Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS60064.roa
File: AS60064.roa (raw, json)
Hash identifier: OQBDUTb36xSsK/DjH3SmG3YAJ5WboyEctFJYNpMFpOw=
Subject key identifier: D9:AB:A2:87:45:F2:54:3C:C3:DC:E4:54:6B:96:E5:80:AD:55:EA:1B
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1ADBF0E67B96DC65F3161AC1A5D8AD8DF39A03F7
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS60064.roa
Signing time: Tue 07 Apr 2026 13:27:16 +0000
ROA not before: Tue 07 Apr 2026 13:22:16 +0000
ROA not after: Tue 06 Apr 2027 13:27:16 +0000
asID: 60064
IP address blocks: 84.75.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:db:f0:e6:7b:96:dc:65:f3:16:1a:c1:a5:d8:ad:8d:f3:9a:03:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 7 13:22:16 2026 GMT
Not After : Apr 6 13:27:16 2027 GMT
Subject: CN=D9ABA28745F2543CC3DCE4546B96E580AD55EA1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c4:c3:98:92:01:3c:70:43:57:00:52:4b:b8:
c1:db:19:73:45:3d:7e:30:62:fb:c6:47:22:59:d0:
27:6b:ab:95:71:48:34:27:c9:0f:0a:6a:01:99:a7:
05:a4:fc:2d:37:84:67:b1:0b:b8:0d:49:6e:5b:30:
7f:76:bb:36:2a:f6:51:24:5b:6d:03:13:2b:98:a0:
fe:fe:fa:13:45:65:52:fd:3f:09:98:ec:97:9e:77:
1d:7a:b0:19:5b:5b:3d:f4:52:8f:b3:e5:6c:b2:92:
e9:66:27:32:32:a2:1e:41:00:c1:26:23:c7:2d:53:
50:a5:d6:ac:5b:b9:51:92:6d:b8:3c:37:c3:b0:1c:
a4:31:57:76:ef:86:34:c2:eb:17:9c:b2:02:03:f7:
47:7e:56:ca:9d:63:71:6a:20:9c:57:76:10:f9:69:
6e:99:0b:8d:ce:ef:5a:22:e8:ae:9a:ba:dd:17:c1:
ff:d5:64:31:17:dd:23:fb:0f:25:a8:ec:37:dc:dd:
26:1d:3d:27:52:50:18:64:ce:00:37:e6:95:5c:94:
fe:17:ae:50:4f:99:05:bf:24:72:66:81:06:2c:85:
a2:9c:20:87:8e:00:ca:a4:6f:09:3d:b7:e6:52:85:
22:be:14:03:aa:ba:43:ce:f0:3e:f8:e5:52:22:f3:
fb:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:AB:A2:87:45:F2:54:3C:C3:DC:E4:54:6B:96:E5:80:AD:55:EA:1B
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS60064.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.75.135.0/24
Signature Algorithm: sha256WithRSAEncryption
97:87:b2:86:99:ec:a5:95:5b:fd:61:61:1f:7a:3a:94:6b:e9:
ca:28:b4:f6:14:9c:0e:79:9f:92:5b:0e:a0:d8:45:d7:f0:5f:
04:af:e0:fb:33:cb:26:79:b9:16:ad:6f:54:af:a1:ad:b2:25:
8d:22:81:a0:1a:42:06:9c:71:a8:26:e3:4a:37:0e:ef:87:06:
8a:25:02:16:ba:c3:bf:13:42:f6:86:ba:d4:49:01:8f:63:30:
f6:87:24:56:5e:51:ec:0a:bf:28:8c:4d:85:4d:64:ff:34:50:
ec:b8:a9:1a:45:04:90:8c:a1:d7:fc:b0:31:d4:62:c6:45:d0:
2a:aa:95:59:a9:df:44:f3:1e:61:c0:a1:8b:a5:ac:b4:36:d9:
e1:40:ef:fe:6e:7a:7d:1e:0c:30:a2:2f:1b:f1:86:58:2f:ef:
71:63:e6:c0:70:ed:b8:59:55:a1:a7:02:77:41:ad:30:23:84:
4c:92:84:2e:51:33:5c:4d:a8:2e:ea:9c:a7:3c:38:e8:ad:e4:
aa:4d:cf:16:d6:2a:d5:94:ce:9e:c9:e8:3e:61:1f:cd:e1:0f:
0d:8b:4a:c5:50:1a:d5:6f:be:2b:6b:38:29:10:6e:af:03:20:
c1:16:4a:11:bf:43:4e:d8:40:90:e0:2d:31:0e:9b:73:d8:fa:
5b:7d:5d:ff
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUGtvw5nuW3GXzFhrBpditjfOaA/cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA0MDcxMzIyMTZaFw0yNzA0MDYxMzI3MTZaMDMxMTAvBgNV
BAMTKEQ5QUJBMjg3NDVGMjU0M0NDM0RDRTQ1NDZCOTZFNTgwQUQ1NUVBMUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1xMOYkgE8cENXAFJLuMHbGXNF
PX4wYvvGRyJZ0Cdrq5VxSDQnyQ8KagGZpwWk/C03hGexC7gNSW5bMH92uzYq9lEk
W20DEyuYoP7++hNFZVL9PwmY7Jeedx16sBlbWz30Uo+z5WyykulmJzIyoh5BAMEm
I8ctU1Cl1qxbuVGSbbg8N8OwHKQxV3bvhjTC6xecsgID90d+VsqdY3FqIJxXdhD5
aW6ZC43O71oi6K6aut0Xwf/VZDEX3SP7DyWo7Dfc3SYdPSdSUBhkzgA35pVclP4X
rlBPmQW/JHJmgQYshaKcIIeOAMqkbwk9t+ZShSK+FAOqukPO8D745VIi8/vtAgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQU2auih0XyVDzD3ORUa5blgK1V6hswHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNjAwNjQucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABUS4cw
DQYJKoZIhvcNAQELBQADggEBAJeHsoaZ7KWVW/1hYR96OpRr6cootPYUnA55n5Jb
DqDYRdfwXwSv4PszyyZ5uRatb1Svoa2yJY0igaAaQgaccagm40o3Du+HBoolAha6
w78TQvaGutRJAY9jMPaHJFZeUewKvyiMTYVNZP80UOy4qRpFBJCModf8sDHUYsZF
0CqqlVmp30TzHmHAoYulrLQ22eFA7/5uen0eDDCiLxvxhlgv73Fj5sBw7bhZVaGn
AndBrTAjhEyShC5RM1xNqC7qnKc8OOit5KpNzxbWKtWUzp7J6D5hH83hDw2LSsVQ
GtVvvitrOCkQbq8DIMEWShG/Q07YQJDgLTEOm3PY+lt9Xf8=
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:00:12 2026 by rpki-client