Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6079.roa
File: AS6079.roa (raw, json)
Hash identifier: XoDWO4NTMRGD/3gs3aNOwEzgZkELgo4wWRAFXFtFBBM=
Subject key identifier: FF:54:B7:8C:83:74:18:63:69:C5:9C:2E:AF:2B:73:CF:6C:06:C2:88
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 42D58EE7CACC660391C451CC8A03CCF6D79877B9
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6079.roa
Signing time: Tue 26 Aug 2025 15:04:41 +0000
ROA not before: Tue 26 Aug 2025 14:59:41 +0000
ROA not after: Tue 25 Aug 2026 15:04:41 +0000
asID: 6079
IP address blocks: 96.62.227.0/24 maxlen: 24
96.62.248.0/24 maxlen: 24
96.62.249.0/24 maxlen: 24
140.150.160.0/21 maxlen: 24
140.150.168.0/21 maxlen: 24
140.233.192.0/18 maxlen: 24
143.14.16.0/21 maxlen: 24
155.117.22.0/24 maxlen: 24
155.117.23.0/24 maxlen: 24
155.117.86.0/24 maxlen: 24
155.117.97.0/24 maxlen: 24
155.117.102.0/24 maxlen: 24
155.117.105.0/24 maxlen: 24
155.117.106.0/24 maxlen: 24
155.117.109.0/24 maxlen: 24
155.117.110.0/24 maxlen: 24
155.117.111.0/24 maxlen: 24
155.117.115.0/24 maxlen: 24
155.117.116.0/24 maxlen: 24
155.117.118.0/24 maxlen: 24
155.117.140.0/24 maxlen: 24
155.117.141.0/24 maxlen: 24
155.117.149.0/24 maxlen: 24
155.117.156.0/24 maxlen: 24
155.117.169.0/24 maxlen: 24
155.117.190.0/24 maxlen: 24
155.117.195.0/24 maxlen: 24
155.117.196.0/24 maxlen: 24
155.117.198.0/23 maxlen: 23
155.117.204.0/24 maxlen: 24
155.117.206.0/24 maxlen: 24
155.117.222.0/24 maxlen: 24
155.117.242.0/24 maxlen: 24
155.117.244.0/24 maxlen: 24
167.148.44.0/23 maxlen: 24
167.148.139.0/24 maxlen: 24
167.148.144.0/24 maxlen: 24
167.148.145.0/24 maxlen: 24
167.148.186.0/24 maxlen: 24
167.148.212.0/24 maxlen: 24
167.148.214.0/24 maxlen: 24
167.148.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 00:55:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:d5:8e:e7:ca:cc:66:03:91:c4:51:cc:8a:03:cc:f6:d7:98:77:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Aug 26 14:59:41 2025 GMT
Not After : Aug 25 15:04:41 2026 GMT
Subject: CN=FF54B78C8374186369C59C2EAF2B73CF6C06C288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9e:21:41:25:1c:51:38:20:e4:4c:0e:65:bc:
13:c0:71:88:2d:45:0c:11:b8:58:de:75:5f:04:ce:
26:54:b5:ba:29:60:09:f3:0c:a9:b9:1a:5f:b1:67:
ce:81:0d:6b:2c:b6:16:7b:0d:e5:56:ca:23:ec:30:
f5:97:25:ae:ee:af:34:e5:05:bd:7e:f5:5a:8a:3b:
95:10:af:d2:ed:45:36:d8:cc:62:fb:58:d5:cf:69:
f0:5a:04:04:41:5e:7e:a7:96:f3:70:a3:d1:62:33:
cc:18:94:27:ff:62:76:aa:33:14:d0:1e:de:af:c0:
69:bd:e7:e1:fb:72:f7:e8:82:4f:ab:c9:54:b3:a1:
5d:49:93:a5:e0:74:a8:e1:54:f4:71:5a:b5:b3:f8:
d2:3b:de:30:e1:bf:1d:0d:14:1c:07:03:76:b6:c6:
20:71:95:73:ea:3f:80:58:ea:44:94:34:a0:2e:df:
bd:04:a9:ec:9c:38:7e:01:c4:19:e6:27:60:9a:7f:
6d:da:12:dd:77:cd:9f:09:21:7f:b0:1f:fb:c4:a7:
69:29:b2:8d:76:01:f8:4d:9b:ef:f8:95:d2:49:24:
58:09:00:0a:bb:1b:ee:8e:b7:5b:95:43:bd:b8:ca:
e3:72:26:86:ba:8b:ab:5e:a5:12:84:26:e8:61:df:
3d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:54:B7:8C:83:74:18:63:69:C5:9C:2E:AF:2B:73:CF:6C:06:C2:88
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6079.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.227.0/24
96.62.248.0/23
140.150.160.0/20
140.233.192.0/18
143.14.16.0/21
155.117.22.0/23
155.117.86.0/24
155.117.97.0/24
155.117.102.0/24
155.117.105.0-155.117.106.255
155.117.109.0-155.117.111.255
155.117.115.0-155.117.116.255
155.117.118.0/24
155.117.140.0/23
155.117.149.0/24
155.117.156.0/24
155.117.169.0/24
155.117.190.0/24
155.117.195.0-155.117.196.255
155.117.198.0/23
155.117.204.0/24
155.117.206.0/24
155.117.222.0/24
155.117.242.0/24
155.117.244.0/24
167.148.44.0/23
167.148.139.0/24
167.148.144.0/23
167.148.186.0/24
167.148.212.0/24
167.148.214.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:bd:5f:e3:7e:0a:54:25:8e:73:50:da:24:dd:e8:29:66:e0:
96:01:21:fc:50:cb:24:ce:bb:3a:fb:22:44:0b:db:a8:f8:2f:
32:d4:31:88:03:c4:73:78:d6:e9:bb:99:2c:10:a9:ae:20:82:
41:d0:e9:86:a8:95:2b:c0:0a:45:b5:3c:ec:6a:31:ed:2e:f6:
1d:45:45:89:97:14:7e:2a:78:3c:d9:f7:3b:46:30:1e:5b:93:
0b:5e:30:a5:b8:92:e2:f8:c3:c7:57:73:f7:ee:91:bb:6a:f7:
ac:67:dc:1a:47:98:7b:a0:81:4d:7e:e5:f7:99:7f:42:49:68:
9a:49:54:2e:62:af:be:57:77:bb:65:4e:7b:93:82:5a:e8:f9:
15:2f:7a:cd:c1:4a:33:bd:4a:66:55:75:23:c7:f3:22:d1:7e:
7b:df:05:09:f7:a9:90:ea:2a:75:de:02:7e:0a:32:0e:34:10:
a7:cf:eb:38:0a:ba:ce:dc:ea:dd:1d:ea:3b:1f:41:e9:c8:99:
7f:3e:77:d2:a8:63:d7:5c:0a:1c:f1:b4:b7:9a:8d:dd:9e:75:
6f:44:c0:c3:43:ab:40:8b:ad:bc:ab:20:cf:79:c7:c9:52:5e:
2f:6d:11:81:c3:15:2e:81:87:0b:a9:3b:6c:4e:28:43:42:7d:
df:f6:3f:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:30:52 2025 by rpki-client