Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: mrrIWq0WDYz/C0CTVOhzoHoEaoOjJMPwv3kDCGolHFk=
Subject key identifier: EE:9A:93:43:0D:46:36:D8:80:F2:70:B9:4F:30:0E:4C:E3:1A:DE:9A
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 14C3144862BF899D453A8E8A575CA32910D0F3ED
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS174.roa
Signing time: Tue 24 Feb 2026 00:04:43 +0000
ROA not before: Mon 23 Feb 2026 23:59:43 +0000
ROA not after: Tue 23 Feb 2027 00:04:43 +0000
asID: 174
IP address blocks: 46.202.35.0/24 maxlen: 24
46.202.85.0/24 maxlen: 24
46.202.86.0/24 maxlen: 24
46.203.148.0/24 maxlen: 24
46.203.178.0/24 maxlen: 24
91.124.17.0/24 maxlen: 24
91.124.68.0/22 maxlen: 22
91.124.72.0/22 maxlen: 22
91.124.76.0/22 maxlen: 22
91.124.100.0/22 maxlen: 22
91.124.104.0/22 maxlen: 22
91.124.108.0/22 maxlen: 22
91.124.212.0/22 maxlen: 22
91.124.224.0/22 maxlen: 22
92.113.70.0/24 maxlen: 24
92.113.71.0/24 maxlen: 24
92.113.72.0/24 maxlen: 24
92.113.73.0/24 maxlen: 24
92.113.101.0/24 maxlen: 24
92.113.102.0/24 maxlen: 24
92.113.104.0/24 maxlen: 24
92.113.105.0/24 maxlen: 24
92.113.159.0/24 maxlen: 24
92.113.160.0/24 maxlen: 24
95.134.12.0/24 maxlen: 24
95.134.13.0/24 maxlen: 24
95.134.14.0/24 maxlen: 24
95.134.15.0/24 maxlen: 24
95.134.63.0/24 maxlen: 24
95.134.79.0/24 maxlen: 24
95.134.80.0/24 maxlen: 24
95.134.88.0/24 maxlen: 24
95.134.95.0/24 maxlen: 24
95.134.128.0/24 maxlen: 24
95.134.134.0/24 maxlen: 24
95.134.151.0/24 maxlen: 24
95.135.104.0/24 maxlen: 24
95.135.154.0/24 maxlen: 24
95.135.155.0/24 maxlen: 24
95.135.168.0/24 maxlen: 24
95.135.232.0/24 maxlen: 24
95.135.238.0/24 maxlen: 24
95.135.242.0/24 maxlen: 24
178.92.45.0/24 maxlen: 24
178.94.127.0/24 maxlen: 24
178.94.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:c3:14:48:62:bf:89:9d:45:3a:8e:8a:57:5c:a3:29:10:d0:f3:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 23 23:59:43 2026 GMT
Not After : Feb 23 00:04:43 2027 GMT
Subject: CN=EE9A93430D4636D880F270B94F300E4CE31ADE9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ad:40:8d:5c:57:54:8a:1e:24:9c:a4:bd:8b:
93:d2:1e:ad:80:3a:e4:0b:f9:c6:8d:ea:90:11:c6:
6f:5a:f6:36:8a:0e:31:d2:57:43:45:24:67:fe:1b:
08:78:f7:cb:80:4a:77:ef:d2:c8:01:0d:26:72:68:
26:45:96:cb:b1:7b:7a:a8:4b:1c:36:9a:17:a8:e5:
0f:64:0b:a7:ea:c6:78:91:1d:cc:b8:22:96:9e:a1:
2d:8e:d0:00:76:ad:6d:2c:60:ac:c8:fe:b3:ea:19:
5a:d0:66:b8:52:8e:a3:6f:e2:f6:5f:5e:bd:b3:23:
34:3a:3c:7c:53:3c:5a:96:0b:3e:e0:c8:8e:12:26:
c9:87:53:2d:2d:2e:8f:ec:e3:cc:f5:f4:23:d8:72:
c0:15:3d:b1:1a:3c:ac:78:c1:ef:64:67:d1:bd:e0:
18:13:85:0d:4c:4e:7c:22:de:2d:be:98:d3:da:45:
39:7f:b5:cc:4e:ee:4a:fb:91:15:65:be:6a:b8:fc:
36:94:40:c7:6d:64:5d:5d:4d:d5:47:58:27:e9:2b:
8f:2e:13:12:75:9a:b6:55:70:e9:57:42:f6:10:e8:
ce:5e:77:13:0a:c9:43:a7:b1:90:66:96:46:e0:7d:
5c:2c:56:ae:cb:7d:a1:7d:90:e4:8b:31:da:6b:5e:
5f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:9A:93:43:0D:46:36:D8:80:F2:70:B9:4F:30:0E:4C:E3:1A:DE:9A
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.35.0/24
46.202.85.0-46.202.86.255
46.203.148.0/24
46.203.178.0/24
91.124.17.0/24
91.124.68.0-91.124.79.255
91.124.100.0-91.124.111.255
91.124.212.0/22
91.124.224.0/22
92.113.70.0-92.113.73.255
92.113.101.0-92.113.102.255
92.113.104.0/23
92.113.159.0-92.113.160.255
95.134.12.0/22
95.134.63.0/24
95.134.79.0-95.134.80.255
95.134.88.0/24
95.134.95.0/24
95.134.128.0/24
95.134.134.0/24
95.134.151.0/24
95.135.104.0/24
95.135.154.0/23
95.135.168.0/24
95.135.232.0/24
95.135.238.0/24
95.135.242.0/24
178.92.45.0/24
178.94.127.0/24
178.94.174.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:68:09:eb:24:a4:fc:36:63:25:dc:0e:a9:b3:11:2e:a5:f7:
1d:15:28:4d:8e:2c:da:b6:ea:77:5d:7f:72:2a:77:c4:18:6f:
03:30:05:44:57:78:b0:e7:28:35:18:aa:1a:fe:6a:26:18:d7:
ff:0a:8d:bb:61:e1:d4:43:57:54:2b:3a:96:df:fa:31:69:f4:
b6:ef:d0:3a:44:17:cb:b1:01:47:27:25:e4:bd:69:0f:32:e5:
7c:e6:82:ad:a9:28:aa:35:ca:59:ad:18:fb:37:d2:a0:84:a4:
43:1b:63:ad:03:86:3a:d7:a5:c8:ff:68:ad:75:da:01:4d:ff:
0f:ca:94:b2:0f:ac:a9:5b:87:b2:38:31:61:43:56:50:29:50:
13:2d:5b:19:45:9d:49:cb:6a:03:56:23:30:e5:63:04:aa:e3:
b9:29:09:d9:54:a1:54:6f:83:7d:6e:0f:f0:34:56:ef:21:8d:
cb:9d:97:4e:8f:37:50:c5:27:4a:9c:b6:1e:38:1a:cd:63:b7:
15:f1:eb:2f:2a:2a:da:61:6f:20:33:c1:e1:13:c8:cb:a3:71:
b0:ec:84:19:20:ed:35:fb:e8:ac:5e:3b:65:b1:5d:94:c6:6d:
7c:69:3c:69:87:6d:ec:3c:5e:bd:3f:b5:e0:6b:b0:2f:91:0d:
69:67:88:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:37:07 2026 by rpki-client