Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206446.roa
File: AS206446.roa (raw, json)
Hash identifier: +xHi+pZtzDQYXytGSJaSgFX1S6bHXZU/2OrZG7RuxJE=
Subject key identifier: DA:F2:F1:8F:72:5A:6C:21:0E:39:1D:85:DD:27:66:D9:C0:81:FD:66
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 4EA0EA6235E0B40E06B03B5D7257C9507E35186A
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206446.roa
Signing time: Sun 01 Jun 2025 00:00:42 +0000
ROA not before: Sat 31 May 2025 23:55:42 +0000
ROA not after: Sun 31 May 2026 00:00:42 +0000
asID: 206446
IP address blocks: 45.93.46.0/24 maxlen: 24
181.214.135.0/24 maxlen: 24
181.214.214.0/24 maxlen: 24
191.96.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Jun 2025 23:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:a0:ea:62:35:e0:b4:0e:06:b0:3b:5d:72:57:c9:50:7e:35:18:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 31 23:55:42 2025 GMT
Not After : May 31 00:00:42 2026 GMT
Subject: CN=DAF2F18F725A6C210E391D85DD2766D9C081FD66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ec:f6:2b:12:75:09:86:79:c3:5c:ad:50:a7:
90:05:d0:0d:37:fb:cf:8a:3e:c1:02:4d:06:89:f5:
97:83:79:b0:e9:4b:08:16:e6:a7:e9:ac:f0:7b:ef:
98:57:5b:f8:ac:a3:66:a9:52:ab:5d:f6:9c:0a:e6:
00:96:9d:c5:af:df:cd:74:d6:35:d2:17:21:65:a5:
69:77:11:6f:db:3e:e9:65:62:8e:01:68:d5:00:d9:
8c:7c:2e:ba:32:0d:74:9a:6e:19:6a:44:92:2f:48:
dc:d8:ee:9d:75:9a:a0:bc:f1:7e:a0:cf:c0:97:f5:
2c:d8:70:0b:2c:15:d5:7f:3a:da:27:dd:3e:a2:2a:
43:a8:85:57:04:ed:85:ab:98:7d:fe:4b:2f:72:ff:
d4:2e:ad:ef:31:0b:14:74:a9:9f:37:fe:5e:02:92:
b9:3e:7f:0a:1c:a1:ce:e1:40:c1:9f:7e:e8:b2:13:
ec:69:50:76:c7:18:40:e7:b7:53:66:05:26:a2:b7:
ba:e5:52:a2:b5:cc:7b:f2:e2:88:ce:ab:8a:d5:02:
62:dc:7a:01:0d:1d:05:7f:19:89:e6:dd:31:85:5a:
bb:b2:33:66:c7:63:0a:36:c7:26:d1:56:13:23:55:
5f:ed:06:5d:5b:dc:cf:51:69:4b:ac:29:30:c8:95:
bc:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:F2:F1:8F:72:5A:6C:21:0E:39:1D:85:DD:27:66:D9:C0:81:FD:66
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206446.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.46.0/24
181.214.135.0/24
181.214.214.0/24
191.96.229.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:99:f8:ec:71:bf:e4:68:19:32:68:6e:94:da:d5:57:4e:90:
82:a9:17:4d:52:80:4b:7d:c8:2f:48:50:57:09:c6:ab:5c:b6:
13:e5:1b:46:16:77:3b:89:86:a7:45:5d:01:61:d7:29:e1:67:
5c:91:6d:7a:f4:de:3d:b7:b8:1e:09:bf:1c:73:36:a5:f6:79:
4a:26:5a:86:a0:e8:56:9d:9a:f0:c5:97:98:3e:9f:96:87:09:
ff:05:8c:b7:e1:78:53:04:cb:62:5d:0a:a1:d4:af:74:32:a9:
d1:53:f3:0a:19:56:25:37:57:b2:00:d1:cd:0b:b9:5b:0d:41:
2a:d3:26:d8:76:e1:34:1b:6f:75:0e:44:24:26:c1:80:0b:8d:
d2:e0:8d:55:4e:e2:07:f2:4e:c0:74:b9:74:91:7e:ed:e8:4d:
50:16:52:cb:d9:e1:1b:9a:4d:9e:ff:96:a2:ff:5f:f4:7b:b4:
ca:e8:6b:48:38:d8:03:b3:db:be:b6:21:7e:19:91:98:e3:b5:
d0:48:10:ff:74:31:4f:8c:ee:cd:f2:4f:94:d8:c2:f0:bf:20:
2b:7a:86:32:78:29:e0:56:89:23:10:33:8f:cf:be:3b:13:96:
1d:cf:15:86:9d:4b:10:4c:4c:50:3e:55:fc:4a:da:b1:69:a1:
12:fd:a8:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:22:21 2025 by rpki-client