Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
File: AS54339.roa (raw, json)
Hash identifier: E4aIdk/aXHWfwKnD/o5X0pEgY8AWQqKh2TZFDgIEccg=
Subject key identifier: C8:AB:9C:1B:0D:6D:4A:DE:E6:84:C5:AA:1C:0C:B5:5D:C9:7C:4C:4E
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 1E55B5C58ED037C8E8B93AD2E011B5752595D099
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
Signing time: Tue 14 Apr 2026 00:03:05 +0000
ROA not before: Mon 13 Apr 2026 23:58:05 +0000
ROA not after: Tue 13 Apr 2027 00:03:05 +0000
asID: 54339
IP address blocks: 46.203.107.0/24 maxlen: 24
46.203.114.0/24 maxlen: 24
46.203.145.0/24 maxlen: 24
46.203.146.0/24 maxlen: 24
46.203.168.0/24 maxlen: 24
46.203.169.0/24 maxlen: 24
46.203.171.0/24 maxlen: 24
46.203.174.0/24 maxlen: 24
46.203.177.0/24 maxlen: 24
46.203.179.0/24 maxlen: 24
46.203.199.0/24 maxlen: 24
46.203.235.0/24 maxlen: 24
92.112.6.0/24 maxlen: 24
92.112.8.0/24 maxlen: 24
92.112.55.0/24 maxlen: 24
92.112.89.0/24 maxlen: 24
92.112.142.0/24 maxlen: 24
92.113.4.0/24 maxlen: 24
92.113.6.0/24 maxlen: 24
92.113.9.0/24 maxlen: 24
92.113.15.0/24 maxlen: 24
92.113.40.0/24 maxlen: 24
95.134.184.0/24 maxlen: 24
95.134.206.0/24 maxlen: 24
95.134.221.0/24 maxlen: 24
95.134.223.0/24 maxlen: 24
95.135.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:55:b5:c5:8e:d0:37:c8:e8:b9:3a:d2:e0:11:b5:75:25:95:d0:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 13 23:58:05 2026 GMT
Not After : Apr 13 00:03:05 2027 GMT
Subject: CN=C8AB9C1B0D6D4ADEE684C5AA1C0CB55DC97C4C4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:70:7f:3c:a0:de:37:0f:38:4e:32:3b:92:c5:
a5:e8:b9:2b:e5:ca:d3:da:df:28:82:6e:46:91:a6:
69:23:03:7b:86:13:58:bc:41:56:e1:b9:db:00:37:
0a:f8:47:74:5a:b4:49:f2:38:fe:e6:ef:45:6f:57:
7a:a2:b7:a3:6e:62:ad:a8:3b:c7:c8:ab:e6:6e:e5:
32:f7:93:4d:7a:35:26:ba:f2:4f:11:31:42:ea:1c:
c1:3f:ec:4a:a7:b7:29:e6:10:bc:60:67:b8:39:96:
cf:d8:5f:08:05:81:68:00:35:ea:df:43:03:6a:9b:
5e:1b:64:fc:9e:70:22:c3:ee:2a:f4:1e:a4:70:df:
55:b1:4b:ac:84:05:44:2f:f4:da:5e:97:3e:e7:68:
91:3b:e1:e3:c9:d5:be:03:cc:23:c8:f2:f1:09:86:
2b:d8:d8:48:5d:aa:3e:41:78:9d:b2:6e:98:79:27:
a1:1d:d0:be:35:0e:91:2e:3b:5f:24:27:ad:59:12:
c7:2a:67:0e:3e:13:d0:50:27:5d:42:56:8b:bb:79:
b1:12:4c:38:bf:ab:e6:e9:47:4c:0c:4e:c4:4e:9c:
d9:9e:0a:56:dc:71:7c:05:3b:49:57:f6:40:40:ce:
9c:c7:a2:08:b3:4a:cc:37:7c:78:bd:73:fe:27:8d:
e5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:AB:9C:1B:0D:6D:4A:DE:E6:84:C5:AA:1C:0C:B5:5D:C9:7C:4C:4E
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.107.0/24
46.203.114.0/24
46.203.145.0-46.203.146.255
46.203.168.0/23
46.203.171.0/24
46.203.174.0/24
46.203.177.0/24
46.203.179.0/24
46.203.199.0/24
46.203.235.0/24
92.112.6.0/24
92.112.8.0/24
92.112.55.0/24
92.112.89.0/24
92.112.142.0/24
92.113.4.0/24
92.113.6.0/24
92.113.9.0/24
92.113.15.0/24
92.113.40.0/24
95.134.184.0/24
95.134.206.0/24
95.134.221.0/24
95.134.223.0/24
95.135.72.0/24
Signature Algorithm: sha256WithRSAEncryption
42:9e:b6:b5:ab:6f:1a:1c:27:cc:9d:bb:05:96:f9:90:e7:cc:
c0:2d:08:5f:95:6c:a2:37:1d:fa:7d:4d:22:11:3a:e6:37:27:
22:01:e6:19:62:f8:26:c7:9e:4d:35:84:d2:6f:53:a8:07:cf:
45:f8:c6:22:cd:88:a3:62:83:86:1d:2b:e2:65:9b:21:61:66:
1c:6d:10:55:34:15:09:19:e8:30:67:9a:c1:e8:77:eb:66:07:
60:81:7b:20:30:64:2e:92:e9:d0:4d:59:03:a9:46:f9:eb:9b:
34:83:8e:ba:39:79:8e:f1:fc:3a:21:f4:f5:a2:55:7d:f3:87:
fb:42:35:a6:70:1e:8f:c8:b0:12:cf:9c:ad:18:be:d9:f8:0e:
03:73:da:fe:26:a2:24:e9:e9:16:5c:42:b4:0f:32:28:f6:ca:
7e:d0:4b:f9:77:b0:88:1d:36:34:58:f8:19:d5:92:db:0d:f4:
95:5e:2d:4a:c7:bd:cc:f5:c6:42:b5:b0:24:aa:4f:58:9e:16:
86:cd:2b:0f:af:62:80:c3:91:10:20:29:f2:a8:d2:7e:36:d5:
30:0f:00:02:d7:87:5c:0e:4b:d4:76:79:ae:5d:85:09:16:68:
91:3a:45:b5:28:e5:e0:7e:cd:08:f9:78:53:7d:b7:ac:19:60:
dc:fb:89:90
-----BEGIN CERTIFICATE-----
MIIFnDCCBISgAwIBAgIUHlW1xY7QN8jouTrS4BG1dSWV0JkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNjA0MTMyMzU4MDVaFw0yNzA0MTMwMDAzMDVaMDMxMTAvBgNV
BAMTKEM4QUI5QzFCMEQ2RDRBREVFNjg0QzVBQTFDMENCNTVEQzk3QzRDNEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgcH88oN43DzhOMjuSxaXouSvl
ytPa3yiCbkaRpmkjA3uGE1i8QVbhudsANwr4R3RatEnyOP7m70VvV3qit6NuYq2o
O8fIq+Zu5TL3k016NSa68k8RMULqHME/7EqntynmELxgZ7g5ls/YXwgFgWgANerf
QwNqm14bZPyecCLD7ir0HqRw31WxS6yEBUQv9Npelz7naJE74ePJ1b4DzCPI8vEJ
hivY2Ehdqj5BeJ2ybph5J6Ed0L41DpEuO18kJ61ZEscqZw4+E9BQJ11CVou7ebES
TDi/q+bpR0wMTsROnNmeClbccXwFO0lX9kBAzpzHogizSsw3fHi9c/4njeXPAgMB
AAGjggKmMIICojAdBgNVHQ4EFgQUyKucGw1tSt7mhMWqHAy1Xcl8TE4wHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNTQzMzkucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwgbsGCCsGAQUFBwEHAQH/BIGrMIGoMIGlBAIAATCBngME
AC7LawMEAC7LcjAMAwQALsuRAwQALsuSAwQBLsuoAwQALsurAwQALsuuAwQALsux
AwQALsuzAwQALsvHAwQALsvrAwQAXHAGAwQAXHAIAwQAXHA3AwQAXHBZAwQAXHCO
AwQAXHEEAwQAXHEGAwQAXHEJAwQAXHEPAwQAXHEoAwQAX4a4AwQAX4bOAwQAX4bd
AwQAX4bfAwQAX4dIMA0GCSqGSIb3DQEBCwUAA4IBAQBCnra1q28aHCfMnbsFlvmQ
58zALQhflWyiNx36fU0iETrmNyciAeYZYvgmx55NNYTSb1OoB89F+MYizYijYoOG
HSviZZshYWYcbRBVNBUJGegwZ5rB6HfrZgdggXsgMGQukunQTVkDqUb565s0g466
OXmO8fw6IfT1olV984f7QjWmcB6PyLASz5ytGL7Z+A4Dc9r+JqIk6ekWXEK0DzIo
9sp+0Ev5d7CIHTY0WPgZ1ZLbDfSVXi1Kx73M9cZCtbAkqk9YnhaGzSsPr2KAw5EQ
ICnyqNJ+NtUwDwAC14dcDkvUdnmuXYUJFmiROkW1KOXgfs0I+XhTfbesGWDc+4mQ
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:07:40 2026 by rpki-client