
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: jHUipaem4XAlSSbaY582eafSDhqr202lI5fLodt2yRs=
Subject key identifier: B3:30:7C:FD:02:1B:47:E7:A3:DC:A3:C7:12:21:CC:87:4E:AC:CA:40
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 2D5C2D0B84C456E69AEFBF7AD88048BAC40DDCF4
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS174.roa
Signing time: Tue 05 Aug 2025 00:00:35 +0000
ROA not before: Mon 04 Aug 2025 23:55:35 +0000
ROA not after: Tue 04 Aug 2026 00:00:35 +0000
asID: 174
IP address blocks: 45.88.97.0/24 maxlen: 24
45.89.249.0/24 maxlen: 24
45.133.172.0/24 maxlen: 24
45.133.173.0/24 maxlen: 24
179.61.197.0/24 maxlen: 24
181.41.202.0/24 maxlen: 24
181.41.206.0/24 maxlen: 24
181.214.93.0/24 maxlen: 24
181.214.153.0/24 maxlen: 24
181.214.164.0/24 maxlen: 24
181.214.165.0/24 maxlen: 24
181.214.166.0/24 maxlen: 24
181.214.173.0/24 maxlen: 24
181.214.218.0/24 maxlen: 24
181.215.176.0/24 maxlen: 24
181.215.182.0/24 maxlen: 24
191.96.36.0/24 maxlen: 24
191.96.37.0/24 maxlen: 24
191.96.103.0/24 maxlen: 24
191.96.106.0/24 maxlen: 24
191.96.150.0/24 maxlen: 24
191.96.168.0/24 maxlen: 24
191.96.185.0/24 maxlen: 24
191.96.227.0/24 maxlen: 24
191.96.255.0/24 maxlen: 24
191.101.31.0/24 maxlen: 24
191.101.61.0/24 maxlen: 24
191.101.157.0/24 maxlen: 24
191.101.217.0/24 maxlen: 24
194.110.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 20 Aug 2025 23:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:5c:2d:0b:84:c4:56:e6:9a:ef:bf:7a:d8:80:48:ba:c4:0d:dc:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 4 23:55:35 2025 GMT
Not After : Aug 4 00:00:35 2026 GMT
Subject: CN=B3307CFD021B47E7A3DCA3C71221CC874EACCA40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:48:df:f9:f8:fc:ac:56:cf:14:46:20:65:2f:
65:e8:a6:ec:f5:f8:09:e7:53:02:87:41:be:43:56:
b4:eb:2f:96:94:b9:64:6f:cb:15:c1:2a:f5:d9:80:
62:af:4a:5d:1c:6f:85:af:7a:19:ec:01:26:d4:84:
f3:9d:b0:1b:07:be:78:07:d2:d8:09:82:b0:89:f8:
db:77:80:54:c3:70:bf:80:ac:5a:67:e3:76:d7:60:
ef:af:e6:9f:04:77:60:2c:e7:12:ba:55:62:8c:61:
31:d5:4a:0a:db:e2:8f:5f:29:15:fc:ca:74:99:4e:
06:5a:58:bb:0e:30:23:c0:ad:e1:ce:d9:64:93:73:
bf:8d:a5:88:11:6e:0d:89:36:9c:85:61:7c:57:bd:
e4:07:62:d2:51:95:cb:e7:03:fa:76:ed:f7:24:93:
3a:fb:4e:de:0d:e4:18:e7:f5:d5:6f:9b:73:42:9e:
b3:02:9a:80:99:ec:c3:fb:ca:ae:8c:a1:cb:8b:64:
d2:c5:1a:49:a5:c8:3d:d6:fe:fc:7e:1e:3b:85:d6:
af:40:58:b1:59:7d:cc:5f:33:f6:0f:4e:b1:f9:d0:
45:48:93:b0:a6:0f:1d:82:70:99:32:56:e6:05:99:
31:e9:54:2c:6c:8f:cb:95:a7:d3:91:fe:9a:a8:c4:
44:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:30:7C:FD:02:1B:47:E7:A3:DC:A3:C7:12:21:CC:87:4E:AC:CA:40
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.97.0/24
45.89.249.0/24
45.133.172.0/23
179.61.197.0/24
181.41.202.0/24
181.41.206.0/24
181.214.93.0/24
181.214.153.0/24
181.214.164.0-181.214.166.255
181.214.173.0/24
181.214.218.0/24
181.215.176.0/24
181.215.182.0/24
191.96.36.0/23
191.96.103.0/24
191.96.106.0/24
191.96.150.0/24
191.96.168.0/24
191.96.185.0/24
191.96.227.0/24
191.96.255.0/24
191.101.31.0/24
191.101.61.0/24
191.101.157.0/24
191.101.217.0/24
194.110.13.0/24
Signature Algorithm: sha256WithRSAEncryption
52:13:f3:34:19:a5:9e:e8:24:55:87:18:3b:0c:a1:95:a5:62:
f5:05:53:1f:ca:fb:69:9f:39:83:28:ab:de:cf:2b:8b:29:e2:
8e:2c:5b:25:78:e8:73:b4:16:31:2e:0f:ea:b6:dc:59:e4:2e:
27:b6:14:f2:39:0c:b6:9a:ab:a4:b0:8d:71:38:57:e0:b7:ad:
8b:8c:16:46:33:e7:1c:06:7a:9a:b1:ba:e0:f0:d1:8c:c1:7c:
e3:77:21:b7:5d:3b:94:a1:a2:d1:dd:dc:d5:8f:68:f1:c0:10:
6b:45:1f:fa:b0:31:aa:ee:36:78:5c:b6:d5:5b:ed:10:7e:fd:
50:24:b9:5f:85:3b:c8:6f:2b:60:e3:13:4c:40:50:fd:ef:af:
3c:2e:e7:06:41:3b:2e:3f:f9:63:04:c6:c4:e3:67:22:b8:c5:
12:c8:49:e7:10:ec:c2:73:b7:65:3e:ee:a5:61:52:67:63:a6:
4b:f7:ab:81:58:4c:a5:07:0d:2d:65:6e:12:a9:cd:f6:26:eb:
bc:cd:3c:32:5b:b4:7e:27:73:7e:8f:68:be:8d:e9:1c:15:2f:
3a:81:0a:2a:da:a4:d9:82:10:48:c9:b7:b1:78:b1:5e:60:e2:
91:10:31:c0:0b:67:db:76:0e:8d:9e:fd:70:d8:c3:4b:4b:ab:
86:cc:57:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 20 08:33:38 2025 by rpki-client