Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60781.roa
File: AS60781.roa (raw, json)
Hash identifier: jfZ2SQuJENxJeW9HQVjCIJrhxRgPvT8eg+8W7dkusTI=
Subject key identifier: 1E:28:BA:27:8A:29:79:59:95:6C:8D:33:44:51:94:49:4F:B0:46:D6
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 736A476618B4AF54F22C4B9649B7D201A4FB3F42
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60781.roa
Signing time: Thu 12 Mar 2026 00:46:48 +0000
ROA not before: Thu 12 Mar 2026 00:41:48 +0000
ROA not after: Thu 11 Mar 2027 00:46:48 +0000
asID: 60781
IP address blocks: 140.233.166.0/24 maxlen: 24
145.223.42.0/24 maxlen: 24
145.223.45.0/24 maxlen: 24
145.223.51.0/24 maxlen: 24
145.223.53.0/24 maxlen: 24
145.223.57.0/24 maxlen: 24
145.223.59.0/24 maxlen: 24
145.223.61.0/24 maxlen: 24
146.103.1.0/24 maxlen: 24
146.103.6.0/24 maxlen: 24
148.135.177.0/24 maxlen: 24
148.135.188.0/24 maxlen: 24
148.135.208.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:6a:47:66:18:b4:af:54:f2:2c:4b:96:49:b7:d2:01:a4:fb:3f:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 12 00:41:48 2026 GMT
Not After : Mar 11 00:46:48 2027 GMT
Subject: CN=1E28BA278A297959956C8D33445194494FB046D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:c4:2c:28:c7:53:fc:2b:f2:af:49:e0:de:
92:22:7d:5c:aa:b0:91:85:12:89:e3:b8:3b:12:fd:
79:35:de:ae:b5:5a:d4:cc:e1:ee:84:e8:d6:f9:da:
dd:3f:4e:01:eb:54:ea:3b:02:18:76:55:6d:85:2f:
1b:15:90:7c:13:ca:ee:90:4c:3f:d1:44:0c:ef:aa:
8c:84:ed:3c:dd:94:ce:6f:36:f2:b5:24:39:c2:b2:
30:f3:fc:22:f5:c7:ec:4f:91:32:03:fa:ee:dd:3a:
79:f3:64:73:b1:84:00:2a:87:be:ff:24:6d:eb:4e:
1f:27:ac:80:67:6d:96:c2:30:85:5f:f9:8b:90:61:
c9:22:db:4f:c0:14:7c:ef:cd:ff:a0:6c:26:6f:e2:
73:b8:e1:eb:f6:3e:6b:8f:ae:1e:89:9e:86:30:b3:
7c:f4:3b:fe:2c:45:f7:82:7c:2f:94:6e:ce:ec:a7:
49:31:20:7b:0b:f9:90:c3:7b:1f:00:12:d7:40:49:
67:00:b8:5e:75:09:8d:ea:96:75:df:9c:7e:4e:07:
3a:da:67:c3:d0:18:62:39:02:95:f6:db:bd:72:22:
73:74:24:28:eb:95:e8:b7:4c:e6:0d:0a:83:64:ce:
bf:81:ad:f9:41:2b:17:e0:1f:6b:cb:00:15:74:9e:
7b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:28:BA:27:8A:29:79:59:95:6C:8D:33:44:51:94:49:4F:B0:46:D6
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60781.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.166.0/24
145.223.42.0/24
145.223.45.0/24
145.223.51.0/24
145.223.53.0/24
145.223.57.0/24
145.223.59.0/24
145.223.61.0/24
146.103.1.0/24
146.103.6.0/24
148.135.177.0/24
148.135.188.0/24
148.135.208.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:db:21:df:b6:4a:03:99:10:b6:37:48:e6:a0:1b:ed:46:cd:
5a:fd:10:9a:42:a0:5b:fb:02:52:21:df:85:44:ab:06:17:57:
83:31:f0:09:00:20:53:e7:c3:0e:b5:40:5b:23:36:3c:c4:f7:
80:b5:1f:cd:ef:0f:d4:f9:d4:5e:35:82:aa:9c:01:0c:cf:f9:
29:8b:d6:ce:81:f0:98:a6:e1:bd:56:d7:2f:31:e7:b3:db:08:
6e:31:c6:47:be:8c:eb:d7:29:02:b8:9a:96:7f:2b:ff:86:73:
72:45:e7:d1:7f:7e:56:57:ad:bd:7d:cc:a5:99:a7:5e:b1:f3:
29:54:59:60:01:f1:d9:dd:3d:8f:b8:b2:1a:ce:73:bf:60:ad:
c6:ae:c6:b0:a5:42:07:0f:57:5f:2e:1d:3f:be:1a:4b:89:7b:
16:95:16:08:e8:e9:52:c1:9d:dd:dc:eb:71:a6:99:81:c2:af:
26:06:99:b9:4a:34:5b:e0:f7:92:64:e5:b0:f5:ec:76:18:da:
4a:53:0b:7d:f9:8b:99:31:a4:e3:f3:4d:ac:19:c7:d8:dc:e9:
9d:83:40:7c:12:d0:2b:ea:de:bc:7d:06:2d:82:7a:e8:6e:78:
fd:5d:4e:6b:2e:0e:8c:f8:b6:ad:6b:78:fa:b9:41:c9:3a:83:
87:a4:c6:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:48:45 2026 by rpki-client