Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS210542.roa
File: AS210542.roa (raw, json)
Hash identifier: H3GFyeiGcqiGwfaJUkLBEkb4TFLfSYqR6pjrk0uwBlY=
Subject key identifier: 82:F3:20:77:C6:F3:23:C1:F8:3D:C5:98:2A:E1:84:72:13:CE:29:82
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 3AC80EE8F799062A4DDD6505F7F2FD7F49119BCA
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS210542.roa
Signing time: Mon 15 Sep 2025 00:07:04 +0000
ROA not before: Mon 15 Sep 2025 00:02:04 +0000
ROA not after: Mon 14 Sep 2026 00:07:04 +0000
asID: 210542
IP address blocks: 179.61.173.0/24 maxlen: 24
181.214.33.0/24 maxlen: 24
181.214.75.0/24 maxlen: 24
181.214.185.0/24 maxlen: 24
181.214.250.0/24 maxlen: 24
181.215.127.0/24 maxlen: 24
181.215.136.0/24 maxlen: 24
181.215.148.0/24 maxlen: 24
181.215.154.0/24 maxlen: 24
181.215.239.0/24 maxlen: 24
185.173.27.0/24 maxlen: 24
194.53.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:c8:0e:e8:f7:99:06:2a:4d:dd:65:05:f7:f2:fd:7f:49:11:9b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Sep 15 00:02:04 2025 GMT
Not After : Sep 14 00:07:04 2026 GMT
Subject: CN=82F32077C6F323C1F83DC5982AE1847213CE2982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ab:64:2b:b1:10:75:e7:21:de:5d:d6:5f:ef:
d4:5f:53:ce:b5:f0:4f:52:9c:16:c2:e5:d1:4e:60:
c7:aa:ad:69:0b:42:e8:aa:00:87:59:b0:03:43:48:
3c:7d:1d:ae:a6:55:84:45:36:67:39:89:6c:00:51:
5d:1d:f3:32:31:78:af:27:e2:37:22:e4:5c:69:57:
03:c0:bb:ec:80:ca:14:2c:2b:47:e8:54:63:82:57:
69:01:06:1d:72:2d:d4:14:4a:5e:2d:3d:1e:9a:09:
d3:42:0f:6f:e6:f3:6b:da:2c:f2:41:dc:09:86:73:
af:a1:02:a5:1d:bf:b7:b4:7e:03:a3:d3:1b:0a:72:
75:d1:23:2f:e8:c4:f8:e5:b3:1c:66:51:63:0d:3e:
94:67:78:2b:d7:6c:bb:4a:f6:9b:c4:1e:47:e8:95:
ad:f0:ff:c2:0e:e1:e6:04:ab:32:cf:88:c7:0e:fa:
f4:7d:19:63:27:28:fd:ba:3a:89:b9:6d:a5:7e:22:
78:59:26:18:98:50:fe:72:af:a0:f3:4c:4f:c6:35:
46:22:7c:36:40:54:dc:15:1a:42:a8:66:82:59:26:
81:4b:51:f2:dc:37:43:b9:c2:35:37:fb:dc:e4:6f:
ee:57:c7:ea:9a:b3:42:18:d3:a0:c0:e0:cd:29:30:
6e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F3:20:77:C6:F3:23:C1:F8:3D:C5:98:2A:E1:84:72:13:CE:29:82
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS210542.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.173.0/24
181.214.33.0/24
181.214.75.0/24
181.214.185.0/24
181.214.250.0/24
181.215.127.0/24
181.215.136.0/24
181.215.148.0/24
181.215.154.0/24
181.215.239.0/24
185.173.27.0/24
194.53.142.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:ba:78:ef:20:6d:e7:50:1f:16:78:74:57:3d:9e:7d:82:d4:
fd:fd:63:e8:1a:a7:a0:a3:49:01:4e:c9:9d:16:4f:b8:fb:32:
66:c6:04:86:5f:df:e1:c4:a5:ae:08:14:0e:d3:7f:34:90:26:
4c:8c:40:be:49:47:2c:7b:ae:24:27:26:58:74:d4:e2:c9:83:
c1:6b:60:e9:c9:a6:7f:c8:e1:ae:f1:80:a5:61:11:9b:01:05:
1f:59:5f:50:6c:19:fe:15:f7:09:61:8f:2e:20:8d:8a:35:fc:
0e:05:bc:3d:a2:b5:47:01:d0:f5:4e:7f:3e:c6:09:f7:79:b7:
9e:f4:49:29:80:3a:55:53:03:de:8c:8e:d1:05:97:6b:21:4b:
ed:ac:62:fb:46:3f:ce:7b:e6:3f:d6:43:bc:fc:29:2b:9e:ab:
4d:b7:84:ca:b7:3d:0b:1d:e3:be:af:5d:93:e7:82:3d:cc:59:
3f:85:f2:80:1b:80:c8:dd:0f:0c:eb:36:42:9f:af:2d:85:54:
de:4d:ea:3b:96:5f:5e:db:4f:df:de:85:84:c5:5a:a5:ce:83:
f2:96:3e:a8:36:84:b3:0d:f4:49:6b:3d:b0:4b:fe:78:1b:9e:
a2:58:ba:23:17:cd:a0:9d:b4:db:dd:e1:37:e8:9a:bd:a8:24:
cb:44:17:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:09:01 2025 by rpki-client