Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63150.roa
File: AS63150.roa (raw, json)
Hash identifier: 3sELlxSSmlUqn3xGE8vMUDk8BP7JQTyxinRSEa74UmM=
Subject key identifier: 3E:D8:82:C6:4C:28:A3:7F:5D:47:05:27:28:67:6E:F9:43:72:85:4E
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 72328F67143911063B208C892FC41779FF83E090
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63150.roa
Signing time: Sun 07 Sep 2025 00:00:48 +0000
ROA not before: Sat 06 Sep 2025 23:55:48 +0000
ROA not after: Sun 06 Sep 2026 00:00:48 +0000
asID: 63150
IP address blocks: 143.14.13.0/24 maxlen: 24
148.135.184.0/24 maxlen: 24
148.135.187.0/24 maxlen: 24
155.117.18.0/24 maxlen: 24
155.117.19.0/24 maxlen: 24
162.141.130.0/24 maxlen: 24
162.141.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:32:8f:67:14:39:11:06:3b:20:8c:89:2f:c4:17:79:ff:83:e0:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Sep 6 23:55:48 2025 GMT
Not After : Sep 6 00:00:48 2026 GMT
Subject: CN=3ED882C64C28A37F5D47052728676EF94372854E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d3:20:18:8f:0e:9a:d6:df:ed:2b:7c:4f:23:
10:ef:ca:29:0b:5e:d6:79:7c:e3:ca:df:1c:3e:45:
59:36:ec:89:eb:a5:62:31:f0:b9:3d:97:2b:dd:96:
1e:cd:3c:87:e0:1f:6b:a1:32:d3:ae:fa:f1:75:5d:
d8:6d:a2:e6:c8:5e:c8:f6:95:44:06:96:12:ce:c5:
52:4b:fd:9e:2d:bf:7d:e0:34:75:8c:69:90:8b:f7:
50:a1:d4:7a:05:74:43:fe:13:17:62:08:5d:11:41:
56:f7:d2:b8:b6:43:9c:04:10:2a:3d:ba:ed:94:58:
95:ca:0c:04:e9:d0:23:73:10:43:5e:c2:54:18:97:
0d:ff:2c:aa:b3:a3:32:cb:b2:09:8c:37:e3:f8:43:
a6:6b:33:46:b9:df:00:02:f4:92:1d:e9:91:99:12:
bd:1b:c1:2f:7e:d1:59:62:41:5a:40:62:2a:96:59:
fc:c5:2c:8d:f2:af:ef:1c:31:0b:c0:71:3f:ac:bf:
ce:35:1f:ad:a1:8d:9f:e9:85:e9:f3:7f:18:1d:07:
36:76:df:75:29:df:5e:b3:af:4e:ea:bc:7c:4b:f7:
b8:b9:99:e7:f1:16:15:fa:77:31:d9:a9:ee:d0:ba:
32:9a:de:18:f2:44:02:8a:01:b2:9a:a8:d3:11:1c:
64:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D8:82:C6:4C:28:A3:7F:5D:47:05:27:28:67:6E:F9:43:72:85:4E
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63150.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.14.13.0/24
148.135.184.0/24
148.135.187.0/24
155.117.18.0/23
162.141.130.0/23
Signature Algorithm: sha256WithRSAEncryption
74:a0:ee:55:86:89:83:6e:b9:52:20:f3:09:21:48:63:1e:46:
07:87:5c:a4:ef:6f:18:08:92:4d:b6:b6:87:16:16:c6:61:ac:
07:91:68:d1:3b:c7:16:b2:dd:dc:c4:bb:02:9a:87:ad:f1:7c:
6f:bc:d8:7b:23:be:f6:92:33:9b:17:e8:48:90:8f:a0:07:b8:
78:01:81:f9:f2:eb:0b:f6:ed:58:a1:55:09:4b:73:d5:91:57:
58:83:b1:dc:51:e6:73:fe:64:6f:92:a2:25:07:ee:27:43:2b:
4b:a0:99:5b:36:1c:12:48:ec:e9:7a:f1:38:dc:4f:0e:a3:1e:
2a:dd:ed:66:a9:3f:3f:61:40:81:ae:dc:5d:55:02:64:de:e6:
a6:ae:d8:2e:89:3b:ad:3e:5d:a1:2c:49:9f:37:1a:89:cf:77:
22:37:36:ee:13:9c:03:4c:56:4c:d6:ca:73:69:88:71:83:61:
a0:ce:2f:37:6f:43:2e:50:8b:de:9c:b5:ca:dc:a4:90:b2:4d:
61:b3:44:28:41:1c:ea:c9:c8:fe:f2:e5:4f:37:b1:cd:6b:81:
b8:7f:c0:92:eb:75:a4:cd:16:01:a9:fc:1d:79:ad:5f:0b:8b:
df:7d:c8:45:90:3a:d0:31:59:28:af:9b:c5:be:6a:01:b2:d3:
03:7f:6c:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:16:19 2025 by rpki-client