Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS63199.roa
File: AS63199.roa (raw, json)
Hash identifier: wHCg9CCCVooEbG7KGkaZMdOCEYqD79oIs/PBHJsKjyY=
Subject key identifier: 49:77:E4:A7:1F:8B:98:D9:A3:0B:42:8C:68:BC:81:40:EB:47:6C:C2
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 34DE5541ADA712CBF927CAECA4D5E42C8C17B634
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS63199.roa
Signing time: Thu 09 Apr 2026 09:15:51 +0000
ROA not before: Thu 09 Apr 2026 09:10:51 +0000
ROA not after: Thu 08 Apr 2027 09:15:51 +0000
asID: 63199
IP address blocks: 92.242.186.0/24 maxlen: 24
181.41.196.0/24 maxlen: 24
181.41.210.0/24 maxlen: 24
185.137.12.0/24 maxlen: 24
191.101.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 15:58:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:de:55:41:ad:a7:12:cb:f9:27:ca:ec:a4:d5:e4:2c:8c:17:b6:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 9 09:10:51 2026 GMT
Not After : Apr 8 09:15:51 2027 GMT
Subject: CN=4977E4A71F8B98D9A30B428C68BC8140EB476CC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4b:de:43:57:9a:c4:70:46:4d:b7:ec:c9:c4:
56:ce:a5:f1:58:d0:73:dd:83:ee:d1:0a:e2:5a:2c:
8f:01:57:6f:a7:7a:d1:c8:a1:ff:41:07:22:ab:29:
40:7a:b8:4f:08:c8:d0:4d:ce:36:51:bf:fd:fa:34:
53:20:cb:95:b2:ed:00:de:b6:4b:35:c5:7e:3b:e8:
fb:0f:1d:69:aa:f9:ab:71:f2:ca:71:cc:b0:16:92:
f9:a2:a0:ab:ad:80:10:94:82:3e:81:70:e8:2c:f1:
c0:8a:5b:f7:ed:0c:e8:cf:6b:ac:b1:bb:df:f3:12:
bf:45:a8:7c:01:52:ee:33:e3:2b:ee:12:b7:01:38:
45:95:57:d1:c8:0f:0b:54:8f:cc:57:43:7e:22:0f:
df:13:c3:4f:ac:81:62:81:33:da:50:e9:9a:79:10:
bc:50:96:d1:53:e4:88:6d:b5:71:8b:52:33:e7:8b:
5b:87:7e:d7:29:1d:57:d0:07:b6:bf:eb:d1:68:0e:
c0:56:68:d9:83:f9:76:51:a7:41:7e:ea:d4:93:9f:
6f:22:08:14:44:1a:87:ba:c3:9e:90:fb:d1:5d:62:
1c:4f:a4:f6:03:65:f2:24:63:79:17:e0:7e:1d:b5:
10:da:5e:be:1d:fb:95:0b:f1:4f:9e:a1:4d:67:68:
13:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:77:E4:A7:1F:8B:98:D9:A3:0B:42:8C:68:BC:81:40:EB:47:6C:C2
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS63199.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.242.186.0/24
181.41.196.0/24
181.41.210.0/24
185.137.12.0/24
191.101.20.0/24
Signature Algorithm: sha256WithRSAEncryption
65:87:17:3d:57:96:8e:b5:d3:24:4a:fc:73:05:2b:b9:da:32:
38:73:c4:d3:82:98:2c:dc:9a:e7:90:96:93:20:95:b1:03:18:
e5:65:69:59:da:4a:ce:1b:e7:eb:09:fb:d8:c8:07:b9:be:67:
93:c1:89:72:ec:b0:97:93:d2:55:91:4c:3d:c5:33:97:b0:6e:
7f:9a:51:6a:38:33:22:de:f0:f6:2f:67:e3:30:e7:75:39:6f:
d6:4e:f7:15:d0:4a:39:d9:90:ad:a1:7b:86:c1:dc:38:c4:80:
ed:64:e0:ea:3e:77:14:57:e7:cd:63:a8:f4:a8:f8:57:d2:7b:
ff:60:d7:fa:aa:81:8e:5e:9c:cb:f6:fd:e9:45:f1:76:8e:d6:
45:e4:9d:e4:b1:3e:fd:e4:80:10:d0:ac:b9:d8:0e:8b:c3:1d:
8c:8c:c3:a7:df:47:9f:f8:3c:3b:8b:a0:78:a8:47:39:1b:a9:
cb:8b:84:85:7b:09:40:39:24:4a:de:59:33:d7:f4:f5:87:8c:
f4:00:79:4b:da:48:98:4c:c2:b2:ab:dc:17:7a:d8:a0:e9:7c:
16:1d:24:41:7e:1f:22:28:96:9f:b8:4e:38:98:51:35:ce:da:
e3:77:b2:34:3f:d4:df:e7:09:3f:62:86:c0:0b:e6:b3:fb:7a:
07:2e:2d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:07:09 2026 by rpki-client