Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: ED+dzyg9t7KfJtlS3e5JIiPFwNKA51FjVSQ/n3jfRRU=
Subject key identifier: 55:8B:C3:B3:5D:B1:DA:75:EF:9A:A0:C6:38:A3:92:D2:66:DB:B9:1B
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 19B2C3A2FBC655E19A46B5F1444F4BA2EBA49107
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS174.roa
Signing time: Tue 02 Jun 2026 12:18:48 +0000
ROA not before: Tue 02 Jun 2026 12:13:48 +0000
ROA not after: Tue 01 Jun 2027 12:18:48 +0000
asID: 174
IP address blocks: 179.61.197.0/24 maxlen: 24
181.41.202.0/24 maxlen: 24
181.41.206.0/24 maxlen: 24
181.214.93.0/24 maxlen: 24
181.214.153.0/24 maxlen: 24
181.214.164.0/24 maxlen: 24
181.214.165.0/24 maxlen: 24
181.214.166.0/24 maxlen: 24
181.214.173.0/24 maxlen: 24
181.215.182.0/24 maxlen: 24
191.96.36.0/24 maxlen: 24
191.96.106.0/24 maxlen: 24
191.96.150.0/24 maxlen: 24
191.96.168.0/24 maxlen: 24
191.96.185.0/24 maxlen: 24
191.96.227.0/24 maxlen: 24
191.96.255.0/24 maxlen: 24
191.101.31.0/24 maxlen: 24
191.101.61.0/24 maxlen: 24
191.101.157.0/24 maxlen: 24
191.101.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 14:59:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:b2:c3:a2:fb:c6:55:e1:9a:46:b5:f1:44:4f:4b:a2:eb:a4:91:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 2 12:13:48 2026 GMT
Not After : Jun 1 12:18:48 2027 GMT
Subject: CN=558BC3B35DB1DA75EF9AA0C638A392D266DBB91B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d2:63:cf:4e:cf:b5:e5:37:05:96:9e:cd:07:
4e:1f:ff:c0:d3:94:45:69:42:d5:bb:36:84:65:32:
df:37:1f:4c:2c:63:3d:ce:18:9c:b0:f4:42:6b:b3:
86:39:e7:73:28:a6:7e:06:d6:29:50:a5:f1:be:12:
b7:18:05:ff:a5:d6:93:1c:6d:38:3a:2c:1d:87:93:
39:2e:c4:90:eb:6b:b3:a6:c6:23:da:1f:c6:7c:e9:
e3:53:cc:d4:3a:b0:d6:21:94:73:7e:3b:b6:1b:4f:
b7:58:e7:b9:eb:69:6c:a3:1c:77:d9:06:33:8f:69:
8f:84:a9:9c:5b:66:ea:e6:76:c5:76:3e:31:05:9d:
26:41:19:26:c5:08:6b:08:27:31:23:de:34:7a:3c:
67:97:87:40:b4:86:6a:5a:c8:46:37:e3:65:50:89:
26:a6:d3:f5:ab:92:9c:11:ba:13:1b:00:7d:0f:ad:
a1:1c:68:5e:2c:cf:92:30:cd:65:ce:eb:65:54:93:
85:0f:30:99:09:25:39:67:56:fe:bb:b9:3d:f0:13:
a3:f8:66:c6:a9:3a:c7:76:3b:bf:b9:65:05:c4:f7:
ec:2a:86:d3:ad:97:c0:c6:d8:25:95:3e:49:19:68:
02:c2:a8:6b:be:04:ae:6d:59:51:57:74:2b:92:47:
f2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8B:C3:B3:5D:B1:DA:75:EF:9A:A0:C6:38:A3:92:D2:66:DB:B9:1B
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.197.0/24
181.41.202.0/24
181.41.206.0/24
181.214.93.0/24
181.214.153.0/24
181.214.164.0-181.214.166.255
181.214.173.0/24
181.215.182.0/24
191.96.36.0/24
191.96.106.0/24
191.96.150.0/24
191.96.168.0/24
191.96.185.0/24
191.96.227.0/24
191.96.255.0/24
191.101.31.0/24
191.101.61.0/24
191.101.157.0/24
191.101.217.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:40:75:3b:c6:42:7b:93:02:d3:dd:88:6e:25:9a:66:9a:93:
9f:db:22:f6:7e:73:b9:1a:9d:3e:53:7e:15:eb:24:5e:ad:af:
c8:f6:e8:3c:ef:3b:0f:e9:40:2d:0c:dd:01:3f:9d:10:07:46:
8c:cf:a5:1d:45:d4:fc:8d:aa:c1:71:27:49:06:79:99:40:2f:
71:12:19:cd:9b:0b:c4:31:66:d4:fb:12:a1:4c:9d:ea:3e:95:
eb:09:d8:39:ae:8a:bf:00:d4:40:64:86:21:53:d1:b8:66:e0:
f1:a3:15:da:de:4f:72:f4:bc:35:96:0b:26:59:c4:f3:18:95:
1b:54:b7:43:37:45:74:b7:3e:dc:d4:d3:50:2c:01:ec:2c:7c:
b4:e3:80:b9:5d:98:f5:ed:e9:b5:77:1b:f5:fd:08:ab:f9:ed:
61:7f:08:5b:d7:a0:28:c7:9c:e9:87:7c:54:37:23:3c:c9:35:
97:5f:f3:82:9a:4b:ef:4f:54:56:0b:52:01:b7:80:b6:63:93:
d7:53:ee:24:bf:97:95:34:05:23:c9:25:82:13:f3:f2:1a:17:
d4:97:ff:4e:3d:dc:e6:1e:fd:9b:9b:54:19:9e:54:0b:4f:af:
72:e4:d8:fe:76:ba:54:a2:8b:27:19:18:8c:16:e1:8a:02:8c:
ea:40:8f:ba
-----BEGIN CERTIFICATE-----
MIIFdTCCBF2gAwIBAgIUGbLDovvGVeGaRrXxRE9LouukkQcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNjA2MDIxMjEzNDhaFw0yNzA2MDExMjE4NDhaMDMxMTAvBgNV
BAMTKDU1OEJDM0IzNURCMURBNzVFRjlBQTBDNjM4QTM5MkQyNjZEQkI5MUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC40mPPTs+15TcFlp7NB04f/8DT
lEVpQtW7NoRlMt83H0wsYz3OGJyw9EJrs4Y553Mopn4G1ilQpfG+ErcYBf+l1pMc
bTg6LB2HkzkuxJDra7OmxiPaH8Z86eNTzNQ6sNYhlHN+O7YbT7dY57nraWyjHHfZ
BjOPaY+EqZxbZurmdsV2PjEFnSZBGSbFCGsIJzEj3jR6PGeXh0C0hmpayEY342VQ
iSam0/WrkpwRuhMbAH0PraEcaF4sz5IwzWXO62VUk4UPMJkJJTlnVv67uT3wE6P4
ZsapOsd2O7+5ZQXE9+wqhtOtl8DG2CWVPkkZaALCqGu+BK5tWVFXdCuSR/K/AgMB
AAGjggJ/MIICezAdBgNVHQ4EFgQUVYvDs12x2nXvmqDGOKOS0mbbuRswHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTc0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGWBggrBgEFBQcBBwEB/wSBhjCBgzCBgAQCAAEwegMEALM9
xQMEALUpygMEALUpzgMEALXWXQMEALXWmTAMAwQCtdakAwQAtdamAwQAtdatAwQA
tde2AwQAv2AkAwQAv2BqAwQAv2CWAwQAv2CoAwQAv2C5AwQAv2DjAwQAv2D/AwQA
v2UfAwQAv2U9AwQAv2WdAwQAv2XZMA0GCSqGSIb3DQEBCwUAA4IBAQCKQHU7xkJ7
kwLT3YhuJZpmmpOf2yL2fnO5Gp0+U34V6yRera/I9ug87zsP6UAtDN0BP50QB0aM
z6UdRdT8jarBcSdJBnmZQC9xEhnNmwvEMWbU+xKhTJ3qPpXrCdg5roq/ANRAZIYh
U9G4ZuDxoxXa3k9y9Lw1lgsmWcTzGJUbVLdDN0V0tz7c1NNQLAHsLHy044C5XZj1
7em1dxv1/Qir+e1hfwhb16Aox5zph3xUNyM8yTWXX/OCmkvvT1RWC1IBt4C2Y5PX
U+4kv5eVNAUjySWCE/PyGhfUl/9OPdzmHv2bm1QZnlQLT69y5Nj+drpUoosnGRiM
FuGKAozqQI+6
-----END CERTIFICATE-----
Generated at Thu Jun 4 01:18:12 2026 by rpki-client