Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS149513.roa
File: AS149513.roa (raw, json)
Hash identifier: pKh6aFREiYQJ9ZcXV1XsU5yEbJNW71z9NOQRSPWW+60=
Subject key identifier: 5E:60:22:0A:60:E9:13:F8:25:D3:3D:AD:A5:8D:65:44:48:A5:48:7A
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 67ADF4677AC4C973D556D4DD00668436ECDFC880
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS149513.roa
Signing time: Tue 27 May 2025 08:15:56 +0000
ROA not before: Tue 27 May 2025 08:10:56 +0000
ROA not after: Tue 26 May 2026 08:15:56 +0000
asID: 149513
IP address blocks: 2a13:9500:67::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:ad:f4:67:7a:c4:c9:73:d5:56:d4:dd:00:66:84:36:ec:df:c8:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 27 08:10:56 2025 GMT
Not After : May 26 08:15:56 2026 GMT
Subject: CN=5E60220A60E913F825D33DADA58D654448A5487A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ee:b8:2a:3a:1b:eb:91:40:6b:8d:1f:ce:50:
61:af:1d:b9:6d:f2:fe:d2:f1:17:c1:23:d7:c1:1c:
b4:a8:28:fe:79:3d:4c:41:5c:44:a8:ea:38:a4:7d:
fa:b8:cd:24:6c:36:88:ae:4b:32:73:5b:be:70:b6:
78:db:c8:67:04:40:85:89:f8:5b:78:7d:20:42:1b:
67:4a:9d:a6:31:32:35:24:db:ac:9e:b2:65:8c:39:
8d:81:8f:0c:ad:4c:ea:96:e5:8c:66:58:4a:88:a4:
35:a9:e8:6b:29:34:08:73:ad:49:a8:05:6b:14:ff:
a8:3c:ce:21:32:fd:7d:dd:ba:37:11:2f:3a:0d:dc:
3a:5e:0a:a4:5b:aa:3a:58:97:ff:2a:cc:6c:89:bb:
27:0f:a5:5f:f1:8c:0b:16:be:77:cb:2f:de:f7:7e:
0a:bb:83:3a:3e:5d:91:fa:b0:a4:4e:ac:b3:9d:d6:
be:69:0e:7d:5c:4f:91:d8:a8:6e:f5:ef:89:55:78:
bd:ad:13:3b:23:d3:e9:ab:15:e1:eb:cc:ae:43:27:
38:44:74:19:ca:e1:02:a8:fb:40:62:cd:c4:94:36:
70:94:61:65:b1:5c:98:73:44:4e:44:c3:9e:a3:10:
93:64:8e:2b:40:45:95:86:49:18:ee:ae:9b:6a:d8:
4f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:60:22:0A:60:E9:13:F8:25:D3:3D:AD:A5:8D:65:44:48:A5:48:7A
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS149513.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:67::/48
Signature Algorithm: sha256WithRSAEncryption
71:07:7d:bb:ae:98:2e:88:ee:d5:a8:93:8a:43:95:d0:d1:47:
3b:1f:af:67:5f:18:e1:5c:1e:5e:9a:f0:c6:e7:73:a4:3d:e6:
d4:82:de:cc:b2:aa:bf:73:3b:71:ac:74:c6:f9:02:a2:3c:ff:
b4:c2:29:1f:48:c9:0b:3a:75:5a:a2:1c:ce:99:e2:ca:25:3b:
12:1c:7f:89:6c:28:fa:35:f4:ec:77:e4:ce:98:0c:06:9f:7a:
58:9f:4a:e6:28:a9:4c:89:ca:ff:a8:3f:78:98:50:6b:24:06:
e4:bf:86:11:38:45:df:b8:10:fe:13:0e:89:7a:fd:e2:29:0e:
fa:b9:13:14:6e:cd:b7:4c:94:aa:d1:e6:45:a7:bf:ab:7b:8d:
1d:d9:5e:10:62:20:8b:63:0e:23:39:a0:9a:b7:62:a7:39:ce:
ea:d4:26:81:36:22:45:ea:59:2d:9a:f8:54:34:cf:7b:09:fa:
0d:16:fb:51:0a:b9:aa:33:b9:2e:1d:49:2a:61:2b:0f:35:de:
a5:98:55:67:a6:b2:0a:73:62:dd:39:72:c1:f7:75:b3:b3:bd:
cb:52:fb:38:94:16:2a:2f:4a:8c:3a:ce:94:a3:38:2c:24:1d:
0a:86:7d:5a:95:2a:d4:5b:ca:dd:c2:6a:69:da:d9:41:22:ae:
cb:2b:f9:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 21:56:23 2025 by rpki-client