Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
File: AS269070.roa (raw, json)
Hash identifier: r86rBRiIa9YqeWnwR19E1XtuTf2bjih1k2gJTOIUezc=
Subject key identifier: 83:F4:94:75:A7:76:7F:20:5C:7E:2E:E1:ED:45:AE:AF:C9:26:0C:73
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 212D3651A3018A38B6ADBD998B490A5579A1C923
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
Signing time: Sun 06 Jul 2025 10:11:54 +0000
ROA not before: Sun 06 Jul 2025 10:06:54 +0000
ROA not after: Sun 05 Jul 2026 10:11:54 +0000
asID: 269070
IP address blocks: 45.137.28.0/24 maxlen: 24
179.61.154.0/24 maxlen: 24
181.214.95.0/24 maxlen: 24
181.215.0.0/24 maxlen: 24
181.215.28.0/24 maxlen: 24
181.215.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 22:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:2d:36:51:a3:01:8a:38:b6:ad:bd:99:8b:49:0a:55:79:a1:c9:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jul 6 10:06:54 2025 GMT
Not After : Jul 5 10:11:54 2026 GMT
Subject: CN=83F49475A7767F205C7E2EE1ED45AEAFC9260C73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f4:2d:ea:b1:53:ae:5f:e3:ee:cb:35:4e:e2:
11:16:35:b2:c4:cf:2d:f3:6e:20:67:cc:6d:6b:64:
63:0d:a2:7f:f0:8c:37:e1:6a:3e:12:94:3b:47:0c:
0d:a2:d6:fe:54:e8:00:d8:ce:bf:11:0b:8e:0e:08:
a1:7c:46:9d:95:24:46:d3:0b:3c:a3:f1:d5:a4:36:
80:0e:3c:ae:0c:9c:be:f4:dc:83:7c:90:4b:e6:55:
0f:10:e8:5f:1f:b3:96:ad:f7:39:e2:a8:fe:36:ab:
1b:0c:78:8e:22:4d:e9:5e:a0:53:3b:ee:db:6c:48:
2c:93:c5:e5:4e:65:55:a7:a8:48:65:04:2c:5c:1d:
bc:ef:54:a5:ad:49:f8:d6:d4:b9:e6:72:e3:ab:42:
80:6f:11:a9:f0:3b:27:06:81:c0:e7:e0:ec:11:68:
66:15:e4:08:2d:9a:f0:20:c4:3b:1d:7e:c2:d5:58:
3c:45:ac:51:3e:bf:ac:6c:fc:95:1d:b3:1b:cc:5f:
22:06:e9:4a:62:60:4d:33:83:05:83:9e:f4:77:0a:
9d:7a:cd:50:37:7d:4c:bb:f5:37:9a:5f:86:8a:59:
13:06:c0:c0:76:ee:df:34:fe:7d:b7:d9:9c:8e:90:
f7:b3:0d:55:6b:18:2c:ae:81:ff:e4:25:c2:e0:ab:
16:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:F4:94:75:A7:76:7F:20:5C:7E:2E:E1:ED:45:AE:AF:C9:26:0C:73
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.28.0/24
179.61.154.0/24
181.214.95.0/24
181.215.0.0/24
181.215.28.0/24
181.215.48.0/24
Signature Algorithm: sha256WithRSAEncryption
23:86:ce:9a:db:27:ea:04:74:23:7b:cf:59:72:ed:1a:0b:65:
d7:f7:78:69:6e:3e:0f:3f:85:ab:c2:29:a3:f5:15:c8:25:cb:
b1:16:b8:01:a1:44:02:b6:c4:0a:cd:ce:27:8c:89:ee:7b:3f:
d3:0a:f7:92:26:cb:64:d6:cf:6f:e3:cb:fc:50:00:1a:a5:85:
69:77:e7:d1:1a:0e:70:5e:ac:1a:22:fc:dd:19:09:98:fe:ee:
5f:00:ef:cb:f5:cd:69:20:da:d2:64:e9:1d:31:bf:fc:8f:a0:
23:06:9f:fd:4b:a0:88:04:bc:01:8a:9f:a4:88:ca:93:88:fa:
85:a4:44:ee:68:a8:56:df:af:71:b4:fc:8a:2b:5a:45:2a:b0:
bf:31:2a:22:0b:5d:a1:02:f0:cb:19:65:52:32:fa:1d:98:73:
35:5b:c9:91:d4:0a:af:9e:7e:52:11:e5:b9:a5:7e:8e:38:7e:
46:b7:d1:69:cf:81:b2:6d:2d:3a:9d:0d:84:95:3f:69:ac:2b:
ba:cd:c6:a8:0d:8a:27:2a:1b:9a:c2:32:e0:32:8c:38:c1:c2:
6e:af:72:00:13:4e:d3:53:e6:2a:b4:68:16:f5:ed:d0:71:3e:
c2:15:44:f7:34:a2:f4:9d:fc:b4:fb:bf:48:41:31:6f:71:da:
e3:58:94:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 07:25:47 2025 by rpki-client