Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa
File: AS13213.roa (raw, json)
Hash identifier: DJ4qXMByGZ3pQBzU3lFzzm91zHnQ38Y8YnCjFJQN/zY=
Subject key identifier: 0D:CA:1B:71:85:81:63:47:A3:A4:89:62:B2:05:84:4C:A8:3A:3E:75
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 66B6B33FAC45F0293C66A4CC300A0BC3AAD508DB
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa
Signing time: Thu 14 May 2026 08:31:33 +0000
ROA not before: Thu 14 May 2026 08:26:33 +0000
ROA not after: Thu 13 May 2027 08:31:33 +0000
asID: 13213
IP address blocks: 2.58.29.0/24 maxlen: 24
5.181.133.0/24 maxlen: 24
45.81.2.0/24 maxlen: 24
45.89.251.0/24 maxlen: 24
45.137.31.0/24 maxlen: 24
45.139.181.0/24 maxlen: 24
109.106.2.0/24 maxlen: 24
130.185.125.0/24 maxlen: 24
179.61.175.0/24 maxlen: 24
179.61.178.0/24 maxlen: 24
181.214.60.0/24 maxlen: 24
181.214.61.0/24 maxlen: 24
181.214.64.0/24 maxlen: 24
181.214.65.0/24 maxlen: 24
181.214.66.0/24 maxlen: 24
181.214.67.0/24 maxlen: 24
181.214.68.0/24 maxlen: 24
181.214.69.0/24 maxlen: 24
181.214.86.0/24 maxlen: 24
181.214.103.0/24 maxlen: 24
181.214.109.0/24 maxlen: 24
181.214.114.0/24 maxlen: 24
181.214.116.0/24 maxlen: 24
181.214.126.0/24 maxlen: 24
181.214.200.0/24 maxlen: 24
181.214.202.0/24 maxlen: 24
181.214.203.0/24 maxlen: 24
181.215.19.0/24 maxlen: 24
181.215.80.0/24 maxlen: 24
181.215.81.0/24 maxlen: 24
181.215.82.0/24 maxlen: 24
181.215.83.0/24 maxlen: 24
181.215.85.0/24 maxlen: 24
181.215.86.0/24 maxlen: 24
181.215.96.0/24 maxlen: 24
181.215.98.0/24 maxlen: 24
181.215.100.0/24 maxlen: 24
181.215.103.0/24 maxlen: 24
181.215.105.0/24 maxlen: 24
181.215.106.0/24 maxlen: 24
181.215.117.0/24 maxlen: 24
181.215.118.0/24 maxlen: 24
181.215.126.0/24 maxlen: 24
181.215.129.0/24 maxlen: 24
181.215.131.0/24 maxlen: 24
181.215.150.0/24 maxlen: 24
181.215.158.0/24 maxlen: 24
181.215.217.0/24 maxlen: 24
185.34.43.0/24 maxlen: 24
185.142.24.0/24 maxlen: 24
185.143.229.0/24 maxlen: 24
185.151.59.0/24 maxlen: 24
185.158.100.0/24 maxlen: 24
185.158.101.0/24 maxlen: 24
185.158.102.0/24 maxlen: 24
185.158.103.0/24 maxlen: 24
185.158.134.0/24 maxlen: 24
191.96.35.0/24 maxlen: 24
191.101.5.0/24 maxlen: 24
191.101.10.0/24 maxlen: 24
191.101.119.0/24 maxlen: 24
191.101.159.0/24 maxlen: 24
191.101.167.0/24 maxlen: 24
191.101.225.0/24 maxlen: 24
213.109.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 14:59:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:b6:b3:3f:ac:45:f0:29:3c:66:a4:cc:30:0a:0b:c3:aa:d5:08:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 14 08:26:33 2026 GMT
Not After : May 13 08:31:33 2027 GMT
Subject: CN=0DCA1B7185816347A3A48962B205844CA83A3E75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a5:b2:48:3b:80:f0:c4:11:5e:18:0b:cc:af:
04:60:f8:7e:9d:76:f3:68:d6:7b:22:b0:e3:fb:2b:
3e:d8:65:7f:06:ed:18:fa:51:d0:ee:62:5e:68:84:
6d:b7:5a:33:bd:ab:72:b1:d0:17:b6:7e:5a:80:82:
6d:c3:0f:eb:9a:24:e2:28:00:d2:8f:17:80:c9:d8:
3c:20:1e:fa:a8:b2:d4:67:b8:c3:30:2b:db:9e:9c:
dc:53:33:28:21:84:34:68:82:00:b2:11:a5:42:91:
b3:36:a2:3c:b2:4b:2b:90:b7:75:9e:88:5c:f4:b8:
3f:79:e8:10:ce:f9:49:91:dd:9d:dd:7b:fd:55:97:
ba:06:91:ba:c5:e5:c1:de:20:08:23:88:71:05:69:
fa:d7:5e:05:d1:f2:19:a3:c1:d0:f0:4a:d7:0b:f2:
c7:84:05:0a:87:a5:ca:f9:c8:85:44:78:93:d2:0b:
40:87:82:b4:a0:1d:c0:2d:e5:1c:86:a5:09:a3:0b:
4d:2a:e8:ad:22:64:41:00:e5:3a:1f:3a:b1:c0:bb:
97:df:a9:4b:d4:40:57:8a:d9:85:14:b7:58:76:e3:
c5:27:90:94:e4:f9:9f:10:b7:b4:49:2d:89:a2:09:
8b:b3:41:b1:a4:42:c9:ef:06:a9:61:13:ab:a0:2c:
28:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:CA:1B:71:85:81:63:47:A3:A4:89:62:B2:05:84:4C:A8:3A:3E:75
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.29.0/24
5.181.133.0/24
45.81.2.0/24
45.89.251.0/24
45.137.31.0/24
45.139.181.0/24
109.106.2.0/24
130.185.125.0/24
179.61.175.0/24
179.61.178.0/24
181.214.60.0/23
181.214.64.0-181.214.69.255
181.214.86.0/24
181.214.103.0/24
181.214.109.0/24
181.214.114.0/24
181.214.116.0/24
181.214.126.0/24
181.214.200.0/24
181.214.202.0/23
181.215.19.0/24
181.215.80.0/22
181.215.85.0-181.215.86.255
181.215.96.0/24
181.215.98.0/24
181.215.100.0/24
181.215.103.0/24
181.215.105.0-181.215.106.255
181.215.117.0-181.215.118.255
181.215.126.0/24
181.215.129.0/24
181.215.131.0/24
181.215.150.0/24
181.215.158.0/24
181.215.217.0/24
185.34.43.0/24
185.142.24.0/24
185.143.229.0/24
185.151.59.0/24
185.158.100.0/22
185.158.134.0/24
191.96.35.0/24
191.101.5.0/24
191.101.10.0/24
191.101.119.0/24
191.101.159.0/24
191.101.167.0/24
191.101.225.0/24
213.109.171.0/24
Signature Algorithm: sha256WithRSAEncryption
62:4d:27:c5:78:bf:2a:71:8a:fd:62:c5:14:e6:5a:01:8b:cf:
c4:fc:c2:e1:a1:88:b4:9e:f2:9c:ca:e5:bf:6a:aa:4f:fd:65:
5a:8e:ac:b3:ec:ad:ec:6e:cc:90:1b:d5:84:fc:d5:0a:e0:65:
50:09:bc:9c:a9:29:1f:e4:94:c3:c5:c5:96:65:d4:d4:82:74:
27:2e:6a:79:19:3b:11:02:8f:77:b9:ea:f3:e1:59:69:6a:f1:
86:a8:eb:7a:0b:e3:2c:92:3c:68:96:18:c7:17:98:71:30:c2:
d0:2a:1d:62:59:ed:1b:9d:47:ce:8d:56:00:ce:8c:27:c8:e2:
f7:b3:05:17:e0:0c:21:b6:19:8d:ce:8b:58:9d:ea:af:d3:d4:
b6:b5:74:46:0b:f4:cd:43:e3:31:e0:77:2f:5a:e2:f4:43:ed:
8b:9d:43:a2:61:ca:d0:d9:1f:55:87:a2:a1:3c:2d:02:cf:82:
f5:03:bc:1f:cf:0e:df:f1:c9:7c:73:c1:b6:66:d5:86:be:5b:
1b:28:4f:c8:4b:a7:5f:5d:3f:d1:64:91:95:56:09:08:9e:e7:
0c:fa:f2:a5:71:b8:75:ad:9a:89:40:ab:45:d1:bd:9f:aa:d7:
12:1c:e7:53:25:09:e2:f9:6d:0c:18:7b:65:a0:5f:4a:d7:a5:
51:66:4e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 01:18:53 2026 by rpki-client