Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215304.roa
File: AS215304.roa (raw, json)
Hash identifier: Gu88VnRayddTX04nfHc/RScsE9n8E9jQTZUr0FOmLI4=
Subject key identifier: 05:13:30:9C:37:6B:11:96:CC:F2:6F:B9:68:EA:E7:AE:ED:8F:6C:F3
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 04A243202E9D5FA77B85F37E9343B25A6213BAC5
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215304.roa
Signing time: Mon 07 Apr 2025 07:49:47 +0000
ROA not before: Mon 07 Apr 2025 07:44:47 +0000
ROA not after: Mon 06 Apr 2026 07:49:47 +0000
asID: 215304
IP address blocks: 82.26.72.0/23 maxlen: 24
82.26.78.0/23 maxlen: 24
82.26.87.0/24 maxlen: 24
82.26.91.0/24 maxlen: 24
82.26.93.0/24 maxlen: 24
82.26.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 18:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:a2:43:20:2e:9d:5f:a7:7b:85:f3:7e:93:43:b2:5a:62:13:ba:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 7 07:44:47 2025 GMT
Not After : Apr 6 07:49:47 2026 GMT
Subject: CN=0513309C376B1196CCF26FB968EAE7AEED8F6CF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d1:ee:2a:b7:a1:a6:ba:21:7d:71:91:b2:65:
ad:0c:5d:bd:8b:dc:3c:7d:3c:6e:fb:77:f1:aa:ac:
55:8d:54:a5:6b:e7:bf:38:97:43:92:13:f8:c9:6f:
20:9c:a4:d3:05:34:c9:da:55:e6:66:73:da:3d:f5:
88:70:8d:48:d2:04:27:1b:43:7d:ef:a3:48:0a:1d:
97:7d:48:a2:f8:e8:84:1d:22:9c:db:95:c5:ed:a7:
24:94:4e:99:60:30:3e:6d:3d:24:41:43:ab:75:5a:
9c:3f:1b:11:3d:f2:04:05:63:76:9f:de:db:73:90:
9e:99:bb:61:06:ab:cb:3d:2d:a8:72:f3:99:58:15:
fb:30:bd:5b:d5:01:30:10:b6:e9:a1:4d:ed:50:55:
64:45:4f:55:99:e1:18:82:a2:9a:9f:91:ac:f9:2a:
9e:70:b4:8f:40:40:ab:48:5d:b4:11:e5:19:5b:25:
2d:06:ba:36:20:e9:ac:98:eb:b3:87:a4:ad:f5:87:
67:b1:70:01:ea:b6:d6:14:48:cd:c5:da:b8:80:7d:
55:64:9b:d9:37:a2:a3:1b:79:fa:da:b8:6a:f5:3d:
36:4b:01:48:f9:f8:a2:32:4c:30:27:81:c0:8d:25:
a5:d9:58:ae:1f:53:fa:0d:ad:55:cd:3b:53:59:e0:
51:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:13:30:9C:37:6B:11:96:CC:F2:6F:B9:68:EA:E7:AE:ED:8F:6C:F3
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215304.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.26.72.0/23
82.26.78.0/23
82.26.87.0/24
82.26.91.0/24
82.26.93.0-82.26.94.255
Signature Algorithm: sha256WithRSAEncryption
0e:fd:69:77:35:60:cc:00:0b:2a:59:e0:c2:92:89:ff:5e:28:
5b:c3:93:62:2b:79:4e:41:91:57:89:45:03:45:3e:c4:d9:59:
fe:0e:1d:31:86:be:ee:1c:6c:82:62:97:0b:9d:df:88:b9:81:
f3:bb:2e:c9:00:07:33:d8:ee:40:22:fc:7a:49:2d:ae:02:c1:
e6:b2:ae:79:5a:30:a3:45:8f:fe:52:34:25:c3:cd:ea:a3:ef:
86:1b:99:60:6b:e7:4c:74:5d:fd:5d:fc:4d:a3:00:36:65:87:
d6:00:6f:86:45:d4:f3:bd:8e:da:a9:f8:1f:12:bc:d6:0e:cc:
7c:12:9a:2e:85:54:d7:21:58:60:e7:63:07:ae:a5:f6:26:29:
95:1c:92:54:db:16:9f:18:18:84:f3:c8:f3:1d:57:97:dc:81:
e9:83:1c:04:9b:72:29:20:96:9d:3a:2f:62:ac:46:a0:b2:b7:
fd:83:f1:07:e0:08:24:c1:8d:d4:e7:e1:a3:1e:82:ac:38:55:
5f:a5:03:97:2f:6b:9e:d6:da:29:c2:b5:65:ed:2a:af:a5:03:
b2:0b:9d:24:80:cf:f1:a7:33:62:0e:9d:8e:d5:aa:c0:12:c9:
20:7f:f7:ea:4c:17:02:36:71:cc:8d:45:1a:81:8b:cf:79:63:
2d:d9:5d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:33:46 2025 by rpki-client