Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6079.roa
File: AS6079.roa (raw, json)
Hash identifier: 0cywp61sbcUrjXrCHJdjfzxzT99DgzXET1huaGjiaV4=
Subject key identifier: 8A:85:E6:B6:F2:E8:1E:E4:C5:77:27:0A:60:9B:8C:77:1A:8A:21:6C
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 06B0CAFA4EC9524183C260CC28E0412EB49B9DBF
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6079.roa
Signing time: Wed 04 Jun 2025 07:00:12 +0000
ROA not before: Wed 04 Jun 2025 06:55:12 +0000
ROA not after: Wed 03 Jun 2026 07:00:12 +0000
asID: 6079
IP address blocks: 96.62.227.0/24 maxlen: 24
96.62.248.0/24 maxlen: 24
96.62.249.0/24 maxlen: 24
140.150.160.0/21 maxlen: 24
140.150.168.0/21 maxlen: 24
140.233.192.0/18 maxlen: 24
143.14.16.0/21 maxlen: 24
155.117.198.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:b0:ca:fa:4e:c9:52:41:83:c2:60:cc:28:e0:41:2e:b4:9b:9d:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jun 4 06:55:12 2025 GMT
Not After : Jun 3 07:00:12 2026 GMT
Subject: CN=8A85E6B6F2E81EE4C577270A609B8C771A8A216C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3c:1d:18:e0:8f:8d:eb:b8:ad:09:23:e0:fe:
9c:07:a8:84:49:e0:6d:dc:53:9b:4b:38:96:e0:b1:
e4:25:3e:23:94:f8:1a:08:91:e7:cc:9b:8e:85:8e:
39:49:8f:df:d2:cc:6c:47:33:01:1d:f5:d5:3f:66:
af:92:94:18:d0:c1:16:a1:38:6c:91:37:60:76:5c:
86:e6:77:e6:71:4a:d1:4b:22:66:5f:32:47:07:a3:
07:24:01:18:86:66:a0:bd:02:27:37:f7:ba:e3:c6:
db:0b:79:de:95:1e:b9:7c:a6:83:59:8f:66:45:06:
22:16:be:7e:ed:17:40:3f:f7:99:17:60:71:18:89:
a2:aa:3a:2f:27:c5:69:66:67:08:69:46:fb:df:2b:
57:2a:44:aa:91:b1:3f:3a:41:a3:7b:90:47:a6:d1:
69:5b:70:00:73:ec:78:2c:4a:91:30:a9:31:d0:35:
3a:c0:7a:bf:98:4c:05:34:73:6a:dd:1c:87:a1:da:
af:31:7f:ce:0c:46:63:0d:3b:34:b7:52:53:be:31:
e1:36:fe:74:df:0f:31:3f:a5:90:f1:fa:ad:dd:4d:
50:0d:0a:47:8e:11:ed:a7:65:d3:48:a9:97:f7:c9:
18:93:0c:3d:4d:48:6b:65:5e:5c:20:12:d4:d0:38:
af:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:85:E6:B6:F2:E8:1E:E4:C5:77:27:0A:60:9B:8C:77:1A:8A:21:6C
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6079.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.227.0/24
96.62.248.0/23
140.150.160.0/20
140.233.192.0/18
143.14.16.0/21
155.117.198.0/23
Signature Algorithm: sha256WithRSAEncryption
05:34:b3:4c:94:3e:4c:37:8d:ab:2a:a2:82:c6:a5:56:5b:4f:
09:a8:c7:1e:29:10:c6:df:43:71:28:3f:a0:7b:4a:4b:4a:52:
63:64:0c:80:9b:f6:be:7a:b1:4c:8c:9c:8f:35:b8:4f:7c:b8:
46:97:05:86:0e:09:7c:a7:80:0c:67:5a:6c:c2:a3:07:37:c1:
00:31:2b:ab:68:32:e1:be:86:df:c3:60:c1:1a:c2:30:5a:d9:
ee:08:96:19:13:d7:22:d1:91:52:bd:7f:af:a3:1a:c2:bd:8d:
d6:2d:73:c8:fb:1a:ea:16:7a:5d:57:cc:d0:0e:d5:61:b0:96:
dd:31:f4:8f:8f:57:55:85:bc:f8:4a:e9:e9:3d:66:06:c0:1c:
fb:b9:4f:c3:d5:01:99:5e:96:ca:4d:ac:08:48:69:8c:7a:60:
17:ec:b0:6b:29:a4:86:20:56:fb:7c:4b:e1:fb:e7:c3:a2:65:
da:7a:d9:da:45:21:ed:69:82:a2:67:1d:f7:63:19:5f:90:ed:
d4:6b:71:b3:47:f6:fb:83:c9:02:2a:8b:b0:05:24:ae:08:c1:
62:97:2b:d7:8a:df:74:56:76:4d:90:aa:79:7c:4a:68:00:3d:
cd:72:86:02:8d:89:cb:e8:6e:ae:73:ca:0a:f8:b2:bc:af:90:
63:a9:d2:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:15:24 2025 by rpki-client