
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS25198.roa
File: AS25198.roa (raw, json)
Hash identifier: hcgFe5maXiIMlg9Vodz26BSKd5a+H1JCBU7lb3Dti5k=
Subject key identifier: 7D:B9:21:C7:24:B4:9A:3E:4C:57:07:83:D5:C9:C6:C0:2D:DF:C6:09
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 48FFDE45EE107EBB81201EB7EE80369DA81E2BB9
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS25198.roa
Signing time: Tue 30 Jun 2026 21:12:02 +0000
ROA not before: Tue 30 Jun 2026 21:07:02 +0000
ROA not after: Tue 29 Jun 2027 21:12:02 +0000
asID: 25198
IP address blocks: 45.139.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Jul 2026 07:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:ff:de:45:ee:10:7e:bb:81:20:1e:b7:ee:80:36:9d:a8:1e:2b:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 30 21:07:02 2026 GMT
Not After : Jun 29 21:12:02 2027 GMT
Subject: CN=7DB921C724B49A3E4C570783D5C9C6C02DDFC609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d8:57:41:81:9a:4b:ba:ad:cf:dd:2d:b7:31:
52:e7:4f:8b:69:7d:c3:cf:f5:c9:b0:c0:8b:e8:4d:
4b:d0:20:3f:70:4b:24:92:22:b7:24:9d:f0:45:6a:
05:47:c2:aa:c7:c5:19:94:9a:5c:69:27:71:5e:d2:
11:5c:6e:e0:47:b3:55:05:c7:aa:fe:67:1d:a4:d9:
81:11:e7:d3:f7:0d:8e:e3:63:e7:da:36:c3:8e:f2:
83:8b:a4:95:3f:54:8e:cf:dc:c6:67:4c:c1:bb:ac:
bb:d1:9e:54:c7:e5:91:5c:b0:9c:54:75:24:e3:74:
70:80:4d:21:4d:2d:4d:60:21:07:7e:66:c4:e3:58:
8c:44:c3:ad:4b:ee:8f:8e:3a:af:80:18:cd:96:a3:
d7:d9:aa:94:a2:3c:50:72:61:34:81:9a:65:a5:63:
3a:0b:c0:de:1e:a6:37:e1:9d:61:ea:30:71:87:55:
f8:49:c7:05:f3:b2:b7:92:32:26:32:74:34:1a:9c:
c3:ab:07:ed:48:9f:44:0b:d7:ab:a2:4a:80:dc:3e:
1b:87:b6:27:92:cd:04:17:d0:61:91:a2:ba:22:b0:
3a:96:fe:22:47:96:81:87:6a:e5:9b:b9:dd:04:53:
b4:e1:0f:4f:f0:09:54:9a:b5:ce:92:ac:8c:ab:f8:
93:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B9:21:C7:24:B4:9A:3E:4C:57:07:83:D5:C9:C6:C0:2D:DF:C6:09
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS25198.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.182.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ff:59:71:5c:59:09:78:55:7e:cd:a7:2b:6f:ef:9b:79:4c:
d6:07:a3:01:a7:33:a3:cb:9c:aa:06:7f:df:a9:f8:bc:55:d1:
e7:f5:cd:38:09:22:14:b7:6f:c4:32:50:19:0a:33:84:4a:74:
ac:39:3b:7b:06:02:24:76:3a:33:1a:e6:ec:e8:eb:78:06:70:
d2:3e:30:59:1b:12:50:c3:f4:41:9b:2a:ba:6e:80:e3:09:29:
30:64:7d:99:7f:f3:86:3d:f7:42:29:d4:4f:c8:c7:b3:6e:46:
ef:2a:18:0c:e7:d7:4b:f3:1e:ac:b5:9b:65:cf:89:02:a3:5c:
96:29:dd:27:eb:37:1a:32:98:37:3d:a5:49:8d:06:09:d8:e4:
47:a0:de:d1:21:6c:ec:85:e2:8e:81:b8:4e:ff:f7:50:8f:3c:
c6:cf:0c:e8:59:b6:03:0b:4c:32:e4:57:98:62:30:e7:e6:ef:
60:6a:7f:5c:f3:b6:7f:bf:26:7b:4f:3b:df:af:63:ee:c5:c5:
53:cd:a3:59:23:fb:1e:65:dc:b8:18:07:40:b0:68:04:c7:9c:
7e:8d:c7:22:32:09:2a:2f:fa:16:61:be:87:7d:58:4f:b6:3f:
9c:2d:66:45:cc:d6:a8:7f:e0:a2:0c:98:af:d2:06:bf:80:9f:
e1:d5:28:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 16:39:44 2026 by rpki-client