed:d8:fb:af:12:72:0c:7d:da:7b:64:6b:
a8:77:e9:c5:ac:5e:a9:74:5a:a6:1a:6b:de:3a:f6:f5:d9:c5:
96:c5:b9:b2:c6:00:8e:29:e2:2a:36:31:2d:9b:f0:e5:b6:30:
3d:a7:e8:c7:08:c6:d5:6d:95:f4:87:04:ef:ad:78:a3:b2:9b:
c9:b3:8e:48:00:6f:06:ff:eb:e0:60:f5:ea:00:1a:e8:94:cd:
3e:78:30:a9:42:a3:37:cb:41:83:ca:da:43:8f:cd:49:36:b3:
9c:77:a4:18:8f:d1:d5:1e:22:78:c0:ed:c4:c1:f5:3b:1f:c0:
fe:42:ea:30:39:6c:25:54:4b:b3:d5:14:c6:aa:8f:c7:1a:4f:
df:82:d5:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:44:28 2026 by rpki-client