Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS210542.roa
File: AS210542.roa (raw, json)
Hash identifier: P7SqJeBtudwZHMCHER/fmsS3GelqrP6tG285DcW1jp8=
Subject key identifier: 8B:FC:BA:E6:07:19:8A:31:3B:99:E8:49:8B:CC:3B:7E:E3:19:23:89
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 74FDD880CB7D8E3A683C667547524324743972E3
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS210542.roa
Signing time: Fri 15 Aug 2025 00:02:00 +0000
ROA not before: Thu 14 Aug 2025 23:57:00 +0000
ROA not after: Fri 14 Aug 2026 00:02:00 +0000
asID: 210542
IP address blocks: 179.61.173.0/24 maxlen: 24
181.214.33.0/24 maxlen: 24
181.214.75.0/24 maxlen: 24
181.214.185.0/24 maxlen: 24
181.214.250.0/24 maxlen: 24
181.215.127.0/24 maxlen: 24
181.215.136.0/24 maxlen: 24
181.215.148.0/24 maxlen: 24
181.215.154.0/24 maxlen: 24
181.215.190.0/24 maxlen: 24
181.215.239.0/24 maxlen: 24
185.173.27.0/24 maxlen: 24
194.53.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 06:23:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:fd:d8:80:cb:7d:8e:3a:68:3c:66:75:47:52:43:24:74:39:72:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 14 23:57:00 2025 GMT
Not After : Aug 14 00:02:00 2026 GMT
Subject: CN=8BFCBAE607198A313B99E8498BCC3B7EE3192389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fb:3e:9d:67:11:b8:fd:c1:4c:2a:3a:00:12:
92:5a:14:8b:ca:83:b2:2b:be:2d:90:5c:8c:f4:a8:
ba:63:e9:63:ab:36:30:60:73:c1:cf:8b:2d:70:97:
1f:4a:b0:28:1e:19:08:df:8a:e1:af:f5:b4:81:f1:
ee:33:63:b9:80:98:39:2a:e6:a9:63:75:16:db:da:
cc:e8:dc:6c:2b:60:d3:3a:9f:e4:4b:57:f2:4a:51:
ac:71:95:96:ea:79:e6:a6:9d:62:5c:da:64:45:9a:
67:04:78:40:df:60:5c:8d:38:c8:c7:dd:f7:36:76:
96:26:41:53:43:26:c1:f5:86:f2:ed:54:56:1f:55:
50:20:62:77:10:c2:e7:a8:9c:45:f9:57:ae:97:4b:
74:da:56:9f:f1:6e:dd:50:12:ac:d0:5f:ef:bc:43:
a8:19:ee:99:74:c9:50:0d:4e:70:2a:18:6c:b5:63:
b9:5c:d8:5c:7c:bd:ee:67:87:77:fa:0f:0f:9a:5c:
ce:bf:82:d3:8c:b5:5b:b2:a2:44:2a:89:db:e2:2e:
cc:bc:f4:d7:62:0d:0c:3f:51:81:e8:a3:af:7b:be:
99:45:6f:63:77:f3:97:e4:ec:4a:21:59:ab:d9:c7:
15:30:fa:cc:1f:6d:b5:38:8e:45:58:a3:ba:c4:8c:
e9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:FC:BA:E6:07:19:8A:31:3B:99:E8:49:8B:CC:3B:7E:E3:19:23:89
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS210542.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.173.0/24
181.214.33.0/24
181.214.75.0/24
181.214.185.0/24
181.214.250.0/24
181.215.127.0/24
181.215.136.0/24
181.215.148.0/24
181.215.154.0/24
181.215.190.0/24
181.215.239.0/24
185.173.27.0/24
194.53.142.0/24
Signature Algorithm: sha256WithRSAEncryption
84:94:d7:9a:6e:fb:78:01:92:0c:86:c4:6b:58:51:ce:8a:18:
86:f2:d4:33:7a:f7:81:ef:52:91:2b:5d:40:81:7f:37:5e:4a:
8b:c5:6f:03:a1:00:fc:bf:36:70:f5:fc:d9:41:3c:5b:3b:07:
aa:a9:4b:60:44:0d:07:ab:57:bc:84:15:c0:58:b1:70:91:f4:
ab:77:9b:a7:1d:8a:ee:c6:04:17:d3:09:b0:54:a0:56:5c:4f:
6b:e5:3d:5b:bf:21:c6:6d:8d:d6:37:33:fd:41:ef:f2:22:26:
ca:38:7e:e3:7d:78:10:20:63:9f:eb:ff:5e:db:3e:3e:0a:a7:
e8:5e:da:89:24:07:5c:f0:72:85:21:52:71:07:68:4c:d5:ea:
02:b5:61:ef:87:83:c2:36:8b:0c:12:c2:f4:b6:0c:8e:67:b8:
2d:25:0e:1f:97:99:77:f4:6f:54:49:fe:bd:9f:d8:3e:16:de:
a6:a3:3e:b3:1b:de:63:19:86:e4:5b:53:8f:01:b6:87:0c:e7:
7b:8f:58:9b:f0:86:17:5e:ad:f6:c6:b2:b9:74:1b:b6:6d:07:
84:1f:ea:d1:2a:7e:3d:16:16:3b:b2:54:5b:eb:cd:6f:de:0b:
60:1d:5b:0a:76:f6:65:d9:82:f9:fb:4c:4f:92:78:63:ea:4c:
d3:98:24:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:46:17 2025 by rpki-client