Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS63199.roa
File: AS63199.roa (raw, json)
Hash identifier: YxnNdzhG1M2FV4YrGvW8mXYO3rNu1bPCQGF54VIoRqE=
Subject key identifier: 13:C7:8C:C6:F6:32:19:A2:A2:B3:C2:4F:11:F5:82:0C:69:C6:A2:5A
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 10D8B5CF94425F4BA58036BF18AD54E21DCA7833
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS63199.roa
Signing time: Tue 17 Mar 2026 07:21:28 +0000
ROA not before: Tue 17 Mar 2026 07:16:28 +0000
ROA not after: Tue 16 Mar 2027 07:21:28 +0000
asID: 63199
IP address blocks: 92.242.186.0/24 maxlen: 24
181.41.196.0/24 maxlen: 24
185.137.12.0/24 maxlen: 24
191.101.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:d8:b5:cf:94:42:5f:4b:a5:80:36:bf:18:ad:54:e2:1d:ca:78:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 17 07:16:28 2026 GMT
Not After : Mar 16 07:21:28 2027 GMT
Subject: CN=13C78CC6F63219A2A2B3C24F11F5820C69C6A25A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b5:28:71:b7:53:20:81:ae:59:b2:cd:c4:6f:
62:ec:3b:68:63:d1:0d:22:0d:78:50:f2:91:5d:3a:
3d:96:5d:63:48:48:da:f0:9f:c6:94:ff:b8:c1:1d:
bc:51:33:cc:0c:d7:76:ee:a8:c5:d5:58:ef:a8:a1:
d6:2e:10:1a:80:3d:78:0c:fa:f3:e1:ad:1c:83:dc:
b4:ca:31:fd:50:59:79:c6:67:1b:2c:36:8a:b3:64:
f5:46:6b:15:6c:12:db:ae:34:01:08:6c:2a:ee:df:
cf:df:e2:a8:de:fd:c1:37:47:05:d0:e6:5c:5b:a6:
42:ce:6e:35:00:25:93:e6:84:46:df:8a:24:d1:88:
7d:3e:d8:1d:0c:73:7b:5c:3d:ed:30:cf:73:12:32:
51:b3:b4:98:09:59:6d:e4:4d:a8:80:93:70:d4:5c:
f3:7e:8a:f8:e9:ff:5e:25:f2:76:e4:e2:1a:d9:61:
60:72:1b:aa:3f:74:14:20:9d:35:f2:d7:de:a3:42:
e2:9f:4e:71:d6:65:7f:9a:f5:09:30:31:5c:a2:e3:
f0:a1:22:c8:d5:51:4a:da:9d:8d:5f:15:ec:ee:33:
d4:14:18:bb:55:33:87:31:ec:dd:dd:f4:9d:41:ae:
57:b3:d8:10:a3:28:0e:45:f5:8f:8d:9a:72:f5:9a:
96:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C7:8C:C6:F6:32:19:A2:A2:B3:C2:4F:11:F5:82:0C:69:C6:A2:5A
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS63199.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.242.186.0/24
181.41.196.0/24
185.137.12.0/24
191.101.20.0/24
Signature Algorithm: sha256WithRSAEncryption
64:ae:60:48:bf:43:c6:4d:1a:7c:44:43:47:8a:15:45:20:1a:
b9:b2:f4:c5:3e:f6:5e:48:b8:fa:e5:99:07:7b:e3:35:56:fe:
b1:4f:35:89:a1:e3:c1:13:ae:59:ba:39:2b:b7:b0:04:c9:f8:
03:8d:1b:18:ba:75:15:c6:81:5d:c1:54:27:99:cd:a8:ef:19:
f9:75:0b:78:8d:46:a3:c0:74:72:1e:eb:3e:4e:f9:01:b8:77:
19:18:29:7b:87:04:cd:e6:84:4b:45:d2:8b:05:f8:4b:9c:4f:
bd:0f:f5:23:81:47:bc:8e:8d:5b:88:7c:ce:9a:c0:e3:58:3b:
50:7d:a3:2b:45:c3:24:1d:87:7a:d3:f1:84:a5:82:d0:c5:cd:
90:ee:b2:a3:90:22:4e:77:ae:8c:85:9b:21:ab:da:e7:3d:b5:
57:87:7f:8e:53:e4:3a:00:7f:14:29:ea:2b:33:37:b0:f5:9f:
b4:04:a8:0c:d7:a3:95:5f:a8:df:7b:16:3b:c7:38:50:88:e7:
1a:47:f6:f8:95:89:c7:ba:20:0c:80:fb:14:9a:2a:52:f0:ba:
5b:70:00:a6:6e:5d:8d:97:0b:ff:72:d5:c7:cb:fd:84:5c:98:
47:4b:b8:03:eb:7b:f5:75:ed:41:fe:82:9d:bd:46:6e:46:90:
e8:2a:06:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:04:29 2026 by rpki-client