Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212335.roa
File: AS212335.roa (raw, json)
Hash identifier: VORB2ZGtU/Y6aBztKLkVPuOcFJQVwJDnc6XZxr5hsTg=
Subject key identifier: 1E:69:EE:18:D5:64:DD:85:63:03:D0:DB:79:89:17:CA:A6:DD:1B:8E
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6E84FC582EE69AF2F1E0CE8C993E7C01A896AA6C
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212335.roa
Signing time: Tue 19 Aug 2025 12:29:45 +0000
ROA not before: Tue 19 Aug 2025 12:24:45 +0000
ROA not after: Tue 18 Aug 2026 12:29:45 +0000
asID: 212335
IP address blocks: 45.137.157.0/24 maxlen: 24
179.61.155.0/24 maxlen: 24
181.214.241.0/24 maxlen: 24
185.170.56.0/24 maxlen: 24
191.96.18.0/24 maxlen: 24
191.96.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:84:fc:58:2e:e6:9a:f2:f1:e0:ce:8c:99:3e:7c:01:a8:96:aa:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 19 12:24:45 2025 GMT
Not After : Aug 18 12:29:45 2026 GMT
Subject: CN=1E69EE18D564DD856303D0DB798917CAA6DD1B8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9e:96:8d:e8:75:37:1c:85:31:4d:0e:2e:93:
7c:42:34:e8:92:0b:84:18:98:8c:4a:65:10:81:e4:
37:57:bf:43:3e:6e:cb:cf:00:9f:e7:ad:51:fa:db:
e2:af:cb:ee:5d:e1:1f:b5:36:e7:52:bb:ff:61:9c:
ed:0b:f3:bc:2e:59:14:76:31:a6:21:fb:a2:05:5f:
e4:79:54:ab:65:9f:83:eb:dd:f4:57:9d:a9:07:f1:
3c:55:ec:d8:d9:93:08:d1:46:e4:86:d0:c3:d7:65:
18:e0:3b:11:36:5b:af:c7:8c:13:14:3b:2f:d5:76:
60:0f:24:c1:dc:17:af:26:ce:0b:2f:2b:cd:2c:8b:
27:f9:09:a4:42:35:19:e3:55:57:bd:7b:20:44:d4:
14:fc:d1:ab:b5:50:79:bf:cd:38:77:23:30:16:36:
c5:a0:ba:50:74:c6:cc:8c:3a:16:8e:8e:0b:2e:08:
45:7b:a8:35:df:26:d2:f1:f5:cc:2e:31:01:5b:35:
c0:b1:f3:41:1c:64:d5:d5:41:1c:c0:ff:e2:4f:41:
32:4d:a3:b2:3e:09:e3:b7:3d:3e:11:00:fa:30:1c:
f9:03:04:fb:db:a5:a7:c6:b0:23:57:48:8d:a2:21:
fd:5c:5f:4b:f2:2c:e4:8f:f8:bb:3c:6a:59:5d:16:
6c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:69:EE:18:D5:64:DD:85:63:03:D0:DB:79:89:17:CA:A6:DD:1B:8E
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.157.0/24
179.61.155.0/24
181.214.241.0/24
185.170.56.0/24
191.96.18.0/24
191.96.187.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:d8:44:83:a8:d7:60:a6:15:4c:7f:70:eb:22:75:f2:2f:97:
46:a8:a6:1a:00:f6:7b:36:8f:f2:12:05:78:1c:fb:e2:01:58:
a2:e4:a7:0f:79:41:26:68:85:22:d1:4e:45:60:3b:a5:2b:aa:
a5:a2:09:11:9f:6d:29:80:11:18:56:39:e9:bc:6d:a9:9c:76:
c5:e0:1f:23:db:7f:72:95:0c:c0:77:dc:8c:2e:3e:81:de:dc:
fc:45:c3:06:21:fd:90:5f:a4:8b:f1:f2:b0:ae:11:33:3e:f1:
62:0b:8f:83:66:b0:55:4f:9a:4d:87:df:92:1c:39:c4:6e:4e:
bf:0e:ec:07:e3:64:01:eb:27:9d:50:19:c0:49:7e:55:45:04:
0f:00:99:4b:b9:6c:53:a7:41:34:b7:8d:b0:99:d5:22:cf:dd:
68:fd:9c:27:0f:c0:b4:07:e6:be:84:85:f5:24:8e:d1:76:da:
e7:93:36:53:5b:0a:eb:50:99:22:67:39:1d:2d:47:b9:b5:21:
b2:1c:84:cd:5b:22:f2:68:df:3d:52:86:99:58:9d:02:ce:f3:
34:f6:06:c2:24:da:4c:b8:44:48:68:64:2a:7d:a0:0c:b5:1c:
f1:a2:4a:91:e6:7a:a0:9b:a0:37:2a:3d:05:6f:92:c8:5e:ab:
c1:0e:c3:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:11:28 2025 by rpki-client