Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401776.roa
File: AS401776.roa (raw, json)
Hash identifier: C4EPE9/6OFkSefS+L7sRMqNQATBC5UB9o2vNgtG+C3Y=
Subject key identifier: 3B:E0:9B:01:02:D7:3B:73:3E:46:2C:22:2F:1F:F1:F6:C5:59:6F:B3
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 6C7399C178870D6C6929A375FDD527210B2A1A40
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401776.roa
Signing time: Wed 01 Apr 2026 08:46:43 +0000
ROA not before: Wed 01 Apr 2026 08:41:43 +0000
ROA not after: Wed 31 Mar 2027 08:46:43 +0000
asID: 401776
IP address blocks: 46.202.12.0/24 maxlen: 24
178.92.14.0/24 maxlen: 24
178.93.97.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:73:99:c1:78:87:0d:6c:69:29:a3:75:fd:d5:27:21:0b:2a:1a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 1 08:41:43 2026 GMT
Not After : Mar 31 08:46:43 2027 GMT
Subject: CN=3BE09B0102D73B733E462C222F1FF1F6C5596FB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2f:6d:ed:14:58:d5:90:b7:e2:2d:2d:0f:11:
85:a3:8e:c2:f9:82:b5:76:d7:bc:81:58:54:da:8a:
3d:97:d8:b3:c3:2d:09:38:6a:76:fd:e0:9b:24:4a:
1d:8b:2d:81:54:f4:94:67:d5:0f:05:58:07:46:29:
b1:ab:d0:ca:a0:0d:2b:29:9b:b5:73:51:ce:29:1d:
2a:29:bc:3c:36:4c:16:8c:37:c5:bc:f0:4c:7b:4b:
66:9a:a2:08:b6:b4:06:a4:db:36:9c:53:cb:20:5a:
49:99:77:63:46:4e:16:7e:33:ef:45:1f:db:0c:0a:
4b:65:05:a0:3c:88:a5:62:4a:4c:34:82:d2:47:d4:
c5:81:2d:ba:86:ce:53:1f:3b:f4:c9:11:b7:f3:9b:
9a:ef:f8:5c:d3:f8:78:ff:15:43:a7:7d:d5:71:f9:
c9:19:91:98:59:e6:73:e2:63:94:42:dd:43:9d:da:
89:65:9c:cb:5a:6d:7f:d0:d6:d5:ec:b3:19:5d:9d:
eb:3e:89:b1:3e:b4:96:b2:88:fe:78:9d:09:45:4b:
e0:86:d7:81:3b:68:35:d1:16:bd:d9:c9:9e:3a:2d:
44:fb:98:e6:fe:33:b9:6e:af:ec:08:fd:82:99:57:
62:4b:52:60:35:ae:ff:39:f9:e6:8a:02:c0:9c:b1:
92:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E0:9B:01:02:D7:3B:73:3E:46:2C:22:2F:1F:F1:F6:C5:59:6F:B3
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS401776.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.12.0/24
178.92.14.0/24
178.93.97.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:dc:fd:c5:49:38:ba:a9:14:75:ab:7a:49:1a:66:b3:f2:7a:
71:7f:38:d7:19:ca:d0:b5:f9:2c:81:a3:98:82:3a:ae:0b:7a:
5b:4e:96:55:74:f6:41:5e:fd:3c:31:44:4b:93:f7:53:fb:ce:
27:24:f6:dd:4f:9c:4a:24:d2:95:72:08:7c:52:17:df:22:d6:
b7:95:14:fb:b0:70:c3:56:e8:62:7e:50:e1:5a:dd:ef:e7:96:
4d:1c:4f:9f:e0:cc:51:4a:fa:4e:e8:2f:9b:f7:b6:62:1e:bc:
41:04:6c:5c:6b:6e:82:6b:6f:ec:7b:f2:35:c4:4c:19:66:7c:
a5:d0:af:ac:a1:ff:39:42:21:eb:be:4f:6e:b5:d3:a2:df:78:
dc:ac:da:0c:fe:1a:ca:95:52:66:ea:c9:30:1e:50:cf:5f:f6:
cc:35:11:ac:5e:73:46:e4:fc:0f:38:12:c3:d5:8a:c9:94:9b:
7c:f2:29:f3:b6:e0:97:f5:38:bf:0c:e2:05:8b:0e:87:b2:10:
fc:87:15:a3:03:55:9b:e3:aa:16:2a:7a:6a:a9:31:06:12:f7:
f6:12:44:bb:35:95:11:15:0d:b5:41:27:1b:1b:03:9e:29:76:
ab:d6:f5:32:d9:e8:79:1d:6c:73:88:66:4d:27:2e:95:33:4a:
cb:8e:04:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:54:51 2026 by rpki-client