Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5065.roa
File: AS5065.roa (raw, json)
Hash identifier: YLtNRqjqdQpL8DOGHiyV/W0nNy8bNvryzOBCkJIFi/0=
Subject key identifier: E4:F7:AE:FE:7A:90:97:C5:5E:4C:3C:8B:AA:E2:34:57:61:22:72:7B
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 495FCF1840BC2A4936A042EF933B066C7D7F05D1
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5065.roa
Signing time: Mon 01 Jun 2026 05:24:21 +0000
ROA not before: Mon 01 Jun 2026 05:19:21 +0000
ROA not after: Mon 31 May 2027 05:24:21 +0000
asID: 5065
IP address blocks: 91.124.150.0/23 maxlen: 24
91.124.210.0/23 maxlen: 24
92.112.158.0/24 maxlen: 24
95.135.52.0/23 maxlen: 24
95.135.56.0/23 maxlen: 24
95.135.74.0/23 maxlen: 24
95.135.86.0/23 maxlen: 24
95.135.92.0/23 maxlen: 24
95.135.94.0/23 maxlen: 24
95.135.106.0/23 maxlen: 24
95.135.108.0/24 maxlen: 24
95.135.118.0/24 maxlen: 24
95.135.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:5f:cf:18:40:bc:2a:49:36:a0:42:ef:93:3b:06:6c:7d:7f:05:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 1 05:19:21 2026 GMT
Not After : May 31 05:24:21 2027 GMT
Subject: CN=E4F7AEFE7A9097C55E4C3C8BAAE234576122727B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1b:12:09:c7:1d:65:a9:84:ba:ba:c3:cd:ec:
50:eb:76:00:0c:40:e6:09:ba:9c:ab:90:2c:48:6f:
8c:d3:bf:6f:ba:62:87:0a:ec:70:ca:fe:07:6f:e2:
f2:b6:be:98:49:c3:31:3a:54:22:98:dd:44:c0:17:
85:7f:58:8a:11:04:60:e9:69:cd:60:03:31:e9:7d:
ca:f7:ed:92:33:e8:8d:5c:2f:c0:fe:7b:f2:b6:95:
8b:50:4b:e5:81:4d:af:d9:9a:e8:55:31:f1:92:84:
ec:eb:e7:e7:25:96:37:af:4d:92:6b:66:51:6f:8f:
5d:bf:40:89:ec:23:ad:dd:3f:85:0b:b5:5f:5c:bf:
ac:dd:54:ee:e2:cb:03:1c:c7:ee:cb:8a:55:91:d9:
05:17:b0:99:7e:4c:e1:8a:2c:8c:71:7e:49:03:cd:
b9:56:b9:1a:c7:2e:06:28:14:1e:e1:35:27:f5:bf:
0d:1e:37:30:ef:98:77:96:73:c7:39:2c:c6:71:2f:
0f:1c:8d:7e:12:53:ee:aa:80:45:07:2f:99:cd:aa:
c1:02:e8:ff:9c:1d:2d:04:ad:79:93:f9:83:eb:be:
e6:57:07:5e:f4:96:90:4f:a3:08:36:c5:fd:c1:9b:
16:ad:5b:7f:9c:c3:58:5b:e1:ab:4f:3d:6c:47:f9:
87:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F7:AE:FE:7A:90:97:C5:5E:4C:3C:8B:AA:E2:34:57:61:22:72:7B
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5065.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.150.0/23
91.124.210.0/23
92.112.158.0/24
95.135.52.0/23
95.135.56.0/23
95.135.74.0/23
95.135.86.0/23
95.135.92.0/22
95.135.106.0-95.135.108.255
95.135.118.0/24
95.135.246.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e1:66:51:fa:69:5a:57:e1:99:31:01:68:08:37:80:75:23:
62:4a:07:44:63:e3:2a:4d:08:26:4b:6b:41:fa:c0:08:d3:0f:
75:2a:1d:78:d1:6f:67:7e:d8:6a:74:2b:ec:c7:f4:f8:fa:ce:
17:85:2f:b8:0e:c4:29:79:9c:0c:be:3e:17:0b:ef:10:fc:d7:
bf:ee:3a:32:79:4f:87:7c:14:d9:9e:96:1e:e2:3b:e3:83:52:
6b:2b:12:df:91:2b:69:6c:1e:81:cc:4e:42:94:db:25:9a:07:
c2:fd:21:fb:f4:40:19:18:33:da:93:a6:85:ed:ae:50:cd:63:
43:c3:5c:53:e2:57:e0:fe:c8:ca:4c:9a:60:6f:78:22:67:36:
2d:3d:fa:6c:4f:8e:9d:8b:7c:e0:b4:b5:8b:2b:e3:a8:cf:0c:
16:74:cc:57:d7:00:43:c0:86:b4:e0:7b:cf:16:22:b9:11:b0:
47:33:06:c0:ff:f6:7b:87:37:54:71:a6:f2:2f:5f:e5:48:df:
d7:78:32:11:26:f9:d8:84:96:ea:1e:42:53:05:92:14:5d:57:
24:3e:9f:15:86:80:f6:24:8d:1a:f9:06:69:90:61:a0:b9:5b:
8b:b9:c9:8a:13:b9:d6:bd:fe:24:49:4e:56:8e:5c:ca:e9:94:
77:9c:41:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:45:19 2026 by rpki-client