Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS197359.roa
File: AS197359.roa (raw, json)
Hash identifier: JZoBZW9CHKbLX5HznKbGPehe1JZvnv7xfCgTTERZQIs=
Subject key identifier: 2B:2E:5C:06:B9:71:0A:80:AC:EC:DE:D1:E0:59:4C:FE:1B:AB:66:99
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 24553149E82CFB204D60B19D032B19F5338F160B
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS197359.roa
Signing time: Thu 04 Jun 2026 13:16:10 +0000
ROA not before: Thu 04 Jun 2026 13:11:10 +0000
ROA not after: Thu 03 Jun 2027 13:16:10 +0000
asID: 197359
IP address blocks: 95.134.142.0/24 maxlen: 24
95.134.157.0/24 maxlen: 24
178.93.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:55:31:49:e8:2c:fb:20:4d:60:b1:9d:03:2b:19:f5:33:8f:16:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 4 13:11:10 2026 GMT
Not After : Jun 3 13:16:10 2027 GMT
Subject: CN=2B2E5C06B9710A80ACECDED1E0594CFE1BAB6699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:77:01:29:8e:8a:a8:c6:4d:f9:7f:4e:de:da:
fb:e4:b9:8f:5f:ba:40:f6:70:bf:a2:77:dd:41:1c:
97:67:dc:c5:85:7f:ce:7e:13:46:97:a9:c4:db:0c:
0a:02:5e:e5:0f:f1:d8:86:1f:a9:9e:f7:a7:30:4c:
ba:27:52:0f:98:23:e9:66:36:73:aa:bd:9d:57:ef:
40:52:7b:02:96:ba:69:84:ad:29:70:6d:70:a5:a1:
22:34:04:79:90:0b:f6:1e:f0:4c:6e:34:7d:ae:fc:
67:65:fc:ec:a2:2a:25:41:ab:d2:ab:31:c2:6b:4e:
2f:f8:c9:ad:25:eb:02:55:92:40:c0:e5:e2:bc:a0:
d6:9e:14:b7:1e:f0:35:3c:e1:5e:e4:0d:01:04:09:
30:f8:52:61:d2:07:57:fc:96:7f:23:e6:c6:cb:4b:
5d:db:f5:01:86:35:08:26:f3:8a:61:f4:bb:3a:14:
38:1c:0d:33:f0:9d:1c:5d:69:62:10:73:e5:f1:ba:
32:84:59:d6:dd:45:f6:a6:d6:13:fc:36:ea:8c:92:
e2:af:85:be:06:41:97:98:34:b2:60:87:85:2b:13:
52:ea:dd:b7:d2:31:fe:22:ac:e0:16:33:e4:ea:bb:
f1:27:07:7d:9a:20:95:27:c8:3e:b6:d0:3e:4d:fc:
12:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:2E:5C:06:B9:71:0A:80:AC:EC:DE:D1:E0:59:4C:FE:1B:AB:66:99
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS197359.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.134.142.0/24
95.134.157.0/24
178.93.164.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:bc:a1:2d:e3:cd:ad:1f:7e:e6:48:e4:bf:0e:df:d6:c1:73:
bd:cc:df:b8:7f:51:1a:9b:3a:20:84:ca:1a:45:1a:0e:f7:c0:
04:fb:de:f4:d8:37:b3:d8:9b:25:17:4e:71:83:88:dc:14:21:
40:2c:2d:fb:5a:25:68:1d:f1:b4:2d:f6:2e:60:61:1c:23:9a:
34:15:50:07:3e:8c:2e:c7:33:82:f4:f9:7c:c0:65:4c:bd:93:
44:d7:f0:7d:06:d5:af:b8:19:8a:5f:28:d7:2c:94:ee:07:2b:
f7:e3:e7:84:45:4a:04:5c:36:89:8e:d8:86:bd:4f:ac:9d:9e:
90:dd:65:54:a6:d2:bf:30:6f:f5:93:1f:dd:6e:07:fc:42:26:
fd:3b:48:2d:1c:74:ec:21:f1:bd:2e:97:bb:6a:b6:af:c2:87:
f4:37:26:5c:b9:34:4b:bc:45:cf:74:e6:33:e2:ce:12:69:17:
c9:57:02:98:99:48:0f:8b:83:f7:ea:3a:30:99:45:66:b1:79:
ad:c5:a7:b3:b0:68:c5:0f:bf:f1:40:e7:6a:5b:e9:37:c5:c1:
0e:2a:8e:87:7f:ca:ca:33:6d:f9:e0:22:5d:48:cc:18:5d:1b:
ef:f1:81:93:a7:36:17:23:64:cb:ab:b5:83:88:c0:32:74:12:
42:df:53:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:35:00 2026 by rpki-client