Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214143.roa
File: AS214143.roa (raw, json)
Hash identifier: QQUT0lH7mJlJHCHZTTiAJgU+koqAFBcdo3LkJXJCZdc=
Subject key identifier: E1:74:2E:C1:EA:32:A1:16:08:A5:AA:48:E8:C6:84:07:B5:D2:F7:2E
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 5DD2A59F160743C4FA51C888FFFCD55F5B295427
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214143.roa
Signing time: Wed 08 Apr 2026 12:35:54 +0000
ROA not before: Wed 08 Apr 2026 12:30:54 +0000
ROA not after: Wed 07 Apr 2027 12:35:54 +0000
asID: 214143
IP address blocks: 46.203.2.0/24 maxlen: 24
92.112.244.0/24 maxlen: 24
92.112.245.0/24 maxlen: 24
95.134.78.0/24 maxlen: 24
95.134.82.0/24 maxlen: 24
178.92.102.0/24 maxlen: 24
178.92.104.0/24 maxlen: 24
178.92.105.0/24 maxlen: 24
178.92.107.0/24 maxlen: 24
178.92.109.0/24 maxlen: 24
178.92.153.0/24 maxlen: 24
178.92.166.0/24 maxlen: 24
178.92.185.0/24 maxlen: 24
178.92.197.0/24 maxlen: 24
178.92.198.0/24 maxlen: 24
178.92.201.0/24 maxlen: 24
178.92.211.0/24 maxlen: 24
178.92.215.0/24 maxlen: 24
178.92.223.0/24 maxlen: 24
178.92.224.0/24 maxlen: 24
178.92.226.0/24 maxlen: 24
178.92.229.0/24 maxlen: 24
178.92.230.0/24 maxlen: 24
178.92.235.0/24 maxlen: 24
178.92.237.0/24 maxlen: 24
178.92.249.0/24 maxlen: 24
178.92.251.0/24 maxlen: 24
178.93.4.0/24 maxlen: 24
178.93.9.0/24 maxlen: 24
178.93.27.0/24 maxlen: 24
178.93.40.0/24 maxlen: 24
178.93.42.0/24 maxlen: 24
178.93.122.0/24 maxlen: 24
178.93.141.0/24 maxlen: 24
178.93.142.0/24 maxlen: 24
178.93.145.0/24 maxlen: 24
178.93.147.0/24 maxlen: 24
178.93.152.0/24 maxlen: 24
178.93.155.0/24 maxlen: 24
178.93.162.0/24 maxlen: 24
178.93.167.0/24 maxlen: 24
178.93.210.0/24 maxlen: 24
178.93.214.0/24 maxlen: 24
178.93.218.0/24 maxlen: 24
178.93.228.0/24 maxlen: 24
178.93.233.0/24 maxlen: 24
178.94.12.0/24 maxlen: 24
178.94.16.0/24 maxlen: 24
178.94.18.0/24 maxlen: 24
178.94.33.0/24 maxlen: 24
178.94.35.0/24 maxlen: 24
178.94.40.0/24 maxlen: 24
178.94.82.0/24 maxlen: 24
178.94.104.0/24 maxlen: 24
178.94.118.0/24 maxlen: 24
178.94.210.0/24 maxlen: 24
178.94.220.0/24 maxlen: 24
178.94.234.0/24 maxlen: 24
178.94.238.0/24 maxlen: 24
178.94.239.0/24 maxlen: 24
178.94.240.0/24 maxlen: 24
178.94.243.0/24 maxlen: 24
178.95.229.0/24 maxlen: 24
178.95.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:d2:a5:9f:16:07:43:c4:fa:51:c8:88:ff:fc:d5:5f:5b:29:54:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 8 12:30:54 2026 GMT
Not After : Apr 7 12:35:54 2027 GMT
Subject: CN=E1742EC1EA32A11608A5AA48E8C68407B5D2F72E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:33:da:8e:55:cd:cc:64:7a:3a:da:89:a5:4c:
37:5e:4f:af:20:74:85:23:4b:2b:8e:d6:03:dc:9c:
11:4f:20:c4:9c:95:60:45:f6:02:36:d9:1a:0a:b3:
93:4a:21:7a:e3:d4:b3:2e:97:c5:12:0c:8c:a6:6e:
2f:85:1a:10:9f:e3:d8:52:8a:70:9a:c3:f9:62:c8:
ba:50:b3:01:87:fd:7f:98:e0:48:3b:a9:d3:56:12:
28:c6:76:64:fc:61:24:19:d4:fc:d3:42:b1:b8:24:
a5:3a:07:8c:fc:8f:a0:f4:9d:e2:77:af:3a:05:55:
56:42:11:75:58:26:29:ce:f4:d3:96:d9:c8:d3:61:
be:04:a8:d4:02:81:09:e5:22:93:2b:b9:8e:54:28:
5a:e2:d5:b6:05:ca:4d:b9:4f:b4:5d:13:fc:e3:58:
68:86:ed:2f:e1:30:f9:d2:00:91:85:0e:67:2f:eb:
1e:26:a2:16:16:44:9c:23:5d:80:bd:c4:96:ed:db:
55:68:d3:9d:09:61:b2:c1:37:73:42:be:b2:6d:19:
3f:f1:af:d3:d7:35:8c:10:5d:57:05:dc:87:3b:ee:
1f:78:cf:3a:19:a9:5a:86:6a:ca:75:cc:6b:3d:19:
94:b6:3e:31:33:1c:fd:6b:f9:9e:e7:0d:42:9b:b8:
6b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:74:2E:C1:EA:32:A1:16:08:A5:AA:48:E8:C6:84:07:B5:D2:F7:2E
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214143.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.2.0/24
92.112.244.0/23
95.134.78.0/24
95.134.82.0/24
178.92.102.0/24
178.92.104.0/23
178.92.107.0/24
178.92.109.0/24
178.92.153.0/24
178.92.166.0/24
178.92.185.0/24
178.92.197.0-178.92.198.255
178.92.201.0/24
178.92.211.0/24
178.92.215.0/24
178.92.223.0-178.92.224.255
178.92.226.0/24
178.92.229.0-178.92.230.255
178.92.235.0/24
178.92.237.0/24
178.92.249.0/24
178.92.251.0/24
178.93.4.0/24
178.93.9.0/24
178.93.27.0/24
178.93.40.0/24
178.93.42.0/24
178.93.122.0/24
178.93.141.0-178.93.142.255
178.93.145.0/24
178.93.147.0/24
178.93.152.0/24
178.93.155.0/24
178.93.162.0/24
178.93.167.0/24
178.93.210.0/24
178.93.214.0/24
178.93.218.0/24
178.93.228.0/24
178.93.233.0/24
178.94.12.0/24
178.94.16.0/24
178.94.18.0/24
178.94.33.0/24
178.94.35.0/24
178.94.40.0/24
178.94.82.0/24
178.94.104.0/24
178.94.118.0/24
178.94.210.0/24
178.94.220.0/24
178.94.234.0/24
178.94.238.0-178.94.240.255
178.94.243.0/24
178.95.229.0/24
178.95.245.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:8d:03:97:8a:2b:0a:28:31:2e:5f:e9:c7:5f:4c:f5:2a:c3:
7e:6e:61:8d:7e:26:da:8d:b1:7b:72:b1:ac:4a:00:9a:6b:19:
6a:a9:14:3d:bb:47:f4:01:73:27:fa:00:1b:67:55:d0:2a:c0:
ee:57:18:fc:1a:81:8c:66:26:b6:41:14:1e:6f:05:18:33:00:
0d:c3:80:dd:af:5f:f1:51:f0:54:71:55:da:9c:94:6a:ea:ae:
29:fc:ed:8b:b0:ff:ed:af:8c:7e:8a:f0:79:65:b5:1a:36:a4:
98:01:08:e7:a3:24:27:1b:3f:33:ec:78:12:f3:d4:6e:40:41:
a6:d0:bd:f1:17:11:9e:b8:ff:85:87:09:56:93:97:52:08:ad:
27:5b:9a:fd:16:dc:9a:88:c5:95:32:f7:4d:b7:51:61:ee:03:
54:04:28:21:1a:12:7a:9e:ac:be:20:3d:13:92:18:e5:de:9b:
a5:ec:59:37:71:f8:08:89:87:43:bc:17:8a:ae:80:5f:b6:c5:
ed:3a:c0:60:30:37:93:6f:0d:2a:60:fc:e2:85:35:b5:1c:9b:
db:60:79:27:58:00:bf:cb:89:7d:c9:e6:5b:64:62:29:24:2b:
50:c7:96:17:fb:ad:12:c2:d6:f3:3d:d3:c2:ba:f0:27:34:13:
ec:74:0d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:18:19 2026 by rpki-client