Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS63199.roa
File: AS63199.roa (raw, json)
Hash identifier: le7h0jwbhcjl/ZnOFQu6zM9tsYxx7+bWND6dL6rGeu4=
Subject key identifier: E8:90:6D:65:5E:C6:31:2D:3D:95:F8:4D:93:1C:D5:39:25:29:BE:6B
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 63420F041BAAA1E1BC0134A1ECF51781924E1237
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS63199.roa
Signing time: Mon 09 Feb 2026 03:50:34 +0000
ROA not before: Mon 09 Feb 2026 03:45:34 +0000
ROA not after: Mon 08 Feb 2027 03:50:34 +0000
asID: 63199
IP address blocks: 103.141.68.0/24 maxlen: 24
185.141.166.0/24 maxlen: 24
185.145.37.0/24 maxlen: 24
185.151.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 01:06:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:42:0f:04:1b:aa:a1:e1:bc:01:34:a1:ec:f5:17:81:92:4e:12:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Feb 9 03:45:34 2026 GMT
Not After : Feb 8 03:50:34 2027 GMT
Subject: CN=E8906D655EC6312D3D95F84D931CD5392529BE6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:21:62:ae:a1:bc:75:9c:98:d1:5d:0b:80:cb:
71:06:c2:4c:0c:2e:89:2b:e6:ef:2a:c4:63:5b:ef:
d1:64:45:72:9f:58:56:1e:67:b5:15:ba:26:e4:5c:
67:48:09:7b:60:5c:35:cc:79:ce:09:a5:29:d6:a2:
8c:69:0e:99:39:a8:60:c9:d5:8e:3a:62:f7:b1:dc:
a8:53:31:aa:32:4b:b0:22:d0:b7:63:e9:15:2a:cc:
eb:28:ac:d5:0a:34:6c:3f:21:1f:c4:05:10:0b:d8:
d1:32:d7:90:cd:28:b8:f4:93:b4:fc:f5:34:ee:27:
8c:5d:11:a0:7b:10:65:5f:53:b8:c4:ad:25:a5:b4:
06:54:63:83:30:d3:29:c0:73:17:0d:5c:25:98:35:
24:81:af:a2:29:6e:bb:17:b9:38:64:81:2e:62:a9:
eb:67:89:73:5f:3e:4e:3a:cb:72:c0:47:10:84:47:
32:1b:db:cd:4a:f1:fd:88:9b:57:8b:94:73:7c:01:
d3:4d:f8:c4:87:59:5c:13:87:d0:91:32:03:92:5d:
b5:b5:6f:58:2d:c0:01:50:74:aa:cf:e6:a6:64:e4:
0a:ff:b6:1e:72:85:11:75:f3:82:b4:1e:43:15:12:
3c:5a:87:90:90:0b:32:71:cc:c4:04:85:2d:a4:be:
69:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:90:6D:65:5E:C6:31:2D:3D:95:F8:4D:93:1C:D5:39:25:29:BE:6B
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS63199.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.141.68.0/24
185.141.166.0/24
185.145.37.0/24
185.151.58.0/24
Signature Algorithm: sha256WithRSAEncryption
32:2d:4d:ad:fb:04:eb:a0:74:4b:8e:bc:1e:33:c0:38:df:9e:
ff:65:8c:96:6c:21:e1:a7:ef:2b:16:3b:25:ee:18:37:c0:23:
72:9b:2e:7e:a0:c1:d2:27:96:22:b9:15:85:be:1e:56:99:cd:
06:2e:7c:e2:b7:05:10:f8:e6:29:7e:a8:1a:ef:21:c8:da:95:
42:9e:0b:c0:ba:e7:dc:97:d2:a5:ff:0a:90:25:9b:de:08:63:
99:9f:4f:5f:f1:bd:0f:7d:78:db:a2:cf:31:04:af:3c:bb:55:
08:4e:8d:b0:ea:48:c8:b7:e5:e5:a2:d2:2d:45:6e:74:a5:10:
a9:60:11:8d:b7:fb:fe:a2:e2:3d:3d:94:62:77:96:a4:3a:58:
88:95:64:42:99:64:8c:db:4e:55:9d:bb:d0:17:ec:f1:11:1f:
52:ef:63:29:b9:b0:0c:ac:a3:2d:7e:81:33:ae:49:1d:07:5c:
5c:12:78:75:54:87:9f:89:aa:c9:21:fa:7c:d2:9b:7a:fa:a7:
3b:58:d4:8d:f5:c2:61:1b:fd:51:da:22:ba:3d:9f:1f:c6:f8:
3f:29:49:2a:7c:ee:e8:99:59:7c:e4:3c:ce:9b:51:8a:b0:e3:
1a:a1:9a:30:2a:83:67:90:4a:5a:32:ef:92:20:fc:9c:e4:09:
81:f4:85:82
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUY0IPBBuqoeG8ATSh7PUXgZJOEjcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNjAyMDkwMzQ1MzRaFw0yNzAyMDgwMzUwMzRaMDMxMTAvBgNV
BAMTKEU4OTA2RDY1NUVDNjMxMkQzRDk1Rjg0RDkzMUNENTM5MjUyOUJFNkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMIWKuobx1nJjRXQuAy3EGwkwM
Lokr5u8qxGNb79FkRXKfWFYeZ7UVuibkXGdICXtgXDXMec4JpSnWooxpDpk5qGDJ
1Y46Yvex3KhTMaoyS7Ai0Ldj6RUqzOsorNUKNGw/IR/EBRAL2NEy15DNKLj0k7T8
9TTuJ4xdEaB7EGVfU7jErSWltAZUY4Mw0ynAcxcNXCWYNSSBr6IpbrsXuThkgS5i
qetniXNfPk46y3LARxCERzIb281K8f2Im1eLlHN8AdNN+MSHWVwTh9CRMgOSXbW1
b1gtwAFQdKrP5qZk5Ar/th5yhRF184K0HkMVEjxah5CQCzJxzMQEhS2kvmkDAgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQU6JBtZV7GMS09lfhNkxzVOSUpvmswHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTNjMxOTkucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBABnjUQD
BAC5jaYDBAC5kSUDBAC5lzowDQYJKoZIhvcNAQELBQADggEBADItTa37BOugdEuO
vB4zwDjfnv9ljJZsIeGn7ysWOyXuGDfAI3KbLn6gwdInliK5FYW+HlaZzQYufOK3
BRD45il+qBrvIcjalUKeC8C659yX0qX/CpAlm94IY5mfT1/xvQ99eNuizzEErzy7
VQhOjbDqSMi35eWi0i1FbnSlEKlgEY23+/6i4j09lGJ3lqQ6WIiVZEKZZIzbTlWd
u9AX7PERH1LvYym5sAysoy1+gTOuSR0HXFwSeHVUh5+Jqskh+nzSm3r6pztY1I31
wmEb/VHaIro9nx/G+D8pSSp87uiZWXzkPM6bUYqw4xqhmjAqg2eQSloy75Ig/Jzk
CYH0hYI=
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:33:54 2026 by rpki-client