Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63150.roa
File: AS63150.roa (raw, json)
Hash identifier: IWpVqa8PMb2LdmJB/5PdVE+zs8gOZMuuo0BetUtkH7o=
Subject key identifier: AD:53:6B:93:EB:D8:37:34:B9:C5:42:A5:76:D7:74:B7:33:B9:C3:19
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 275280928B5E4AE74C48269E02D2F8731F9E2BEE
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63150.roa
Signing time: Fri 13 Jun 2025 00:00:38 +0000
ROA not before: Thu 12 Jun 2025 23:55:38 +0000
ROA not after: Fri 12 Jun 2026 00:00:38 +0000
asID: 63150
IP address blocks: 143.14.13.0/24 maxlen: 24
148.135.184.0/24 maxlen: 24
148.135.187.0/24 maxlen: 24
155.117.18.0/24 maxlen: 24
155.117.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:52:80:92:8b:5e:4a:e7:4c:48:26:9e:02:d2:f8:73:1f:9e:2b:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jun 12 23:55:38 2025 GMT
Not After : Jun 12 00:00:38 2026 GMT
Subject: CN=AD536B93EBD83734B9C542A576D774B733B9C319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e5:b9:f1:55:95:02:f5:e3:97:95:93:e7:be:
b1:4a:0e:e9:d0:77:58:04:03:d5:d0:8e:91:6e:d6:
5b:8a:23:08:c6:f7:6d:6d:3d:cd:ea:e4:d7:28:11:
cc:bc:c3:f9:2e:97:fd:10:c1:c2:55:06:0a:d3:bd:
51:2c:67:96:e0:fd:2e:55:13:73:89:e4:f4:c0:13:
4d:36:bb:c5:26:dc:d5:91:77:0f:14:07:a1:e1:5a:
68:ea:fa:12:00:12:f2:84:76:f5:e3:31:fc:bb:64:
df:99:68:8c:2e:df:36:f3:ab:a7:0e:b9:07:ee:55:
33:8d:6e:be:0c:33:c0:9b:11:ce:2c:70:0d:8a:17:
d9:28:ef:e5:6d:bc:92:03:61:9b:50:74:21:08:ef:
2c:c5:d6:01:ae:45:44:20:40:15:3d:99:58:e6:bc:
19:90:8e:95:a5:b8:6d:24:7b:f1:53:2a:15:26:15:
f4:b9:dd:ac:e9:91:56:33:9e:4e:5e:6d:fe:71:f8:
b8:45:bd:5b:c3:90:b2:66:aa:d0:8f:67:0c:df:46:
2b:6f:6e:6e:39:0a:13:04:72:b9:17:20:71:ae:36:
e9:0b:ff:ca:38:4d:f1:e1:55:af:6a:d3:04:6c:27:
ba:d3:aa:02:43:ad:68:3c:c6:dd:8f:0e:da:be:11:
34:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:53:6B:93:EB:D8:37:34:B9:C5:42:A5:76:D7:74:B7:33:B9:C3:19
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63150.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.14.13.0/24
148.135.184.0/24
148.135.187.0/24
155.117.18.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:e7:04:7b:e7:4c:cd:98:db:1d:b2:df:0f:b0:43:e6:76:29:
68:d5:fc:91:89:8d:d0:01:1e:dc:35:02:e1:b3:90:a8:77:20:
43:4d:04:7e:76:df:0e:95:e4:78:de:b9:bf:b2:e7:e6:9a:21:
b2:cb:6a:f4:a8:c6:e1:89:4d:77:95:65:c4:45:20:47:9b:33:
80:77:6a:d8:22:01:69:ec:35:d2:6a:45:aa:12:18:93:58:1c:
42:63:0e:01:11:68:f1:9c:08:e9:ed:b9:68:c2:7d:24:21:57:
e0:17:b7:61:a3:a6:09:1e:be:54:e5:b6:50:07:30:5b:4b:35:
b7:ab:d1:b0:f5:89:e3:c2:d1:8d:e2:90:ab:6c:69:77:20:d6:
85:1b:be:9d:c9:6a:df:67:1f:1b:dc:ea:b9:3a:f8:74:82:c7:
99:af:42:f9:fb:71:33:c5:14:d0:b2:58:9f:00:ce:fe:c6:ff:
84:07:d6:39:c6:c9:36:02:40:a9:fc:a6:ae:0b:03:a5:ed:81:
aa:a0:24:f3:d8:78:42:98:25:57:79:58:79:d1:67:a9:dc:02:
e1:8a:25:ca:01:92:43:0f:88:97:fb:b8:58:9f:37:f5:43:64:
d3:7c:09:8b:ff:bc:71:e2:df:9f:fa:bc:51:1e:f0:88:a9:64:
94:29:61:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 07:22:25 2025 by rpki-client