Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS402508.roa
File: AS402508.roa (raw, json)
Hash identifier: X70LoM4WcC1wPlXcmzcaap3ilhouEFAFf8BbVASWMV4=
Subject key identifier: 2C:1A:BB:86:2B:E9:84:F0:50:DD:AB:4C:A0:29:EB:61:83:00:3E:42
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5EEB66AB1ABB5A3FF2B75BA08349FBF3BFB7246E
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS402508.roa
Signing time: Tue 19 May 2026 09:48:44 +0000
ROA not before: Tue 19 May 2026 09:43:44 +0000
ROA not after: Tue 18 May 2027 09:48:44 +0000
asID: 402508
IP address blocks: 179.61.130.0/24 maxlen: 24
181.41.219.0/24 maxlen: 24
181.215.58.0/24 maxlen: 24
185.173.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:eb:66:ab:1a:bb:5a:3f:f2:b7:5b:a0:83:49:fb:f3:bf:b7:24:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 19 09:43:44 2026 GMT
Not After : May 18 09:48:44 2027 GMT
Subject: CN=2C1ABB862BE984F050DDAB4CA029EB6183003E42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6c:4f:e9:08:d7:83:c7:43:ef:c4:a9:d2:ab:
89:ac:33:8b:b1:ca:d5:da:03:ed:24:35:44:ca:6b:
31:e7:7d:99:be:f5:2e:16:00:74:57:41:cb:80:85:
91:b9:f9:86:79:5e:25:f6:64:4b:fd:f3:b3:33:f9:
c2:f7:59:d6:b6:08:06:74:65:7f:34:f5:56:fe:5c:
1b:08:4e:d5:ee:e9:6d:34:2a:e6:d2:5f:0f:f5:bd:
d2:f9:8e:25:90:50:f1:77:d9:83:14:7b:b2:c1:cc:
0a:2f:da:8c:33:3d:74:04:39:9b:00:ed:4b:dc:01:
bb:20:99:04:c4:40:2a:c3:fe:05:98:a4:98:ff:7e:
df:03:24:6e:ef:ff:dd:52:d9:9b:5a:26:6b:01:df:
c7:f5:1f:47:2a:79:73:cd:4d:61:bd:55:4e:03:80:
92:b1:3d:66:44:ff:44:15:bb:0e:ff:9e:63:e8:4d:
0d:cc:11:f7:3e:5e:b5:ce:07:f5:e2:14:5d:10:c0:
af:c4:07:35:12:af:57:71:f6:ff:ec:a9:6d:02:cc:
64:70:70:36:a4:d5:90:b8:c6:4d:71:66:a2:c7:a8:
43:79:b9:87:e1:c2:89:76:33:6e:27:48:7a:4b:f1:
8b:20:fe:ca:40:9d:3e:cd:bd:1f:f9:54:7a:41:7e:
3e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:1A:BB:86:2B:E9:84:F0:50:DD:AB:4C:A0:29:EB:61:83:00:3E:42
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS402508.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.130.0/24
181.41.219.0/24
181.215.58.0/24
185.173.35.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:af:7b:fb:38:70:4a:15:8d:f7:70:7b:a9:69:23:bc:42:6b:
c0:04:47:ee:ab:07:db:01:27:31:1f:98:f8:8c:25:bf:6e:af:
40:a9:5e:d4:fa:97:68:e4:99:40:c8:49:91:30:41:27:89:19:
a8:f9:85:08:59:ed:2a:56:b0:62:2d:2e:53:25:9e:5b:e7:d2:
40:e8:a5:d7:83:c8:23:28:81:9f:ce:ff:5c:5c:15:77:90:61:
b8:21:03:9f:97:cd:18:30:c4:aa:27:89:5e:95:19:ae:68:fa:
f9:b9:15:0f:1d:0d:44:4b:19:f7:af:79:6b:0a:cc:72:13:72:
dc:c1:4a:6e:e0:85:77:55:9e:13:f9:9c:06:8a:2c:c0:c2:f3:
d6:38:7d:18:9e:ff:cf:f3:44:cc:81:17:d0:bb:3e:ad:2b:7d:
ae:c9:e8:26:ef:94:1d:b3:42:5c:f1:15:07:d3:d4:65:ad:64:
37:55:25:b4:32:84:06:d2:e2:d2:8f:b0:6c:ae:21:d3:da:36:
01:a3:40:84:a0:32:88:43:64:34:2a:1c:28:4f:35:ee:82:04:
2d:2a:58:2f:98:6c:aa:d1:22:0a:d9:90:84:71:ce:49:a3:45:
0c:d4:56:2b:9e:21:c0:06:06:e3:40:dc:37:37:85:f3:91:d5:
a1:ad:b6:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 24 13:11:33 2026 by rpki-client