Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS262287.roa
File: AS262287.roa (raw, json)
Hash identifier: Wg+pJamWu50ITyptEj5pwwb6/kIOBnYUV9JKkCZcecc=
Subject key identifier: 1B:B5:B5:55:82:E3:6C:F8:B5:75:48:D9:60:A0:00:BC:31:57:58:6A
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6F1C9F4DEE24B06F2DAAD1FC60E641638C61DF37
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS262287.roa
Signing time: Thu 04 Jun 2026 09:19:02 +0000
ROA not before: Thu 04 Jun 2026 09:14:02 +0000
ROA not after: Thu 03 Jun 2027 09:19:02 +0000
asID: 262287
IP address blocks: 85.208.74.0/24 maxlen: 24
85.208.75.0/24 maxlen: 24
181.41.220.0/24 maxlen: 24
181.214.65.0/24 maxlen: 24
181.214.67.0/24 maxlen: 24
181.214.150.0/24 maxlen: 24
181.214.151.0/24 maxlen: 24
181.214.249.0/24 maxlen: 24
181.215.11.0/24 maxlen: 24
181.215.19.0/24 maxlen: 24
181.215.80.0/24 maxlen: 24
181.215.85.0/24 maxlen: 24
181.215.97.0/24 maxlen: 24
181.215.99.0/24 maxlen: 24
181.215.101.0/24 maxlen: 24
181.215.102.0/24 maxlen: 24
181.215.103.0/24 maxlen: 24
181.215.104.0/24 maxlen: 24
181.215.105.0/24 maxlen: 24
181.215.106.0/24 maxlen: 24
181.215.128.0/24 maxlen: 24
181.215.150.0/24 maxlen: 24
181.215.156.0/24 maxlen: 24
181.215.172.0/24 maxlen: 24
181.215.195.0/24 maxlen: 24
191.96.19.0/24 maxlen: 24
191.96.47.0/24 maxlen: 24
191.96.73.0/24 maxlen: 24
191.96.139.0/24 maxlen: 24
191.96.247.0/24 maxlen: 24
191.101.152.0/24 maxlen: 24
191.101.154.0/24 maxlen: 24
191.101.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 14:27:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:1c:9f:4d:ee:24:b0:6f:2d:aa:d1:fc:60:e6:41:63:8c:61:df:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 4 09:14:02 2026 GMT
Not After : Jun 3 09:19:02 2027 GMT
Subject: CN=1BB5B55582E36CF8B57548D960A000BC3157586A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:54:45:cb:dc:6d:b0:f3:96:89:4a:ed:ad:6f:
99:9f:fe:c7:a3:e9:3a:b2:39:16:21:08:4e:f7:80:
16:45:23:04:ba:c1:e9:a9:91:8d:b0:9b:cd:3b:64:
7c:39:76:db:43:1a:f3:52:79:54:49:a8:61:1a:7b:
5e:47:e9:e1:e2:eb:d5:d9:fa:c2:1e:55:2b:6e:c0:
8e:d2:ba:e0:62:52:0c:9b:1f:e2:14:57:01:8a:82:
ed:3b:82:a9:3f:36:a8:a7:d0:bc:2d:8d:81:8f:2b:
c5:de:b1:cf:05:9b:da:41:4b:b7:e5:13:b8:3e:f7:
2f:b1:e7:31:d7:fe:71:ef:92:76:af:ca:bc:97:62:
c2:50:0e:75:f4:0b:2b:9f:32:26:fa:44:ac:32:7d:
98:0a:cd:af:5c:a9:a0:ea:1d:22:f6:31:5f:7a:42:
cf:03:08:42:1c:f8:39:23:c9:a2:5f:2b:33:b8:87:
d3:87:41:aa:53:35:50:93:60:06:0a:63:62:65:2a:
d5:b4:32:1d:82:bf:69:8f:79:01:5e:50:36:85:9f:
8f:6b:6a:4d:16:3c:fb:d0:a5:ae:0a:02:98:58:12:
3b:f7:d3:03:6c:f0:ea:a9:c0:f3:c1:7a:0e:a5:51:
6f:86:66:fa:69:15:c5:41:04:04:9c:bb:43:bc:40:
f5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:B5:B5:55:82:E3:6C:F8:B5:75:48:D9:60:A0:00:BC:31:57:58:6A
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS262287.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.74.0/23
181.41.220.0/24
181.214.65.0/24
181.214.67.0/24
181.214.150.0/23
181.214.249.0/24
181.215.11.0/24
181.215.19.0/24
181.215.80.0/24
181.215.85.0/24
181.215.97.0/24
181.215.99.0/24
181.215.101.0-181.215.106.255
181.215.128.0/24
181.215.150.0/24
181.215.156.0/24
181.215.172.0/24
181.215.195.0/24
191.96.19.0/24
191.96.47.0/24
191.96.73.0/24
191.96.139.0/24
191.96.247.0/24
191.101.152.0/24
191.101.154.0/24
191.101.225.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:6c:a4:61:db:b0:7e:5d:b0:1a:d2:7a:dd:31:63:eb:b3:4c:
11:de:46:54:d4:88:c2:ef:7b:a9:61:34:5f:e6:d8:38:89:44:
e5:62:70:b1:6a:87:94:af:22:00:4d:86:74:2c:49:b6:e5:6e:
8d:22:9f:1a:80:4c:54:07:0c:55:b4:37:67:7e:32:d7:b1:7d:
95:a8:19:ef:cd:15:61:2c:4b:f4:22:a3:8b:ab:98:77:b7:06:
22:96:1e:b9:50:dc:bd:e2:27:05:4c:97:bd:46:be:32:c6:b6:
61:5c:1a:99:31:f2:78:95:42:03:54:e7:54:77:06:fb:96:fa:
2a:58:3c:45:5d:a8:a4:f8:a0:37:dd:9d:aa:12:50:2b:3d:a8:
06:a1:09:b6:5b:60:7d:be:8f:1f:33:fb:0a:a2:d3:9c:7f:1d:
d0:47:a7:28:bc:d1:de:b3:c5:2b:15:1a:6f:4e:e8:75:6e:31:
f5:ba:c1:ad:87:b8:43:80:d1:b3:7b:89:b7:ea:48:38:5b:c7:
da:66:ef:3f:ed:de:9d:cf:35:c1:b9:8a:33:a0:7f:af:dc:60:
8e:be:6a:e1:7e:81:ce:0a:d4:94:00:1b:87:bf:a9:26:89:77:
96:4c:80:7a:9e:07:de:79:7d:7e:e9:a0:56:7d:6a:23:e7:29:
47:10:df:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:47:41 2026 by rpki-client