Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
File: AS269070.roa (raw, json)
Hash identifier: xgfuPS81841WRiVR7vplXNQz8VqNBMiL53HoPWCOLF8=
Subject key identifier: B2:E9:33:F1:EF:7D:18:AB:6D:E0:29:9B:6A:12:2D:71:5E:5F:5A:05
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 3138FCACEF8CB1E3B249739ADAEC2B5A1FF2302B
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
Signing time: Mon 01 Sep 2025 00:18:30 +0000
ROA not before: Mon 01 Sep 2025 00:13:30 +0000
ROA not after: Mon 31 Aug 2026 00:18:30 +0000
asID: 269070
IP address blocks: 45.137.28.0/24 maxlen: 24
179.61.154.0/24 maxlen: 24
181.214.95.0/24 maxlen: 24
181.215.0.0/24 maxlen: 24
181.215.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 10:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:38:fc:ac:ef:8c:b1:e3:b2:49:73:9a:da:ec:2b:5a:1f:f2:30:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Sep 1 00:13:30 2025 GMT
Not After : Aug 31 00:18:30 2026 GMT
Subject: CN=B2E933F1EF7D18AB6DE0299B6A122D715E5F5A05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:44:d7:d4:93:b3:e1:8f:e2:32:be:2a:f9:3c:
7c:71:78:68:f6:32:4d:27:01:8a:41:4b:00:d2:e1:
01:2a:ef:3a:05:68:1d:a5:30:4e:8b:fb:ff:a1:b2:
2b:e0:b5:db:2d:4b:70:83:33:9a:af:5a:84:5c:58:
f0:7e:f2:52:1b:57:e2:59:76:00:f2:56:77:2f:0e:
fd:9e:81:74:d8:b4:aa:43:61:b5:72:6c:e2:1a:05:
38:a9:89:ed:a1:e1:c9:e7:a2:37:d4:54:29:fd:24:
b4:c6:31:5c:b6:8b:91:a3:59:89:33:d1:ad:ca:2c:
64:8c:6b:c1:a8:2f:0c:91:a5:79:51:53:74:6c:3d:
98:57:d8:fb:c0:5d:7f:75:93:83:8c:cd:7b:78:19:
eb:31:bb:c9:12:43:19:d1:65:d2:cc:3b:28:f4:d3:
39:ba:d1:7a:b4:db:a5:db:05:6b:c2:54:09:43:9c:
ed:50:6a:d0:ac:a6:37:78:7d:86:44:94:62:42:90:
b8:84:4d:38:3d:6e:47:e7:ba:af:58:9f:83:d3:aa:
ad:5a:8e:81:e3:96:5c:af:8d:ff:9d:f8:04:8d:8e:
02:4a:55:11:b8:ab:73:70:11:47:cb:89:af:a1:b7:
68:87:36:ee:f4:9a:c4:88:23:2f:3b:1d:4e:83:16:
29:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E9:33:F1:EF:7D:18:AB:6D:E0:29:9B:6A:12:2D:71:5E:5F:5A:05
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS269070.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.28.0/24
179.61.154.0/24
181.214.95.0/24
181.215.0.0/24
181.215.48.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:da:44:f5:de:5d:3e:8d:23:f9:8c:43:21:c2:ce:6b:58:13:
ad:66:e7:18:17:5f:c3:96:94:c9:48:8d:83:de:5c:f1:97:a4:
16:44:be:82:ef:1c:dc:5b:d9:1a:5c:98:01:a5:e3:e6:ea:6d:
c8:95:6b:f2:3b:7c:0b:4e:a5:ef:9a:72:18:ee:92:a0:1a:8e:
75:1b:9c:4f:91:64:3d:65:ac:4f:ef:08:20:a4:e0:fb:c4:34:
13:4d:ed:34:61:df:59:da:fe:35:09:a4:0a:db:3f:bd:83:98:
2e:37:e2:9b:38:44:1b:19:1d:60:d3:64:9c:c2:72:8a:e9:cc:
39:3c:14:fd:42:6a:f6:d2:a3:7f:08:77:e8:d4:0f:34:5f:cf:
1a:13:22:12:06:19:73:7d:00:9b:33:8f:ea:2b:0a:cb:35:c7:
81:ca:e1:8e:ff:59:1c:e6:58:06:a7:49:5a:32:4c:7a:19:7c:
de:b3:56:18:a4:e7:88:e5:1f:02:9d:0e:b6:be:89:93:e6:b9:
af:41:39:c2:17:8e:c7:97:4c:75:ae:3d:f9:17:b1:b2:2e:94:
85:d0:a3:f0:37:89:05:85:2d:ab:b0:5a:f6:08:4a:a4:65:d8:
d9:19:f0:05:a8:d9:98:34:4d:fb:a3:d9:e1:a5:2f:5b:7c:bd:
af:d7:df:95
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgIUMTj8rO+MseOySXOa2uwrWh/yMCswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNTA5MDEwMDEzMzBaFw0yNjA4MzEwMDE4MzBaMDMxMTAvBgNV
BAMTKEIyRTkzM0YxRUY3RDE4QUI2REUwMjk5QjZBMTIyRDcxNUU1RjVBMDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHRNfUk7Phj+Iyvir5PHxxeGj2
Mk0nAYpBSwDS4QEq7zoFaB2lME6L+/+hsivgtdstS3CDM5qvWoRcWPB+8lIbV+JZ
dgDyVncvDv2egXTYtKpDYbVybOIaBTipie2h4cnnojfUVCn9JLTGMVy2i5GjWYkz
0a3KLGSMa8GoLwyRpXlRU3RsPZhX2PvAXX91k4OMzXt4Gesxu8kSQxnRZdLMOyj0
0zm60Xq026XbBWvCVAlDnO1QatCspjd4fYZElGJCkLiETTg9bkfnuq9Yn4PTqq1a
joHjllyvjf+d+ASNjgJKVRG4q3NwEUfLia+ht2iHNu70msSIIy87HU6DFilvAgMB
AAGjggIiMIICHjAdBgNVHQ4EFgQUsukz8e99GKtt4CmbahItcV5fWgUwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjY5MDcwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQALYkc
AwQAsz2aAwQAtdZfAwQAtdcAAwQAtdcwMA0GCSqGSIb3DQEBCwUAA4IBAQBd2kT1
3l0+jSP5jEMhws5rWBOtZucYF1/DlpTJSI2D3lzxl6QWRL6C7xzcW9kaXJgBpePm
6m3IlWvyO3wLTqXvmnIY7pKgGo51G5xPkWQ9ZaxP7wggpOD7xDQTTe00Yd9Z2v41
CaQK2z+9g5guN+KbOEQbGR1g02ScwnKK6cw5PBT9Qmr20qN/CHfo1A80X88aEyIS
BhlzfQCbM4/qKwrLNceByuGO/1kc5lgGp0laMkx6GXzes1YYpOeI5R8CnQ62vomT
5rmvQTnCF47Hl0x1rj35F7GyLpSF0KPwN4kFhS2rsFr2CEqkZdjZGfAFqNmYNE37
o9nhpS9bfL2v19+V
-----END CERTIFICATE-----
Generated at Fri Sep 5 12:08:50 2025 by rpki-client