Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS215304.roa
File: AS215304.roa (raw, json)
Hash identifier: asHcbL0Mhr0fxKm5GoKNqG9opu/NcZVobzMr47DxOhI=
Subject key identifier: A0:C7:27:98:83:C2:F9:CE:3C:A7:59:47:F1:DE:15:0C:52:F9:9E:CD
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 144C6F892CA69C205383A5ED20F9F19094E935CA
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS215304.roa
Signing time: Thu 02 Apr 2026 00:24:01 +0000
ROA not before: Thu 02 Apr 2026 00:19:01 +0000
ROA not after: Thu 01 Apr 2027 00:24:01 +0000
asID: 215304
IP address blocks: 46.203.98.0/24 maxlen: 24
46.203.203.0/24 maxlen: 24
92.113.124.0/23 maxlen: 24
92.113.142.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:4c:6f:89:2c:a6:9c:20:53:83:a5:ed:20:f9:f1:90:94:e9:35:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 2 00:19:01 2026 GMT
Not After : Apr 1 00:24:01 2027 GMT
Subject: CN=A0C7279883C2F9CE3CA75947F1DE150C52F99ECD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:84:a6:bd:fb:65:11:7e:0c:72:c8:95:cd:59:
df:d1:52:40:23:05:63:29:c6:34:b0:fa:97:d7:36:
9e:69:b0:22:7d:e7:bc:12:b8:c0:52:d2:2c:1b:47:
29:4b:a5:a5:4b:f1:6b:40:da:4e:68:71:da:52:27:
39:31:9c:bd:63:8e:29:39:87:a8:2b:ba:6c:e4:54:
a7:65:01:28:84:d8:87:b8:af:13:4b:2d:65:af:e1:
8b:80:98:a4:5a:bb:1b:e3:1c:95:61:8d:f6:93:e4:
fe:9c:49:b0:e5:39:91:54:95:7a:fa:3e:4b:2f:0e:
40:b7:2b:19:e4:22:64:30:c0:21:96:a8:ad:98:34:
47:a9:e6:93:06:27:6a:a6:2e:02:ec:df:df:ff:15:
e8:8b:23:87:0b:61:b4:c3:54:ff:d7:af:ce:12:5a:
8f:c7:58:69:37:0c:35:64:e1:ff:8c:0f:26:f2:5e:
81:db:ef:f9:84:bc:f0:62:a6:89:55:1c:79:a0:c0:
56:30:8f:0c:b0:3f:1a:f3:74:52:d7:bd:2b:3d:75:
32:e5:97:d0:d1:cb:59:4f:6d:6a:de:5d:cc:e2:4e:
fe:d8:9e:88:e8:8a:7b:9b:07:33:d0:58:6d:4f:68:
92:36:18:dd:73:83:e1:96:a8:4a:58:ed:3f:13:c7:
09:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C7:27:98:83:C2:F9:CE:3C:A7:59:47:F1:DE:15:0C:52:F9:9E:CD
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS215304.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.98.0/24
46.203.203.0/24
92.113.124.0/23
92.113.142.0/23
Signature Algorithm: sha256WithRSAEncryption
64:58:34:45:12:5b:8c:9e:d1:b7:ee:97:21:d1:9b:9a:6f:f1:
74:b5:d2:a7:74:02:fa:9f:cd:70:63:a7:33:7f:48:fc:b0:cc:
03:c6:bf:17:a6:f7:b1:21:7f:f3:6b:af:c4:e4:9c:29:9a:53:
fd:2b:97:bf:08:26:7c:8e:bf:8a:4b:59:20:f5:fb:52:f6:ec:
b4:ac:9c:66:6d:2f:ab:e9:31:16:0a:81:25:da:34:b5:0f:1f:
88:22:cb:86:80:ce:43:c8:a3:7e:a3:1d:47:c9:b5:49:14:18:
b8:0e:6e:17:ba:09:e2:50:b6:6e:78:48:36:e8:6e:77:5e:b9:
b2:46:13:62:85:0e:1b:45:7f:0f:12:37:89:84:cc:bb:8e:dd:
28:b1:14:cf:00:47:fb:39:59:0e:1d:5e:2a:2a:4b:6d:2e:91:
a4:d8:88:e9:6f:2c:7b:cc:bd:51:56:1c:34:3a:71:ba:10:6a:
34:23:99:7a:7b:45:b4:48:f3:cd:9d:9e:e3:1d:03:2b:c2:27:
99:f4:1d:87:a4:3c:00:e3:fd:05:e1:c7:e2:c5:5f:d8:b6:6a:
93:6b:1f:e2:49:35:15:71:8c:29:27:26:ff:c9:aa:98:5a:88:
8c:51:d9:e7:f0:6f:a3:d2:ca:c5:93:f8:1d:6d:99:4e:1d:39:
45:98:16:52
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgIUFExviSymnCBTg6XtIPnxkJTpNcowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNjA0MDIwMDE5MDFaFw0yNzA0MDEwMDI0MDFaMDMxMTAvBgNV
BAMTKEEwQzcyNzk4ODNDMkY5Q0UzQ0E3NTk0N0YxREUxNTBDNTJGOTlFQ0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDohKa9+2URfgxyyJXNWd/RUkAj
BWMpxjSw+pfXNp5psCJ957wSuMBS0iwbRylLpaVL8WtA2k5ocdpSJzkxnL1jjik5
h6grumzkVKdlASiE2Ie4rxNLLWWv4YuAmKRauxvjHJVhjfaT5P6cSbDlOZFUlXr6
PksvDkC3KxnkImQwwCGWqK2YNEep5pMGJ2qmLgLs39//FeiLI4cLYbTDVP/Xr84S
Wo/HWGk3DDVk4f+MDybyXoHb7/mEvPBipolVHHmgwFYwjwywPxrzdFLXvSs9dTLl
l9DRy1lPbWreXcziTv7YnojoinubBzPQWG1PaJI2GN1zg+GWqEpY7T8TxwmxAgMB
AAGjggIcMIICGDAdBgNVHQ4EFgQUoMcnmIPC+c48p1lH8d4VDFL5ns0wHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE1MzA0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQALsti
AwQALsvLAwQBXHF8AwQBXHGOMA0GCSqGSIb3DQEBCwUAA4IBAQBkWDRFEluMntG3
7pch0Zuab/F0tdKndAL6n81wY6czf0j8sMwDxr8XpvexIX/za6/E5JwpmlP9K5e/
CCZ8jr+KS1kg9ftS9uy0rJxmbS+r6TEWCoEl2jS1Dx+IIsuGgM5DyKN+ox1HybVJ
FBi4Dm4XugniULZueEg26G53XrmyRhNihQ4bRX8PEjeJhMy7jt0osRTPAEf7OVkO
HV4qKkttLpGk2Ijpbyx7zL1RVhw0OnG6EGo0I5l6e0W0SPPNnZ7jHQMrwieZ9B2H
pDwA4/0F4cfixV/YtmqTax/iSTUVcYwpJyb/yaqYWoiMUdnn8G+j0srFk/gdbZlO
HTlFmBZS
-----END CERTIFICATE-----
Generated at Fri Apr 17 14:03:43 2026 by rpki-client