Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213772.roa
File: AS213772.roa (raw, json)
Hash identifier: bwIIiK9hITdOGu3FQzwX8fJcz9GI0VoXtN6rXpouElo=
Subject key identifier: C4:07:EC:C7:65:EA:D3:1D:22:84:CE:1A:DA:E2:12:1A:BD:F6:7D:D5
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 193D67862225C07E5E1D95CA7C3EE41F2F978F81
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213772.roa
Signing time: Wed 06 May 2026 00:03:48 +0000
ROA not before: Tue 05 May 2026 23:58:48 +0000
ROA not after: Wed 05 May 2027 00:03:48 +0000
asID: 213772
IP address blocks: 181.214.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:3d:67:86:22:25:c0:7e:5e:1d:95:ca:7c:3e:e4:1f:2f:97:8f:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 5 23:58:48 2026 GMT
Not After : May 5 00:03:48 2027 GMT
Subject: CN=C407ECC765EAD31D2284CE1ADAE2121ABDF67DD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3c:77:64:26:d3:ba:1b:7e:60:59:4c:49:e9:
45:d3:5d:45:25:a3:93:db:11:aa:19:3a:fd:b5:34:
46:3d:f0:1c:95:50:7a:fe:a5:ec:67:7f:e9:b8:a0:
b5:37:47:40:c9:c4:18:c6:57:53:52:94:08:d6:19:
c2:30:4a:0f:53:a4:01:79:c9:7b:1b:fe:65:c9:4d:
5c:3c:0d:bd:f9:16:c3:95:2f:f7:3a:59:fd:d6:20:
4d:50:e4:31:ba:87:8e:2a:5e:e4:03:8a:0f:97:76:
fd:9f:07:a5:3b:2d:de:b5:81:84:93:ab:c8:c7:a2:
24:64:d9:05:3d:ef:35:c0:87:25:2a:f9:cb:83:2c:
ea:0b:76:b3:d6:ea:94:9e:2d:7f:77:e9:ce:38:32:
a8:80:f3:a1:78:9e:fc:d9:10:2a:70:f2:db:10:6f:
18:53:d2:07:3e:a7:57:0b:fd:48:db:7c:8d:1e:79:
ee:21:18:4e:0b:b5:03:1a:60:5b:e3:f4:33:ee:53:
52:77:5c:bc:64:20:2d:ac:14:22:51:9d:42:06:f9:
3e:01:ff:2b:62:05:93:2e:2e:46:c7:4c:09:1f:53:
53:28:f4:b6:ca:d9:11:b2:ea:0b:44:da:90:73:3b:
6a:e4:34:c4:6f:c9:5b:ad:b0:90:93:f9:61:24:f0:
ce:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:07:EC:C7:65:EA:D3:1D:22:84:CE:1A:DA:E2:12:1A:BD:F6:7D:D5
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213772.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.147.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:60:cc:e1:d2:e4:f4:81:c6:e6:64:14:6b:d7:95:c3:9e:31:
ac:18:71:25:22:ea:d7:9e:bf:04:a7:d0:40:f4:af:bc:3c:78:
9f:02:fa:33:17:0e:f6:ca:ce:e2:f8:12:bc:d6:e9:4a:3b:16:
b1:e9:c1:e8:5e:b1:5a:be:9c:b0:13:a3:1c:68:a3:22:39:ab:
de:2c:32:5d:95:ae:68:0a:2f:dc:e9:5e:ff:c7:4d:ae:46:80:
ac:9f:46:de:6e:21:51:ba:c3:8d:4e:03:d7:e3:cd:da:42:2b:
75:01:6e:56:19:57:88:d9:35:6f:7e:73:8f:3d:02:48:c7:9d:
71:d0:dc:08:0f:79:35:a1:36:0f:d2:15:51:a0:0f:9f:fb:b1:
3e:18:77:87:3e:9d:60:97:45:5f:ad:3d:b1:63:bd:2e:7f:52:
f2:da:23:88:5b:b8:6b:88:5e:ef:d4:c6:08:86:3a:76:bc:24:
b0:7c:5f:62:3e:87:df:c0:2f:3a:59:5d:3e:f1:2c:af:f7:f4:
f5:a8:0d:4a:6e:8b:8a:52:f6:89:05:4f:b5:f1:b0:50:28:71:
6c:e2:c5:f2:66:13:0f:03:87:24:5c:02:65:97:70:65:f2:70:
55:19:b5:31:03:5f:b8:81:1a:03:a9:61:76:55:08:5f:5e:a5:
bf:cc:84:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:12:02 2026 by rpki-client