Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS212669.roa
File: AS212669.roa (raw, json)
Hash identifier: NgnWNFdfcxq6y8vq9yOZxLHAtPg295L4w4u3L+fit/I=
Subject key identifier: 3E:20:F0:57:6F:0D:7E:2C:51:72:C3:60:4C:F4:A0:13:29:03:97:97
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 69D851CA3F136020AD8787ABADA14C6C8957E3BE
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS212669.roa
Signing time: Sat 07 Feb 2026 14:55:37 +0000
ROA not before: Sat 07 Feb 2026 14:50:37 +0000
ROA not after: Sat 06 Feb 2027 14:55:37 +0000
asID: 212669
IP address blocks: 45.158.170.0/24 maxlen: 24
152.89.249.0/24 maxlen: 24
193.29.96.0/24 maxlen: 24
193.151.182.0/24 maxlen: 24
194.113.222.0/24 maxlen: 24
195.206.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:19:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:d8:51:ca:3f:13:60:20:ad:87:87:ab:ad:a1:4c:6c:89:57:e3:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Feb 7 14:50:37 2026 GMT
Not After : Feb 6 14:55:37 2027 GMT
Subject: CN=3E20F0576F0D7E2C5172C3604CF4A01329039797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:89:63:c2:f4:2c:97:96:9b:59:45:d0:f5:48:
64:ab:af:b0:f9:8a:fd:eb:4e:ae:a5:35:d8:74:ec:
81:98:59:95:99:58:6e:60:94:e4:b5:a9:76:34:7c:
53:5c:b8:da:1e:34:f0:bc:8b:20:1a:33:44:2c:df:
55:c4:fa:e6:13:09:2c:21:5a:5f:bf:96:3a:df:61:
08:57:39:6c:64:0c:5e:f2:fa:2f:c3:4d:9f:96:e0:
55:26:d0:ae:63:29:47:4d:f3:2f:d4:b4:e7:cd:84:
ea:2c:99:e3:63:3e:d4:fc:a6:96:aa:0f:89:77:ba:
1e:d4:fc:d2:df:d9:35:59:5d:5d:f4:ff:55:8d:0d:
19:88:c3:34:88:03:fb:a9:cd:21:c0:12:d6:d1:f8:
6a:fd:8b:31:00:4c:ac:e5:1e:68:c5:c5:ea:8d:18:
4d:1d:d6:3e:48:5c:05:5d:c9:47:6c:f3:f5:09:e1:
8d:ad:63:00:31:6b:5c:20:13:59:56:0d:d3:df:fd:
d2:19:8e:e7:d8:3c:ee:57:0e:c3:7b:b4:8d:29:b1:
56:ad:de:4c:f0:ba:48:09:98:8b:0b:4f:3d:6f:28:
f8:e2:6e:a6:5c:6a:bf:bc:eb:e6:c1:09:6f:d4:62:
e8:8a:89:9c:60:5c:86:93:1e:80:35:e8:80:25:7c:
0f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:20:F0:57:6F:0D:7E:2C:51:72:C3:60:4C:F4:A0:13:29:03:97:97
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS212669.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.170.0/24
152.89.249.0/24
193.29.96.0/24
193.151.182.0/24
194.113.222.0/24
195.206.230.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:0c:d5:af:fe:33:d0:ab:ba:cc:f9:67:8f:a0:6f:38:bd:40:
0e:e5:14:4f:43:b0:f1:0c:1d:39:f7:4b:39:fe:1a:28:e6:78:
65:5e:9c:7a:2d:cb:56:22:b7:4a:76:31:b0:41:fa:d2:df:2d:
14:9f:f0:55:e1:c3:7c:6f:5b:32:ec:53:a7:5a:76:44:0e:f7:
24:09:b8:7b:31:e5:ac:f2:b6:a3:3b:65:e8:75:fc:bf:cd:9f:
66:6b:dd:cc:51:41:f6:18:33:57:1c:53:99:20:43:96:76:c9:
d9:66:41:74:fc:45:b6:78:07:be:76:c4:b6:59:05:8e:3f:e5:
61:39:d2:07:16:0e:ac:c0:cc:d0:f5:d2:90:a8:1a:12:88:e0:
6c:3c:a6:08:7f:13:d7:46:1c:3e:08:df:2b:b4:bd:8a:9a:f8:
14:1b:13:6d:e9:1a:06:61:86:41:00:50:10:1b:ec:be:bd:23:
c4:5c:2b:d0:c7:af:b1:c8:9f:4d:c4:6d:c5:67:15:e7:04:a5:
9e:87:dc:bd:14:90:9d:5a:b3:fe:0d:c8:61:1e:28:44:87:0b:
4c:a3:ca:56:db:d3:cc:e1:85:ac:eb:35:24:43:e5:03:23:d9:
3b:f3:01:db:8d:f4:2a:23:1b:b6:d2:b0:b9:d1:70:2a:bb:16:
be:0d:67:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:40:31 2026 by rpki-client