Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS63199.roa
File: AS63199.roa (raw, json)
Hash identifier: MEtXJUyhpDzyUvIQzIkvNO1nC2yU30R4jP2bhM39d2w=
Subject key identifier: A0:83:36:0E:8D:FC:19:8D:AE:25:42:E2:0D:6C:BE:80:E1:63:01:52
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 3030EE947E8646D662E493A7DCC58BFF904BFB2B
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS63199.roa
Signing time: Tue 21 Oct 2025 07:36:14 +0000
ROA not before: Tue 21 Oct 2025 07:31:14 +0000
ROA not after: Tue 20 Oct 2026 07:36:14 +0000
asID: 63199
IP address blocks: 95.135.19.0/24 maxlen: 24
178.92.129.0/24 maxlen: 24
178.93.248.0/24 maxlen: 24
178.94.202.0/24 maxlen: 24
178.95.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:30:ee:94:7e:86:46:d6:62:e4:93:a7:dc:c5:8b:ff:90:4b:fb:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Oct 21 07:31:14 2025 GMT
Not After : Oct 20 07:36:14 2026 GMT
Subject: CN=A083360E8DFC198DAE2542E20D6CBE80E1630152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e3:0c:86:00:5e:59:68:60:ab:f3:f8:b4:61:
52:39:79:dc:0b:8d:a1:15:25:36:f8:79:73:a6:ea:
bc:3f:cb:4b:a4:ac:dc:79:9d:75:e7:bd:85:a0:b6:
b8:9e:f8:e9:74:2e:83:4b:11:16:4f:91:ed:3a:77:
ce:37:48:81:b5:64:2d:92:34:6b:0d:be:f8:2f:96:
2f:ef:fe:64:07:b4:99:46:d6:72:f8:86:69:3a:9d:
20:12:4d:6f:b4:87:51:7f:ac:7f:a0:db:39:ea:9e:
3a:60:0d:ba:41:3c:25:d6:b7:db:17:99:c4:25:31:
79:b2:70:23:56:bc:dc:ec:ac:81:22:f1:4f:7f:ef:
16:33:e7:be:b3:2f:93:bf:3d:a2:d1:e4:ab:a1:a6:
6b:c2:31:34:9b:25:44:18:a0:71:69:0f:95:b9:5c:
cd:cf:15:ce:70:1b:3a:c3:40:1e:d6:22:09:1a:bd:
c4:7f:b6:ee:ec:88:62:54:f3:18:9d:f2:e4:25:50:
84:29:db:9d:c6:ac:ce:81:a0:d5:0e:2a:23:b0:a9:
89:fe:6d:25:43:9e:7a:9b:91:5f:35:19:e8:e8:1d:
e0:c6:69:ee:0b:fc:9d:ac:4d:4f:25:72:3b:d9:ae:
37:90:56:4a:aa:f4:88:50:29:25:af:a2:02:04:55:
b1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:83:36:0E:8D:FC:19:8D:AE:25:42:E2:0D:6C:BE:80:E1:63:01:52
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS63199.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.135.19.0/24
178.92.129.0/24
178.93.248.0/24
178.94.202.0/24
178.95.86.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:40:9b:03:89:97:bd:54:e0:f4:2e:ae:08:d0:45:b8:76:44:
52:91:3e:e6:14:8f:72:85:28:42:af:f6:86:80:0d:ee:12:40:
c0:c8:5e:52:29:2a:dc:71:16:93:34:b9:c4:f7:ad:e5:6b:a9:
91:29:8e:e4:0f:2e:fd:9c:e3:8f:e6:b2:fd:cf:90:7c:87:6e:
83:d4:58:dc:4e:bf:4e:7e:47:e0:74:9d:d8:a3:46:98:58:67:
d2:5b:f9:f4:34:4b:b3:9d:e9:79:0e:73:2c:ab:60:0f:63:f0:
46:35:29:b6:af:05:b8:67:e4:ae:6c:2f:a6:22:ee:23:8c:f9:
80:df:5c:82:62:22:48:9c:8b:f1:e4:9a:6f:f6:43:40:81:29:
be:5b:df:81:d9:7f:34:ad:66:06:d5:4a:8f:55:31:66:95:07:
23:2c:79:b8:ad:98:17:e5:22:d8:e7:6a:de:bc:5e:d8:51:91:
06:f7:3b:63:2a:3f:2a:5d:94:f0:f4:ea:d7:f0:cd:96:fa:65:
13:12:65:db:b9:20:ef:c7:68:ba:81:56:86:2a:a2:87:02:ea:
22:63:9a:cf:83:86:d5:a0:bf:98:87:99:65:bd:73:80:4c:29:
d4:f2:36:5d:80:ec:fe:9f:32:4e:8f:04:fd:60:a7:bb:74:69:
8a:a9:77:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 18:26:24 2025 by rpki-client