Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS64267.roa
File: AS64267.roa (raw, json)
Hash identifier: PsA2Kz59YQsUleh8iTv7J05Cqp9EbatpRmMj/6u08Ow=
Subject key identifier: D5:35:3E:44:3A:5A:CC:AD:9E:FE:6D:90:52:E9:7E:0F:DF:43:94:50
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 0BA775F680736C9C1673C957CA42A6C39983196F
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS64267.roa
Signing time: Sun 15 Feb 2026 00:07:06 +0000
ROA not before: Sun 15 Feb 2026 00:02:06 +0000
ROA not after: Sun 14 Feb 2027 00:07:06 +0000
asID: 64267
IP address blocks: 179.61.209.0/24 maxlen: 24
181.41.212.0/24 maxlen: 24
181.214.229.0/24 maxlen: 24
181.215.238.0/24 maxlen: 24
191.96.249.0/24 maxlen: 24
191.101.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:a7:75:f6:80:73:6c:9c:16:73:c9:57:ca:42:a6:c3:99:83:19:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Feb 15 00:02:06 2026 GMT
Not After : Feb 14 00:07:06 2027 GMT
Subject: CN=D5353E443A5ACCAD9EFE6D9052E97E0FDF439450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:cb:ef:62:25:24:00:65:6b:ff:7f:55:bd:27:
b1:9a:fe:a3:85:bf:6c:2d:64:7b:43:ef:47:65:a1:
f7:aa:70:dc:10:fd:bb:7a:37:ea:48:71:4e:a2:10:
28:be:cf:8a:d3:cc:66:74:d2:b0:fb:0f:96:64:9b:
ce:e1:a3:47:89:90:90:00:89:59:06:14:1b:97:78:
c3:63:a8:1f:c8:9e:3c:32:f9:be:e0:42:3e:9d:89:
79:22:b9:fc:e0:7b:24:17:9a:42:c5:ab:a1:56:b5:
5c:b6:98:28:11:2d:4a:e2:ae:6c:26:cd:96:68:fb:
2b:64:13:92:a8:91:e9:83:6b:f2:de:7b:38:2e:47:
a9:c1:70:97:33:84:8e:09:db:f9:c8:e8:fe:9e:b9:
d1:ce:3f:f8:5d:c3:5e:98:6a:94:0a:18:5c:1b:93:
f1:7c:4a:3e:fd:b0:36:3a:6a:18:3e:85:29:d0:20:
34:f2:f4:f7:a9:15:88:93:83:6a:81:06:6a:96:0c:
de:3e:20:c6:51:b6:ba:cb:38:69:7f:9e:1b:61:bc:
cd:6b:57:9b:ef:fa:30:3c:67:54:cc:41:29:60:1a:
d4:14:18:1d:df:cf:f5:35:0a:0f:05:81:0d:c3:99:
d2:cf:a6:12:97:2b:7a:de:82:4a:ef:04:a4:6d:09:
3c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:35:3E:44:3A:5A:CC:AD:9E:FE:6D:90:52:E9:7E:0F:DF:43:94:50
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS64267.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.209.0/24
181.41.212.0/24
181.214.229.0/24
181.215.238.0/24
191.96.249.0/24
191.101.137.0/24
Signature Algorithm: sha256WithRSAEncryption
38:71:ff:ad:b8:e7:fd:0d:1b:86:37:d2:3a:97:3d:f9:33:09:
47:b8:5d:45:64:64:7f:1f:27:00:92:76:31:8b:fa:dc:04:32:
2e:03:bb:4c:b2:dd:e8:be:51:25:5e:ff:15:8e:fb:af:8e:47:
8f:07:94:3e:38:77:3f:41:8d:9e:82:78:e6:17:6f:2a:03:3a:
e3:39:56:b8:4e:2f:72:02:4b:0a:d3:a1:52:8a:38:bd:6a:ae:
96:fc:4f:c7:81:81:00:ae:a5:5b:2c:f1:6e:96:fe:a9:33:ae:
59:1b:36:f9:1e:e6:b2:09:44:6c:de:a1:da:fb:54:2b:ca:c9:
65:ac:c3:1c:77:0f:a6:87:22:48:ed:1c:fc:82:51:30:df:4e:
4a:87:94:f4:6f:72:d0:06:08:4a:bf:c2:68:41:3b:4d:40:01:
12:02:c9:ee:1c:ec:5c:42:f8:f4:76:66:d6:fb:19:5c:4f:55:
57:27:1a:3e:55:3a:50:e6:6c:6c:c9:3a:09:16:b6:80:56:cc:
1b:b3:26:3a:54:5d:e8:d6:c9:4d:11:49:cc:db:6f:df:8c:4e:
d7:78:67:fc:81:03:79:db:68:d6:bb:64:ca:62:54:48:4f:6d:
2a:5c:6d:a5:fe:2b:82:bd:d3:f9:2c:81:c6:fe:e2:00:f2:57:
40:32:a9:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:48:11 2026 by rpki-client