Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS42831.roa
File: AS42831.roa (raw, json)
Hash identifier: qCRz4mAIFBeBtgR597yI6g8Uzo6wClCbwHh6qlG9fMk=
Subject key identifier: 9A:A3:5A:84:49:48:9D:3C:92:54:D5:50:F7:C4:C8:99:F8:78:68:87
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 59A5EFBA57AB9B00EFB7BBC52B72F2988AC35840
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS42831.roa
Signing time: Mon 25 May 2026 06:16:02 +0000
ROA not before: Mon 25 May 2026 06:11:02 +0000
ROA not after: Mon 24 May 2027 06:16:02 +0000
asID: 42831
IP address blocks: 5.181.124.0/24 maxlen: 24
5.252.78.0/24 maxlen: 24
37.143.61.0/24 maxlen: 24
179.61.181.0/24 maxlen: 24
181.215.25.0/24 maxlen: 24
181.215.140.0/24 maxlen: 24
181.215.226.0/24 maxlen: 24
181.215.229.0/24 maxlen: 24
191.96.110.0/24 maxlen: 24
191.96.209.0/24 maxlen: 24
191.101.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:a5:ef:ba:57:ab:9b:00:ef:b7:bb:c5:2b:72:f2:98:8a:c3:58:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 25 06:11:02 2026 GMT
Not After : May 24 06:16:02 2027 GMT
Subject: CN=9AA35A8449489D3C9254D550F7C4C899F8786887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e5:6c:79:ec:7e:cb:a0:5c:0a:db:c4:43:75:
75:f5:d9:97:7f:57:e5:63:0f:69:52:ab:4f:97:8e:
48:c0:80:df:31:43:d8:56:d2:b7:9b:16:95:e3:38:
c0:8f:0a:aa:84:2e:23:d3:7e:f1:15:26:69:c0:ec:
8b:d2:99:d8:33:db:bb:a0:48:5b:9a:dc:40:97:2d:
f9:5e:d8:82:be:57:fe:ea:27:65:29:a7:5e:83:44:
b0:4d:59:33:10:4f:1f:41:89:ca:d5:92:03:76:95:
1d:bc:31:27:ce:1c:c5:d8:9f:bc:9a:01:13:71:f2:
6a:92:f3:67:ba:31:05:28:39:f2:76:c4:bf:e8:da:
54:9f:4b:5d:2a:ac:8a:fb:87:73:c9:f1:5b:07:a4:
20:77:8f:37:5f:92:23:76:89:05:19:11:bd:3f:bf:
f5:d3:25:b6:ca:1f:60:46:99:68:9e:f6:9b:5e:f0:
86:de:8e:d9:70:c6:17:38:2e:ed:4a:47:c8:d1:16:
dd:91:95:cd:b4:a1:ec:0f:bd:4d:b6:43:31:d8:15:
c2:05:54:c6:fe:d8:24:a9:6b:e0:f3:45:62:b6:b8:
0a:14:6d:a0:c8:e4:0c:c4:96:f9:31:89:56:21:67:
23:25:31:6c:ac:a6:4e:58:93:d6:7f:ca:9e:5b:a5:
0e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A3:5A:84:49:48:9D:3C:92:54:D5:50:F7:C4:C8:99:F8:78:68:87
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS42831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.124.0/24
5.252.78.0/24
37.143.61.0/24
179.61.181.0/24
181.215.25.0/24
181.215.140.0/24
181.215.226.0/24
181.215.229.0/24
191.96.110.0/24
191.96.209.0/24
191.101.59.0/24
Signature Algorithm: sha256WithRSAEncryption
64:c2:46:02:ab:6c:97:a2:a4:3f:c7:c7:f9:5e:5d:48:b8:94:
77:3f:fe:3d:84:43:bf:4d:a9:3a:d2:55:0b:c8:06:4b:26:7b:
a5:76:23:36:da:28:56:68:ec:a4:24:45:6d:5c:86:98:52:c9:
14:55:f2:ce:b3:66:81:6a:05:d8:c8:96:8b:29:66:cf:03:fb:
08:e7:ae:1c:34:bd:d0:3f:81:68:45:81:73:2d:74:72:ba:a4:
c0:61:2c:42:04:1e:ec:cf:4a:2d:8d:1d:1e:e0:66:49:90:cf:
bd:cb:54:74:6c:2e:e8:67:1f:a6:ec:f0:31:71:1c:04:bf:fe:
e0:c5:c9:d7:13:18:bf:f6:76:e1:99:af:c1:c7:4e:62:cf:75:
76:f9:ac:88:41:08:7d:ff:22:c2:5a:36:24:df:77:46:28:6b:
88:58:83:f8:09:b3:d8:62:ee:e1:f6:0f:96:4a:3a:4a:d9:01:
8d:00:d6:01:91:3b:d4:44:15:0e:ba:52:cb:01:e8:88:f2:41:
5b:a5:45:43:f4:6c:64:f5:53:07:6b:2c:cf:f0:f7:c4:86:d7:
ba:6b:cf:73:11:c3:84:d8:97:ba:5c:0e:b0:c8:ee:ac:b5:6e:
f3:72:19:1e:3c:9d:4f:f6:45:6c:cb:3f:b5:1a:43:b4:75:54:
8d:95:d7:26
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 4 12:05:47 2026 by rpki-client