Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS30058.roa
File: AS30058.roa (raw, json)
Hash identifier: dsuUwzkRLEupkk5vuTf4HAKoy5BPTsOVu62p6fjx8ow=
Subject key identifier: 69:5F:A5:A2:C5:78:5F:19:40:50:C9:10:B1:E8:6F:2A:19:FB:E3:AF
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 14051A5BB9F22EDFA6FB9C5A449B60AA08D3802E
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS30058.roa
Signing time: Sat 30 May 2026 13:11:54 +0000
ROA not before: Sat 30 May 2026 13:06:54 +0000
ROA not after: Sat 29 May 2027 13:11:54 +0000
asID: 30058
IP address blocks: 181.214.124.0/24 maxlen: 24
181.214.182.0/24 maxlen: 24
181.214.220.0/24 maxlen: 24
181.215.109.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 14:59:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:05:1a:5b:b9:f2:2e:df:a6:fb:9c:5a:44:9b:60:aa:08:d3:80:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 30 13:06:54 2026 GMT
Not After : May 29 13:11:54 2027 GMT
Subject: CN=695FA5A2C5785F194050C910B1E86F2A19FBE3AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:21:98:e7:81:5d:69:44:14:67:af:3b:69:82:
83:49:a4:dc:d8:b8:86:a5:67:c6:0e:cc:39:54:51:
cf:ed:f1:61:66:e3:6b:3f:a7:07:9c:7b:18:57:1d:
df:f1:e1:9a:6f:7e:50:5b:75:22:08:c5:08:2e:6e:
bd:bd:f6:30:bd:3e:ed:dc:c3:f4:fe:41:4f:00:fc:
36:26:49:cf:7e:14:20:19:4d:4a:e4:f5:68:eb:cd:
17:c1:f9:2a:f4:8d:23:4d:8c:9a:d2:f0:7b:f0:ac:
e3:a0:1a:b6:37:62:83:a2:c6:9c:4f:ad:2f:75:56:
af:2f:4d:ce:30:34:66:93:f6:93:b0:82:0a:64:19:
5b:e5:90:dc:84:ef:bb:be:49:bf:6b:fb:e9:b4:dc:
24:35:1b:9f:33:79:9a:23:e9:ad:7b:84:47:14:f8:
eb:c1:41:ca:4e:2a:d1:ea:55:1f:dd:f9:89:49:f9:
aa:34:5c:7e:75:f5:1b:98:2d:8f:6d:fa:12:8c:a6:
c9:85:65:89:2e:e5:b9:57:62:a8:c1:81:98:20:46:
29:7f:67:eb:d2:f5:4b:c0:2f:49:7f:b2:3f:2c:47:
23:d4:22:13:44:60:da:fe:11:3e:b1:dc:5a:fd:2a:
60:a3:e1:dc:4e:c2:0f:39:32:66:7a:b9:ae:27:66:
bf:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5F:A5:A2:C5:78:5F:19:40:50:C9:10:B1:E8:6F:2A:19:FB:E3:AF
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS30058.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.124.0/24
181.214.182.0/24
181.214.220.0/24
181.215.109.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:3b:e4:a1:a8:aa:f6:b9:3a:ad:bb:21:68:12:a8:f1:a5:4e:
1e:6a:b2:a5:97:3b:1c:31:fd:7b:5f:b8:bd:7d:34:9f:b3:7c:
0c:fb:ae:7d:55:60:71:bb:3b:89:79:4b:57:7b:76:db:0d:df:
05:43:cf:32:c8:14:06:d2:b8:d8:85:1e:47:2a:08:48:c0:ff:
eb:de:26:71:8c:91:f2:80:8f:0f:b6:2e:f6:7a:72:2f:f5:14:
09:02:1f:a3:8e:1a:67:ed:01:26:64:98:ab:81:9f:cb:d2:dd:
32:ef:7e:ce:1a:4b:79:87:23:af:60:7a:36:6b:e2:72:0e:1f:
d2:90:cc:4c:21:85:ae:aa:36:f8:bc:fa:87:0b:53:38:e4:d2:
87:5b:bc:a8:88:3b:ea:da:a6:bd:0b:a6:2e:bc:86:0e:78:42:
17:8d:e4:ed:fc:bd:76:e1:c3:de:05:b7:88:09:20:bc:58:51:
e9:ea:c2:56:06:c1:82:7a:29:26:fb:4e:5c:a5:0e:38:f0:e8:
90:83:6b:c4:57:c6:73:6a:9b:b3:9f:81:9e:b6:8e:25:68:5b:
45:ad:9f:be:9f:0e:bb:cc:61:a2:be:ad:f6:b8:9f:b1:5f:0a:
dc:10:27:3d:f3:f6:de:bd:d4:62:95:7e:f6:8d:0d:b1:38:12:
0e:d1:4e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 01:19:22 2026 by rpki-client