Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS197537.roa
File: AS197537.roa (raw, json)
Hash identifier: C+iCUZoROnszc/5wRAnlfcBiyL4YhlvVi8mC9UeSQzY=
Subject key identifier: E1:E6:B1:B0:8A:D0:24:4B:C6:71:81:9E:4E:EB:64:E2:4D:C2:DC:22
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1D9960F832F89160A0ACB2D2A1A982F80FF7A38D
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS197537.roa
Signing time: Thu 13 Mar 2025 08:25:35 +0000
ROA not before: Thu 13 Mar 2025 08:20:35 +0000
ROA not after: Thu 12 Mar 2026 08:25:35 +0000
asID: 197537
IP address blocks: 82.21.77.0/24 maxlen: 24
82.22.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 15:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:99:60:f8:32:f8:91:60:a0:ac:b2:d2:a1:a9:82:f8:0f:f7:a3:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 13 08:20:35 2025 GMT
Not After : Mar 12 08:25:35 2026 GMT
Subject: CN=E1E6B1B08AD0244BC671819E4EEB64E24DC2DC22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:63:b5:55:d7:dd:dd:d5:42:28:af:3f:ff:e4:
c5:79:fe:2f:7a:e8:66:45:5a:4b:66:72:c3:f3:43:
cc:1f:8b:c9:c8:9d:3a:9f:39:18:17:0c:d3:ac:e1:
91:64:cd:7a:23:3b:6a:fb:7d:2a:1a:fd:1e:8d:69:
98:ad:2b:6e:18:23:6e:2b:97:fc:e9:ed:39:c2:3b:
9a:a2:8c:0a:d1:db:5d:bd:a9:54:8b:21:e1:bd:f9:
8c:d6:4b:f5:f6:d7:db:69:c3:6c:79:d7:97:df:f8:
a8:ae:b3:21:0c:52:4d:71:af:33:1e:c6:0e:13:86:
ae:b3:60:6e:e2:17:07:32:6f:40:31:12:e1:53:d7:
fe:4d:c2:02:e5:2f:1b:03:d9:af:fd:15:45:07:dc:
6e:ef:3e:db:bb:3d:1d:3d:c3:c4:0a:87:61:74:77:
92:01:cf:2c:f6:b5:20:bd:1c:f8:f7:84:58:8b:4e:
05:97:60:c9:04:01:16:be:64:67:e8:0b:73:68:00:
07:de:19:d3:12:08:a6:c2:4c:07:35:dd:1d:3f:01:
60:36:2f:7e:d8:5a:93:07:7e:f3:ac:73:5c:18:13:
c8:a0:9b:8f:80:bf:57:0b:69:40:cf:61:c0:7e:28:
f0:ab:44:23:98:cb:90:c2:f8:2f:15:e5:c9:7a:94:
11:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E6:B1:B0:8A:D0:24:4B:C6:71:81:9E:4E:EB:64:E2:4D:C2:DC:22
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS197537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.77.0/24
82.22.176.0/24
Signature Algorithm: sha256WithRSAEncryption
06:32:5e:ca:36:92:1e:27:87:21:9b:26:32:45:a0:f2:db:c6:
e0:cc:65:6b:9c:d5:a5:eb:50:6f:fd:44:79:66:6c:f4:f0:95:
8e:79:f7:ca:61:5d:2d:5e:e1:a0:3b:eb:41:50:c6:b3:9f:38:
e5:70:07:51:75:f7:ad:2d:c5:4e:cc:75:1a:45:28:64:07:9a:
27:11:e2:bb:89:b4:d8:9e:9d:4d:4a:1e:e1:c3:9d:80:28:17:
fe:f4:7a:a2:62:50:d1:46:5c:83:a0:37:fd:93:35:3c:0d:ff:
92:83:4e:5b:99:c7:06:de:93:6f:25:18:37:c1:cd:fb:7c:85:
53:42:27:ac:b5:46:eb:3b:cb:9a:11:a5:c3:5c:38:9f:88:55:
5f:fb:67:2e:68:cd:24:6a:f8:ae:fd:00:31:bc:6b:f0:6a:56:
79:4e:a8:c7:47:aa:38:ff:f6:09:0f:e3:fd:9b:5b:7b:97:e2:
f7:ef:53:45:75:73:2c:3c:5b:8e:db:d7:5c:ab:d2:75:53:e1:
a1:be:14:c8:af:ed:2a:2f:8a:62:45:09:cc:8b:83:a0:d0:e8:
92:23:b0:41:91:63:ff:6e:49:7f:1f:94:fd:78:ee:db:a6:71:
80:48:b1:ad:ba:f7:75:ea:63:a6:1b:4d:7c:c7:32:03:6f:26:
4b:58:cf:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 23:26:18 2025 by rpki-client