Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212150.roa
File: AS212150.roa (raw, json)
Hash identifier: H20WbCzvdqvfA6IpujC4mD32to38L+Uani6HsDN7Bhk=
Subject key identifier: 07:8C:F5:A0:08:73:FC:0F:6F:ED:E9:81:78:D5:60:5D:DF:33:A5:BB
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 3965F2B50D1A99A4BDEB2470C5E77BAEA4FDDECC
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212150.roa
Signing time: Sun 01 Jun 2025 00:02:02 +0000
ROA not before: Sat 31 May 2025 23:57:02 +0000
ROA not after: Sun 31 May 2026 00:02:02 +0000
asID: 212150
IP address blocks: 82.22.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:65:f2:b5:0d:1a:99:a4:bd:eb:24:70:c5:e7:7b:ae:a4:fd:de:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 31 23:57:02 2025 GMT
Not After : May 31 00:02:02 2026 GMT
Subject: CN=078CF5A00873FC0F6FEDE98178D5605DDF33A5BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d9:10:9f:17:29:41:0e:6a:b6:0c:66:52:57:
fc:6e:f7:8d:bd:6a:9d:8f:38:d6:fd:58:86:42:55:
75:61:69:37:a2:26:3b:96:c4:bf:5b:bd:27:cd:cb:
d0:b8:61:b6:f5:91:0e:a6:28:65:a7:b9:89:68:e9:
a7:37:23:cc:0e:57:34:b3:04:f0:77:66:8c:45:3f:
b1:d6:39:a9:08:2f:ec:e3:25:4a:4f:73:df:16:9b:
70:5b:bb:d3:dd:da:b7:6a:39:15:a0:fc:33:13:e9:
5f:c6:fd:16:94:bc:61:d5:01:64:80:2e:9e:66:78:
c9:eb:1d:3e:42:fe:a2:ea:91:a3:86:1b:ab:3f:d8:
70:70:0c:4a:42:2a:46:8b:ac:a2:6c:06:e9:0c:c8:
ac:bf:60:f2:b4:60:9a:7a:ae:34:7f:cf:d1:cf:78:
95:3e:cd:24:a8:f9:70:04:0d:5f:69:ae:18:af:ab:
e8:41:92:9d:8f:65:61:5a:6d:41:fb:20:ec:6f:8f:
eb:7c:85:26:1f:07:f3:6e:c9:f5:1e:19:f2:06:8c:
78:ca:83:3c:7f:fa:38:83:cf:f0:3b:ff:6d:bf:04:
53:ec:e6:57:3a:6c:ce:6e:f5:df:06:42:c2:7e:c6:
fd:d5:95:8e:50:2f:35:f5:a8:9e:ea:da:d6:a9:20:
8f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8C:F5:A0:08:73:FC:0F:6F:ED:E9:81:78:D5:60:5D:DF:33:A5:BB
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212150.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.205.0/24
Signature Algorithm: sha256WithRSAEncryption
98:74:39:60:70:c0:3a:f1:a4:c6:8d:a3:d2:a1:fc:85:15:20:
34:75:d3:f7:66:df:28:06:44:ee:0d:5d:5e:aa:7a:ea:25:e6:
9a:9a:46:14:9e:02:8f:65:49:a4:c1:14:72:1b:eb:68:6d:cc:
ee:6c:73:ba:50:a1:7b:27:6c:fe:da:d4:bf:10:b9:14:45:f8:
ab:55:51:90:4e:8f:3c:bc:a7:f4:e6:e5:ee:ea:89:e2:77:c9:
98:d4:da:dd:d1:09:98:5d:8b:ec:17:18:16:2a:9a:5e:83:10:
49:84:aa:fc:f9:15:95:09:a3:9c:6b:22:2b:77:a5:14:c7:ec:
a1:dc:e7:fd:51:09:7c:5b:78:bc:20:b7:17:91:ac:00:fc:5e:
65:b0:0d:7c:4f:4e:ca:49:0c:95:55:b3:50:5a:d8:35:95:7f:
ad:55:6e:f7:69:de:47:8b:bc:7a:3e:34:58:3d:7e:c4:88:31:
b3:89:41:11:6c:2f:5d:0b:dc:32:95:3f:b9:73:11:47:a9:9e:
54:5e:d1:7e:d9:98:17:6a:8d:c7:31:b8:49:7d:e9:4e:d3:a2:
98:33:02:5e:b2:b3:71:0b:4e:55:c0:91:f4:56:f5:70:19:5d:
e1:b5:0a:4f:32:c6:c1:e5:b5:b5:54:9b:9d:9e:f9:28:74:e7:
16:4a:ce:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 21:54:13 2025 by rpki-client