Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS208594.roa
File: AS208594.roa (raw, json)
Hash identifier: QVoFnUmzel+eGSyQ2npSJ+Y3llhBHBXYuuRiuRUupqY=
Subject key identifier: B3:CC:24:D7:AD:20:4B:0B:22:5D:FA:5E:24:B8:DF:87:51:8B:E7:D2
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 78FEE911E7C438EF05A01A2CB2F3F56DAA58AB44
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS208594.roa
Signing time: Mon 02 Feb 2026 07:58:50 +0000
ROA not before: Mon 02 Feb 2026 07:53:50 +0000
ROA not after: Mon 01 Feb 2027 07:58:50 +0000
asID: 208594
IP address blocks: 92.113.42.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:fe:e9:11:e7:c4:38:ef:05:a0:1a:2c:b2:f3:f5:6d:aa:58:ab:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 2 07:53:50 2026 GMT
Not After : Feb 1 07:58:50 2027 GMT
Subject: CN=B3CC24D7AD204B0B225DFA5E24B8DF87518BE7D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6f:3d:3f:43:62:25:ce:d0:2b:16:48:b5:18:
4f:8a:cb:ad:db:9d:1a:3e:ee:9a:40:50:9c:c1:ac:
93:87:6c:7c:f5:a2:3c:eb:87:be:b3:54:0e:44:bb:
08:13:79:59:6b:dc:a8:d9:ca:5d:82:9d:37:ca:34:
80:47:3b:0f:8d:73:61:6c:c8:98:1f:b1:6f:34:37:
36:b3:08:b8:b8:c3:1d:fe:f9:b4:85:72:ae:79:77:
92:44:aa:9e:5c:36:1a:b8:c0:f5:18:93:a2:17:a6:
50:9a:ee:81:27:79:0d:04:32:4d:72:c3:73:91:f9:
67:38:a8:32:01:f1:2c:f9:a8:9d:11:d4:1a:88:02:
2d:13:fc:d4:ca:a6:a7:7d:8f:93:28:12:e5:fa:3c:
77:d7:a9:78:2b:e5:b2:de:dc:c6:24:5e:f5:9c:68:
6f:62:70:87:5e:1e:f0:ca:86:24:30:fb:de:97:37:
7f:89:83:40:b5:e4:e0:b3:1e:30:2f:01:fd:92:68:
b4:ed:13:8d:fd:21:16:89:20:2a:0c:35:3d:95:bd:
aa:3a:fc:ac:73:83:4f:4e:05:0b:86:6c:d5:8f:0b:
7f:4e:41:e3:98:51:f8:d8:f9:5e:9a:30:84:26:d2:
1a:e2:e1:2d:54:4f:00:15:8a:c9:a8:8c:46:3a:45:
59:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CC:24:D7:AD:20:4B:0B:22:5D:FA:5E:24:B8:DF:87:51:8B:E7:D2
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS208594.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.113.42.0/24
Signature Algorithm: sha256WithRSAEncryption
53:b3:ea:1c:8d:03:1e:6a:8d:52:d8:af:b9:a3:5d:f4:b0:94:
38:87:fe:c3:61:b8:22:86:84:a8:37:b7:af:f5:26:31:be:93:
e3:e9:82:61:67:65:e7:28:30:19:dd:a1:58:6d:37:8c:12:b3:
c1:12:25:51:9c:71:46:53:03:45:20:43:d4:40:72:32:7a:44:
b9:09:64:10:32:7a:7a:f7:7f:26:c3:79:d4:b5:ac:cb:d2:48:
e9:4e:92:20:fb:a7:f6:ea:03:6b:3d:50:d5:3f:3a:ce:ee:d1:
dc:bf:fe:81:4e:56:c6:a6:8e:ad:1b:8f:27:b6:e6:ec:e5:d4:
86:ec:a2:cb:95:ac:36:73:69:d7:b8:2b:23:e8:5f:ee:50:bc:
d8:e7:b0:e6:cb:4d:cf:5a:06:5a:10:7a:dc:2e:61:09:15:8c:
90:e4:03:8b:d7:ec:b8:6a:9e:ba:fb:b0:ad:0c:66:61:ee:65:
7f:68:a4:26:11:05:42:43:41:14:d5:b6:0c:a4:2a:43:1d:c4:
7a:57:6c:25:5e:4a:80:46:f5:64:23:5c:7b:79:97:f4:ed:d4:
b4:c2:bf:25:8f:1d:52:ef:ac:55:74:28:b5:9f:2e:68:c4:38:
67:94:85:03:17:be:12:42:ed:84:a3:32:cf:4d:c3:36:f0:c0:
74:a8:0b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:37:35 2026 by rpki-client