Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
File: AS269070.roa (raw, json)
Hash identifier: adcbhFy1FraTdpvXPGQBSxqI72iXNs1HnyIKRZBSJhY=
Subject key identifier: 40:83:0C:E4:B7:B4:4C:7C:42:48:D2:5B:48:87:B6:F2:B0:91:EF:8A
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 39A0E1CFF16899CBB214C86F1002A26B33458520
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
Signing time: Thu 04 Jun 2026 12:38:17 +0000
ROA not before: Thu 04 Jun 2026 12:33:17 +0000
ROA not after: Thu 03 Jun 2027 12:38:17 +0000
asID: 269070
IP address blocks: 45.137.28.0/24 maxlen: 24
179.61.154.0/24 maxlen: 24
181.214.95.0/24 maxlen: 24
181.215.0.0/24 maxlen: 24
181.215.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 08:48:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:a0:e1:cf:f1:68:99:cb:b2:14:c8:6f:10:02:a2:6b:33:45:85:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 4 12:33:17 2026 GMT
Not After : Jun 3 12:38:17 2027 GMT
Subject: CN=40830CE4B7B44C7C4248D25B4887B6F2B091EF8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7b:ae:b8:85:a4:9e:e9:a3:1f:35:2e:8c:cf:
e0:2a:40:05:01:f1:e6:ce:29:d4:9f:c9:d0:10:cb:
4b:1b:b1:c6:14:e9:10:1b:34:43:47:26:0f:e5:65:
a7:e0:73:32:c7:9c:fb:56:92:a9:8d:ee:3a:ad:61:
00:56:55:de:a3:c4:02:19:b4:ec:2c:b4:91:ff:f3:
c2:5b:59:08:41:14:9c:5a:97:ca:8b:27:35:6c:cb:
e2:78:9a:d8:e1:9e:20:64:7f:49:54:3b:4e:fd:fb:
86:b2:f3:cf:35:c2:8e:07:b3:6a:b5:23:34:74:45:
28:20:53:e7:f0:e9:59:6a:43:fc:5d:34:ab:5f:26:
eb:f3:3f:6d:20:bb:dc:a1:c4:d1:83:9d:46:b4:2e:
8c:9e:54:88:ee:22:c2:bc:5e:d4:63:74:1e:e9:ba:
ea:37:87:31:dd:0a:f0:a0:a2:88:81:61:79:3e:ac:
c4:7e:c0:47:60:bc:74:7d:0c:3d:2a:74:92:06:e2:
04:42:b9:82:e9:44:18:06:79:56:a6:4d:16:6d:6c:
1a:fb:7f:9b:91:f3:42:83:c3:59:b8:d4:c9:d3:ee:
d9:11:77:e0:85:a5:42:2f:a8:50:2d:d4:ef:84:94:
91:3f:f6:aa:1e:78:80:54:31:4a:ab:75:cd:2b:4d:
ad:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:83:0C:E4:B7:B4:4C:7C:42:48:D2:5B:48:87:B6:F2:B0:91:EF:8A
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.28.0/24
179.61.154.0/24
181.214.95.0/24
181.215.0.0/24
181.215.48.0/24
Signature Algorithm: sha256WithRSAEncryption
44:14:64:d9:97:c2:42:b0:3a:01:e1:a8:0c:2a:37:76:32:00:
0f:61:a8:51:f1:09:87:d6:d5:93:6d:1d:57:63:d5:35:89:13:
b4:3f:d5:26:31:54:b8:bf:80:aa:93:6a:2f:1d:58:56:37:53:
7e:46:f5:4d:f1:0e:2d:06:d3:0a:eb:30:6d:42:73:cb:3f:e5:
0f:b1:2f:e3:c3:a9:5b:f5:1b:d5:59:c8:65:77:e3:0e:75:92:
e7:ca:4c:eb:e7:e5:7f:5f:14:07:6e:89:4c:14:03:d0:c1:f4:
ba:a5:37:08:51:f5:c4:87:b8:20:75:5d:dd:2f:45:23:50:03:
85:3b:7d:02:07:2f:33:ba:36:78:66:82:8c:e0:3b:4d:1b:57:
e8:82:f8:74:7c:31:da:c6:8c:46:8b:b2:42:13:17:20:a5:4c:
b7:1e:ac:d0:f0:39:82:90:57:bf:9e:97:c2:a9:8b:10:82:d2:
8c:74:72:6c:97:de:d9:9d:fe:32:24:f5:8d:e8:00:a8:3e:c3:
2f:52:88:a4:77:38:7e:cc:a2:3d:64:06:d8:dc:cb:42:b0:e5:
75:03:11:eb:21:7e:3d:5e:29:8d:31:2b:c1:70:49:7a:46:be:
ce:34:27:fd:e8:a7:7e:d5:78:e9:5f:55:a7:ee:42:7e:8d:57:
87:dc:68:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 18:26:43 2026 by rpki-client