Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS199925.roa
File: AS199925.roa (raw, json)
Hash identifier: fOVxM5ji3PHYPl8d6/4q2qXKV8LSxCLBErfr+jqZQjo=
Subject key identifier: 44:A3:BE:55:FB:A8:CA:56:8F:71:DA:57:06:5A:F0:55:6D:78:F0:38
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 030CC04A80B5ADECECD46C6B7EFE1314AB1E2F78
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS199925.roa
Signing time: Tue 07 Apr 2026 04:47:03 +0000
ROA not before: Tue 07 Apr 2026 04:42:03 +0000
ROA not after: Tue 06 Apr 2027 04:47:03 +0000
asID: 199925
IP address blocks: 141.11.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:0c:c0:4a:80:b5:ad:ec:ec:d4:6c:6b:7e:fe:13:14:ab:1e:2f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Apr 7 04:42:03 2026 GMT
Not After : Apr 6 04:47:03 2027 GMT
Subject: CN=44A3BE55FBA8CA568F71DA57065AF0556D78F038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:86:6f:66:db:02:a3:5c:a9:c9:b0:77:95:d5:
00:7e:66:e1:75:7f:e7:90:01:22:8d:0c:3b:b1:39:
69:09:f6:a0:18:13:98:ed:1a:e8:f6:5c:9d:95:d3:
37:59:e7:a9:04:41:ff:e9:e5:cb:2b:51:f4:d3:0e:
45:f0:59:71:67:87:9c:52:f7:43:54:8b:22:6d:79:
b9:a6:e7:31:23:6b:d4:02:49:f2:a1:b8:e3:42:ae:
33:2d:cc:85:85:b3:8b:c0:76:fb:95:a7:a2:2b:96:
98:e6:8a:c3:8a:a9:e5:30:5a:bd:f6:d3:4b:02:f8:
51:13:5c:01:c9:a3:5a:34:2d:ee:13:77:5c:5e:10:
7f:bc:da:27:0a:17:0a:20:4a:02:35:e2:1f:18:71:
c2:7b:01:8e:b6:f8:8e:5f:b6:8d:9f:c3:c5:0d:4c:
ae:51:74:09:8a:58:74:42:65:e9:7b:54:68:5f:da:
8e:5b:92:bb:96:7b:61:2d:4d:59:ba:00:34:3f:0c:
1a:01:cd:8a:03:64:d4:92:73:8b:7a:e4:12:83:77:
0a:b7:92:f4:de:01:89:83:7e:fc:3a:6c:34:f6:14:
8f:0f:63:d7:1e:fc:e1:51:55:ac:4d:cd:78:8a:f6:
89:1f:7f:13:26:9d:fd:e9:3c:30:a0:37:72:30:2b:
0d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:A3:BE:55:FB:A8:CA:56:8F:71:DA:57:06:5A:F0:55:6D:78:F0:38
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS199925.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.47.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:26:af:d2:99:af:3b:9b:d1:9c:06:f1:bb:58:76:a8:7b:de:
c4:9b:bb:f2:bb:f9:73:25:67:a6:10:38:93:07:c9:37:06:ff:
1c:84:59:8c:7c:4d:91:88:01:21:31:36:9d:27:1c:9a:c0:3f:
a9:d4:2b:8d:51:f2:42:4e:ec:68:fe:9c:76:8c:59:de:53:fc:
cd:23:c6:09:9a:fa:be:a5:9a:b1:2c:a7:fd:30:a0:c3:c3:d9:
7d:f0:8f:b5:35:3a:aa:2b:d5:c1:d5:75:51:d8:1e:2e:4c:ba:
4c:13:2c:8e:51:df:27:b1:27:9f:18:3e:09:7a:ca:da:9e:f4:
ad:d8:18:ce:f3:30:52:89:d7:04:e2:21:df:af:40:68:66:37:
a4:cc:00:8b:88:b9:4e:7b:e9:f1:66:75:df:56:48:3b:51:23:
48:1a:e4:6f:c7:75:ce:af:d8:67:fa:b1:e7:6b:14:f5:0d:9e:
c5:d2:9d:09:d0:43:31:23:e5:f0:de:ee:18:ba:9f:a9:5d:5b:
19:42:fe:23:43:76:95:29:bc:7e:f6:bd:f2:65:c8:32:ec:4f:
91:9e:d6:84:7a:31:c6:8e:99:b1:98:e8:cf:8d:30:f0:96:7d:
ed:9e:e3:5e:25:43:97:b0:7b:5a:9e:ee:48:c7:3d:1c:68:bd:
89:79:74:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:54:54 2026 by rpki-client