Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
File: AS61317.roa (raw, json)
Hash identifier: C3ZRSAE2z+GGMksTv0hN+QGLK0Av/O0RWslu0SlD+p8=
Subject key identifier: 01:93:59:87:BE:AC:49:5D:1C:9F:4B:AD:7E:45:85:21:D3:88:32:0B
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 233B4B2CCAE26C6DD756D05D2236967452FC46FC
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
Signing time: Sun 24 May 2026 00:00:09 +0000
ROA not before: Sat 23 May 2026 23:55:09 +0000
ROA not after: Sun 23 May 2027 00:00:09 +0000
asID: 61317
IP address blocks: 45.135.251.0/24 maxlen: 24
45.155.16.0/24 maxlen: 24
193.29.99.0/24 maxlen: 24
193.151.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 May 2026 00:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:3b:4b:2c:ca:e2:6c:6d:d7:56:d0:5d:22:36:96:74:52:fc:46:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: May 23 23:55:09 2026 GMT
Not After : May 23 00:00:09 2027 GMT
Subject: CN=01935987BEAC495D1C9F4BAD7E458521D388320B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:70:da:02:ae:ff:8b:f8:b1:b1:23:4a:d8:
15:28:78:5d:00:c6:db:66:95:88:d6:ca:fc:2e:93:
b7:6b:1c:cc:41:b4:f6:9f:b8:9c:ce:f8:8c:09:c3:
37:ec:c7:1c:8e:af:c3:76:70:c7:11:fa:b4:60:3e:
ff:0b:95:5a:d3:1c:d9:8c:4a:71:6f:f8:e7:b8:75:
53:95:e9:08:5e:06:70:1a:8f:3b:2c:fc:f0:9a:aa:
01:0a:8e:ed:fd:29:94:2e:67:5e:be:17:14:e8:d7:
03:5e:e2:ac:60:4e:53:be:11:9d:7f:59:1b:75:5c:
c6:ec:a8:e0:f4:59:8e:92:18:5c:9a:69:f0:23:ea:
f4:81:f0:80:12:f0:0c:62:b4:f0:62:45:c2:3c:71:
70:5b:54:9d:12:f7:70:e4:7b:c1:5a:40:a7:38:89:
e5:f3:83:55:f8:0b:4e:52:a1:5c:1e:cd:75:e8:87:
e0:56:18:7c:c8:df:2f:73:97:a3:70:fd:c5:56:29:
aa:94:37:aa:af:2a:d5:03:e9:16:76:97:d9:55:f1:
58:f6:2c:29:ea:9a:4a:89:5d:5c:8d:70:e8:90:d5:
6a:2a:0a:a2:a7:ff:52:5c:ff:ac:57:6b:96:19:82:
f1:74:58:68:9a:cb:44:c7:bd:f7:6c:57:9b:d6:db:
ac:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:93:59:87:BE:AC:49:5D:1C:9F:4B:AD:7E:45:85:21:D3:88:32:0B
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS61317.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.251.0/24
45.155.16.0/24
193.29.99.0/24
193.151.180.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:fd:5e:bb:9f:ec:4d:1e:5c:99:64:16:7b:d3:16:19:01:a2:
b4:2b:39:ce:8f:f7:6f:a1:14:a1:a4:72:89:a2:3f:08:e1:b8:
a0:14:46:a2:0a:1e:42:99:8c:b8:32:13:96:70:8e:90:ce:5f:
2a:69:7d:7e:da:88:18:47:ee:c7:e6:20:51:9f:f5:82:a8:60:
c8:3a:24:3b:4e:06:7f:c4:ef:35:fa:ea:ac:62:f2:a7:8f:77:
4c:bf:a3:7c:b9:e0:32:73:4c:fa:5e:2e:71:8c:e8:f1:3e:04:
05:86:5d:30:1c:07:00:b0:c3:69:40:41:45:31:24:a3:b7:d1:
24:26:1d:7a:6c:aa:27:25:39:4e:82:ea:99:5e:ad:08:77:d9:
cd:21:97:00:b4:10:db:39:fb:8b:e7:ee:82:c4:34:a6:50:5a:
5b:85:45:d1:75:de:fd:83:de:bd:e2:5d:ab:89:21:d6:9c:7f:
04:bd:0c:24:fb:df:70:01:df:47:41:ae:14:1d:93:30:1e:25:
33:ca:a6:3e:71:68:42:7a:9b:7e:b9:d9:fe:c4:03:9e:85:64:
99:9e:45:09:43:49:0f:b9:7f:4e:b2:d7:67:8a:0a:7c:e8:e8:
3a:06:f1:ce:d0:4f:20:9e:2c:cd:96:63:12:7f:7a:0c:5d:e3:
6f:25:86:5b
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUIztLLMribG3XVtBdIjaWdFL8RvwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi
MmQ2ZWQ5ZDAeFw0yNjA1MjMyMzU1MDlaFw0yNzA1MjMwMDAwMDlaMDMxMTAvBgNV
BAMTKDAxOTM1OTg3QkVBQzQ5NUQxQzlGNEJBRDdFNDU4NTIxRDM4ODMyMEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo+XDaAq7/i/ixsSNK2BUoeF0A
xttmlYjWyvwuk7drHMxBtPafuJzO+IwJwzfsxxyOr8N2cMcR+rRgPv8LlVrTHNmM
SnFv+Oe4dVOV6QheBnAajzss/PCaqgEKju39KZQuZ16+FxTo1wNe4qxgTlO+EZ1/
WRt1XMbsqOD0WY6SGFyaafAj6vSB8IAS8AxitPBiRcI8cXBbVJ0S93Dke8FaQKc4
ieXzg1X4C05SoVwezXXoh+BWGHzI3y9zl6Nw/cVWKaqUN6qvKtUD6RZ2l9lV8Vj2
LCnqmkqJXVyNcOiQ1WoqCqKn/1Jc/6xXa5YZgvF0WGiay0THvfdsV5vW26x1AgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQUAZNZh76sSV0cn0utfkWFIdOIMgswHwYDVR0j
BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi
ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM
VzdaMC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct
NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTNjEzMTcucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBAAth/sD
BAAtmxADBADBHWMDBADBl7QwDQYJKoZIhvcNAQELBQADggEBAG39Xruf7E0eXJlk
FnvTFhkBorQrOc6P92+hFKGkcomiPwjhuKAURqIKHkKZjLgyE5ZwjpDOXyppfX7a
iBhH7sfmIFGf9YKoYMg6JDtOBn/E7zX66qxi8qePd0y/o3y54DJzTPpeLnGM6PE+
BAWGXTAcBwCww2lAQUUxJKO30SQmHXpsqiclOU6C6plerQh32c0hlwC0ENs5+4vn
7oLENKZQWluFRdF13v2D3r3iXauJIdacfwS9DCT733AB30dBrhQdkzAeJTPKpj5x
aEJ6m3652f7EA56FZJmeRQlDSQ+5f06y12eKCnzo6DoG8c7QTyCeLM2WYxJ/egxd
428lhls=
-----END CERTIFICATE-----
Generated at Sun May 24 10:24:40 2026 by rpki-client