Autonomous System Provider Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/l3PqaLSxh6k9vrvUCKmbE6gQmkY.asa
File: l3PqaLSxh6k9vrvUCKmbE6gQmkY.asa (raw, json)
Hash identifier: x39hNYyR5CBqNRDFZRAkQxFcTurTxnv+dKIdTKAhhhc=
Subject key identifier: 97:73:EA:68:B4:B1:87:A9:3D:BE:BB:D4:08:A9:9B:13:A8:10:9A:46
Certificate issuer: /CN=435e9a97fef8353b848352376046952dda0fabd8
Certificate serial: 019EEE684F1FD960BA3111B25E9422E878D9
Authority key identifier: 43:5E:9A:97:FE:F8:35:3B:84:83:52:37:60:46:95:2D:DA:0F:AB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/l3PqaLSxh6k9vrvUCKmbE6gQmkY.asa
Signing time: Mon 22 Jun 2026 08:17:53 +0000
ASPA not before: Mon 22 Jun 2026 08:17:53 +0000
ASPA not after: Thu 01 Jul 2027 00:00:00 +0000
Customer ASID: 204539
Providers: AS: 5405
AS: 6939
AS: 27523
AS: 44324
AS: 137409
AS: 213449
AS: 213605
AS: 214933
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Jun 2026 08:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ee:68:4f:1f:d9:60:ba:31:11:b2:5e:94:22:e8:78:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435e9a97fef8353b848352376046952dda0fabd8
Validity
Not Before: Jun 22 08:17:53 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9773ea68b4b187a93dbebbd408a99b13a8109a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a2:92:22:ae:5c:43:4e:3d:eb:a8:6b:83:e1:
4f:36:f2:6d:4a:2c:b6:0e:93:64:e7:41:2c:e9:fd:
59:0e:c8:cd:ec:ca:68:34:dd:ef:eb:9d:2c:9a:0c:
ec:e5:a5:42:4e:c9:20:26:a1:9d:01:c0:68:5f:32:
cc:dd:0a:d2:d9:53:35:44:9a:22:12:02:48:d1:93:
db:c8:b1:27:dc:38:ee:91:31:2a:4a:1b:c7:45:4b:
00:28:82:8c:e7:3a:7c:8d:c4:26:c9:54:e4:10:e3:
c4:02:ca:dc:64:2d:27:a4:c8:e8:d8:49:9e:79:57:
a0:e3:75:0c:29:80:b6:d2:0a:4e:b3:ee:e1:c3:00:
3a:fd:92:79:a7:70:a8:57:ff:fc:02:e7:b6:95:db:
94:de:6f:63:93:0e:97:c6:83:3d:96:e8:9c:f7:59:
bd:5f:22:bc:a3:63:d2:22:9f:71:bd:1f:52:5d:3f:
4e:b5:86:e3:32:64:c0:94:6b:16:c0:a6:56:f4:55:
4e:8f:20:05:37:b3:63:ed:af:e7:35:5f:f0:3e:a1:
e3:fe:80:1d:88:6c:e3:91:08:79:15:f3:44:0b:12:
15:2a:07:92:a1:42:51:df:52:85:88:42:46:7d:14:
3e:41:f3:a6:1a:4c:8d:d0:97:3a:bd:61:65:37:88:
0c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:73:EA:68:B4:B1:87:A9:3D:BE:BB:D4:08:A9:9B:13:A8:10:9A:46
X509v3 Authority Key Identifier:
keyid:43:5E:9A:97:FE:F8:35:3B:84:83:52:37:60:46:95:2D:DA:0F:AB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/l3PqaLSxh6k9vrvUCKmbE6gQmkY.asa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204539
Signature Algorithm: sha256WithRSAEncryption
62:10:c6:a3:7c:0e:20:b4:c2:1c:b1:f0:07:fa:fc:91:a5:d0:
0b:24:97:08:b0:b9:4d:b0:52:be:a8:7c:c7:a8:44:4e:42:b5:
59:38:82:53:74:e0:4d:79:a0:b9:43:42:7c:3b:d6:3c:84:6a:
ea:98:e5:83:69:7f:65:85:aa:9e:61:49:96:c2:7f:87:78:c0:
3b:56:d2:96:c6:e6:5c:e0:08:02:e5:7c:bb:0e:f1:f3:e6:3b:
87:de:9f:22:60:21:23:c0:fc:b2:d9:ef:cc:84:f2:c7:c2:f1:
6b:08:62:fe:a2:a2:ad:e5:4d:ed:da:9d:9e:df:65:d7:00:c2:
91:9e:99:6c:6a:c3:cf:0e:18:b2:07:85:db:fd:c0:57:e5:35:
48:b4:f2:fe:89:ac:96:bd:f2:99:0d:c3:92:ab:99:8d:3a:b4:
1e:89:c3:d4:55:3e:52:d1:ab:0a:70:3c:f6:6d:40:0c:c5:17:
0b:c6:10:c7:f9:e7:1d:5a:9b:2e:6c:a6:ae:9f:43:fa:a7:00:
7b:68:d4:b1:7c:50:e4:a6:fa:fe:31:04:71:2a:44:19:6c:3c:
e6:18:29:a6:8e:75:a2:75:bb:61:8b:de:d8:ea:8d:46:1c:84:
be:13:07:76:f3:52:38:8a:fc:fc:c2:f0:2d:eb:9c:4e:50:0b:
44:b8:89:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 10:28:05 2026 by rpki-client