Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS209630.roa
File: AS209630.roa (raw, json)
Hash identifier: 2LctBK0LsxFbbUN4AIZU3sI7Ke+ye6WxSExrVbpWaRU=
Subject key identifier: 27:8C:70:CB:60:99:96:DF:5E:64:87:82:7C:93:6A:EE:94:87:7E:14
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 79B47DFB49659925138BB2D97A92AB7F00736547
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS209630.roa
Signing time: Wed 22 Apr 2026 19:23:11 +0000
ROA not before: Wed 22 Apr 2026 19:18:11 +0000
ROA not after: Wed 21 Apr 2027 19:23:11 +0000
asID: 209630
IP address blocks: 181.214.125.0/24 maxlen: 24
181.215.41.0/24 maxlen: 24
181.215.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:b4:7d:fb:49:65:99:25:13:8b:b2:d9:7a:92:ab:7f:00:73:65:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 22 19:18:11 2026 GMT
Not After : Apr 21 19:23:11 2027 GMT
Subject: CN=278C70CB609996DF5E6487827C936AEE94877E14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a0:de:09:3a:bf:1d:f1:f3:cf:a7:26:29:4c:
13:2b:d6:d0:d9:23:16:a6:51:1c:84:12:20:5a:8a:
08:13:ea:67:a3:44:9c:03:86:1a:fe:59:52:31:2a:
c7:a4:a2:99:02:8e:d0:f6:5e:c1:31:f4:be:e4:af:
89:2c:cf:9a:2d:02:8e:28:49:e7:be:ca:9b:af:f2:
6d:77:4c:f7:91:ce:98:44:60:36:f2:0e:9a:ea:2e:
06:27:1d:4c:ee:31:0f:1e:fe:72:d9:aa:72:18:1f:
eb:3e:76:41:b4:c5:9c:c7:8b:78:c4:bf:6e:3d:2e:
93:fc:59:e0:b2:3c:25:ae:d7:ac:96:35:e5:74:3b:
0d:fe:e4:3b:97:04:a3:a0:a0:48:5b:56:af:89:61:
f6:65:22:50:dc:01:30:b9:ae:44:29:8f:d3:1c:2a:
a5:be:20:97:cd:dc:b3:af:49:24:13:e0:4a:c5:2e:
18:1b:d4:37:17:f2:2d:1e:46:e2:0a:e3:ff:f5:31:
16:8e:51:55:c4:0d:c0:5e:5f:4d:82:5b:4e:21:ee:
12:38:90:4c:df:ec:66:41:26:6e:f9:36:a2:64:89:
77:91:58:53:1e:b7:60:93:10:34:40:05:b6:10:ef:
ed:19:9d:0e:a7:54:1e:32:e8:4f:4e:b0:a9:e1:1d:
03:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:8C:70:CB:60:99:96:DF:5E:64:87:82:7C:93:6A:EE:94:87:7E:14
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS209630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.125.0/24
181.215.41.0/24
181.215.186.0/24
Signature Algorithm: sha256WithRSAEncryption
54:f3:21:a0:56:da:18:8b:0b:0c:1f:81:2c:12:db:8a:0e:5c:
dd:ce:69:2e:ad:ad:3d:05:32:99:1f:4d:e3:22:5a:25:13:f4:
0b:ae:63:e5:76:fe:16:19:2d:4b:94:51:d3:4b:42:22:45:91:
81:05:d7:52:b7:95:00:aa:16:ac:db:b8:06:12:91:a5:11:f8:
67:5d:f3:87:dc:dc:cc:b1:c0:7c:29:e5:53:8d:b9:52:bf:fa:
0b:8d:70:03:04:c8:dd:40:5a:c7:77:d4:d3:0a:71:ce:00:a4:
0f:20:95:39:16:ff:b9:b2:35:54:12:a6:b0:0d:2b:22:9a:5e:
38:43:f3:83:27:6f:8b:e3:fe:18:9d:a8:34:0e:a9:fc:1f:82:
44:b3:5b:31:cd:7c:d6:0e:bf:8e:b8:36:c8:32:97:00:0c:0c:
ed:26:51:43:d1:02:46:7a:46:8b:8f:4d:29:e5:c1:af:c5:8c:
aa:51:ac:a2:08:d8:ed:d7:61:1c:0a:05:4b:38:df:8c:99:02:
38:60:6a:a3:4e:90:43:c3:da:e1:eb:b2:ea:09:8c:40:14:fe:
7c:09:64:dc:e8:aa:73:47:8b:3d:98:ad:33:89:9d:2e:6a:d0:
8e:83:3b:e7:0b:a9:5c:30:65:ec:73:8b:47:84:99:2a:2b:24:
96:7c:30:7a
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIUebR9+0llmSUTi7LZepKrfwBzZUcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNjA0MjIxOTE4MTFaFw0yNzA0MjExOTIzMTFaMDMxMTAvBgNV
BAMTKDI3OEM3MENCNjA5OTk2REY1RTY0ODc4MjdDOTM2QUVFOTQ4NzdFMTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXoN4JOr8d8fPPpyYpTBMr1tDZ
IxamURyEEiBaiggT6mejRJwDhhr+WVIxKsekopkCjtD2XsEx9L7kr4ksz5otAo4o
See+ypuv8m13TPeRzphEYDbyDprqLgYnHUzuMQ8e/nLZqnIYH+s+dkG0xZzHi3jE
v249LpP8WeCyPCWu16yWNeV0Ow3+5DuXBKOgoEhbVq+JYfZlIlDcATC5rkQpj9Mc
KqW+IJfN3LOvSSQT4ErFLhgb1DcX8i0eRuIK4//1MRaOUVXEDcBeX02CW04h7hI4
kEzf7GZBJm75NqJkiXeRWFMet2CTEDRABbYQ7+0ZnQ6nVB4y6E9OsKnhHQN7AgMB
AAGjggIWMIICEjAdBgNVHQ4EFgQUJ4xwy2CZlt9eZIeCfJNq7pSHfhQwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjA5NjMwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAtdZ9
AwQAtdcpAwQAtde6MA0GCSqGSIb3DQEBCwUAA4IBAQBU8yGgVtoYiwsMH4EsEtuK
Dlzdzmkura09BTKZH03jIlolE/QLrmPldv4WGS1LlFHTS0IiRZGBBddSt5UAqhas
27gGEpGlEfhnXfOH3NzMscB8KeVTjblSv/oLjXADBMjdQFrHd9TTCnHOAKQPIJU5
Fv+5sjVUEqawDSsiml44Q/ODJ2+L4/4Ynag0Dqn8H4JEs1sxzXzWDr+OuDbIMpcA
DAztJlFD0QJGekaLj00p5cGvxYyqUayiCNjt12EcCgVLON+MmQI4YGqjTpBDw9rh
67LqCYxAFP58CWTc6KpzR4s9mK0ziZ0uatCOgzvnC6lcMGXsc4tHhJkqKySWfDB6
-----END CERTIFICATE-----
Generated at Wed May 13 06:31:11 2026 by rpki-client