
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS28753.roa
File: AS28753.roa (raw, json)
Hash identifier: 01wfKEpQRQz0GXIFpLJmlciPKt4T/QlcSMMKJtRxnqI=
Subject key identifier: C2:0A:CF:FF:6F:4C:98:9E:F5:EB:72:B4:7C:D0:2B:14:02:87:3D:EE
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5765974818637F56E48E5CCD6A1F2BF2179FB272
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS28753.roa
Signing time: Sun 21 Jun 2026 10:47:47 +0000
ROA not before: Sun 21 Jun 2026 10:42:47 +0000
ROA not after: Sun 20 Jun 2027 10:47:47 +0000
asID: 28753
IP address blocks: 92.118.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Jul 2026 07:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:65:97:48:18:63:7f:56:e4:8e:5c:cd:6a:1f:2b:f2:17:9f:b2:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 21 10:42:47 2026 GMT
Not After : Jun 20 10:47:47 2027 GMT
Subject: CN=C20ACFFF6F4C989EF5EB72B47CD02B1402873DEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:23:80:89:28:9f:2e:29:e3:d0:26:aa:10:12:
22:df:fc:01:8a:4c:02:f5:63:e6:32:f2:f3:72:fd:
b3:84:d3:f7:47:d0:da:bc:b2:2f:21:21:e5:dc:e0:
09:e6:35:b8:29:ff:0d:fc:c8:00:ba:05:38:94:a6:
a0:7d:8d:81:3f:d1:a4:f6:1c:7b:5c:a4:3f:68:a7:
b4:94:72:a8:99:63:f5:d4:42:cc:79:80:8c:77:b7:
85:d5:5c:d4:79:82:bd:bd:74:0e:e3:35:d9:41:c6:
ec:66:7a:4b:4b:4b:01:85:65:de:aa:5c:79:8b:e4:
ec:b9:ed:3c:62:1f:a3:7c:af:cf:1a:df:dd:ee:2d:
a2:ef:56:4f:ae:ab:9d:24:e7:eb:38:55:4c:02:b9:
2c:1e:01:b8:f0:eb:e8:cd:8d:d7:cb:62:5a:c5:38:
e1:c9:ab:29:45:93:b7:36:83:7a:42:f7:93:bc:a8:
9e:42:46:5e:a3:47:b7:e8:06:32:89:0c:30:0e:00:
b2:99:2e:97:48:1c:9c:9e:32:f9:bb:d1:18:53:72:
e8:7a:20:6a:3a:06:99:65:9a:7f:cf:04:be:8e:98:
ed:95:4c:0d:77:1f:78:53:6a:5c:43:47:96:89:c8:
92:f1:de:3c:d8:ea:39:12:b5:04:b2:3f:4a:c4:63:
4d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:0A:CF:FF:6F:4C:98:9E:F5:EB:72:B4:7C:D0:2B:14:02:87:3D:EE
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS28753.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.163.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:03:aa:0e:8e:7c:59:ce:d8:17:e4:e8:2a:69:ca:bd:9a:3e:
56:e9:f7:a9:d9:5c:d7:01:f2:57:af:5a:b6:b0:6d:63:f4:90:
e3:9c:16:43:71:82:a3:45:3f:4f:61:a9:c2:af:8c:ea:7e:af:
54:30:ce:c3:b6:de:b1:34:da:23:4b:94:19:e9:60:0f:bb:af:
95:12:3b:38:af:b6:22:6e:17:f0:1b:f4:39:44:d0:bf:40:c5:
15:60:93:79:85:7a:78:d9:9f:24:aa:65:a3:25:80:99:e9:39:
9e:f3:4c:79:c4:25:d5:6d:34:8b:bb:4f:0d:41:f8:8b:59:71:
00:8b:03:40:02:da:f9:ab:dc:33:38:d5:2a:f5:2c:5c:8b:c4:
89:0d:fe:24:bf:3c:e4:0b:26:5e:41:bb:cd:65:de:1f:d1:0d:
0c:ff:4f:87:5e:d8:cb:62:29:c4:3b:11:19:65:a0:81:9d:05:
b7:19:ea:ff:5b:25:c6:e9:a3:07:57:2d:97:76:59:cb:bf:52:
c3:c2:bf:b6:d5:f3:4c:8c:3b:d0:43:53:b1:e1:1b:b7:9b:17:
ce:68:fc:a4:b9:65:27:50:da:ef:fd:85:36:b5:6f:57:ba:54:
cc:2e:79:62:5c:a7:b4:64:eb:c3:45:ce:68:cd:d1:73:50:0f:
19:ce:6a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 16:39:08 2026 by rpki-client