Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211440.roa
File: AS211440.roa (raw, json)
Hash identifier: /vC+rRmqFqtGsxPff+3/RT4ydYEugC8FfdSZB/fOhYw=
Subject key identifier: 6A:29:0A:25:21:87:DC:DA:A6:9E:35:BE:6F:02:22:2B:0F:9D:91:B2
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 61180B2D5F3D6FAA6B2C38D05B61B2DF64501002
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211440.roa
Signing time: Wed 04 Mar 2026 13:26:23 +0000
ROA not before: Wed 04 Mar 2026 13:21:23 +0000
ROA not after: Wed 03 Mar 2027 13:26:23 +0000
asID: 211440
IP address blocks: 179.61.250.0/24 maxlen: 24
181.214.188.0/24 maxlen: 24
181.215.144.0/24 maxlen: 24
191.96.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 16:05:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:18:0b:2d:5f:3d:6f:aa:6b:2c:38:d0:5b:61:b2:df:64:50:10:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 4 13:21:23 2026 GMT
Not After : Mar 3 13:26:23 2027 GMT
Subject: CN=6A290A252187DCDAA69E35BE6F02222B0F9D91B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fc:e2:e2:35:43:ec:3d:f7:81:45:18:7f:f1:
5c:82:de:60:c2:90:f2:cd:6d:c2:d3:24:02:f7:76:
ee:3e:c5:f9:62:b8:ed:40:d0:18:77:6a:01:1a:04:
23:45:53:59:d9:9c:36:21:2a:60:b1:c9:a5:73:8a:
71:0f:b7:eb:ad:46:17:e9:d5:57:86:e9:34:19:15:
85:ba:b5:8a:89:4b:da:c7:70:72:37:4c:f4:16:30:
df:83:bc:59:6b:57:91:f8:5f:a7:95:49:90:cc:08:
58:71:bb:97:4b:7a:3a:81:ce:3a:04:e5:61:87:62:
91:dc:43:27:a1:d5:b1:6c:5c:95:91:8d:20:0b:73:
fc:a0:dd:cc:70:a0:4a:06:db:42:3b:46:77:68:ac:
2c:fe:e8:d3:0c:45:fc:6d:8d:29:b4:01:bf:21:f3:
18:8f:e6:78:50:c4:21:f6:33:5d:3c:31:f7:ce:32:
66:c4:fa:b8:6d:4a:ec:79:07:1d:a0:1a:a3:b9:40:
cb:7e:f4:20:dd:38:48:df:cb:2f:81:5e:d7:cf:86:
7c:1b:e0:19:f1:53:16:51:4c:1d:9d:51:28:2a:45:
fb:71:50:82:15:63:e6:89:1c:9a:1e:82:c1:bb:c9:
99:a3:65:f6:cb:f2:b6:3a:97:57:43:96:46:df:b2:
ea:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:29:0A:25:21:87:DC:DA:A6:9E:35:BE:6F:02:22:2B:0F:9D:91:B2
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211440.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.250.0/24
181.214.188.0/24
181.215.144.0/24
191.96.250.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:11:d0:b2:3c:65:96:42:e2:01:55:b3:3e:e4:60:81:b6:c3:
8e:94:19:6b:3f:8d:58:bb:55:3c:de:e4:03:ac:92:38:ce:35:
a1:ed:5c:93:cf:1d:30:b4:d3:4e:6a:58:54:49:1e:8e:0a:50:
68:b1:e3:cb:ee:cb:6e:bc:e0:07:a8:e4:ae:e6:62:61:8e:8b:
c9:c1:b5:c8:ea:18:37:ac:be:03:6e:6d:a2:49:33:48:b2:9c:
e1:08:0c:e5:f1:6b:ef:d5:eb:be:b8:2c:33:c2:a9:6f:fd:0f:
5a:90:ab:39:33:92:61:f8:98:6a:3b:29:69:b1:80:0b:8f:ce:
d3:77:ee:39:49:34:a2:c7:76:d7:72:12:95:97:2b:66:36:4a:
85:5d:87:79:0c:d2:a6:1d:62:17:a1:32:97:3a:ac:4a:f9:ae:
e7:f1:58:11:cf:3f:c1:0c:10:75:c1:a2:35:51:ba:f8:c9:94:
17:85:f5:6e:5c:13:07:bb:7f:92:f3:84:f3:ba:95:f6:de:03:
db:c4:aa:0e:27:fd:dd:bf:88:fe:8c:1a:00:3d:f3:88:6f:b0:
6c:78:9f:5b:f1:c6:cf:95:71:ad:e0:b8:ca:9d:cc:cc:34:43:
78:52:e1:82:70:8b:f2:6c:2a:60:ce:4f:f6:a9:31:d0:dd:fb:
42:38:df:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 02:04:13 2026 by rpki-client