Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213769.roa
File: AS213769.roa (raw, json)
Hash identifier: 2QBXRQ81jvnmNlGGWiQplpsTYkQb5ul3cJIveMF1zFw=
Subject key identifier: A1:B4:8E:00:77:C3:05:47:81:4D:6C:10:AE:CC:71:35:B3:3D:B2:C8
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 7247CD38D4A564742A63D6A47216AD2E452ACF75
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213769.roa
Signing time: Wed 28 May 2025 04:26:56 +0000
ROA not before: Wed 28 May 2025 04:21:56 +0000
ROA not after: Wed 27 May 2026 04:26:56 +0000
asID: 213769
IP address blocks: 82.26.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:47:cd:38:d4:a5:64:74:2a:63:d6:a4:72:16:ad:2e:45:2a:cf:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 28 04:21:56 2025 GMT
Not After : May 27 04:26:56 2026 GMT
Subject: CN=A1B48E0077C30547814D6C10AECC7135B33DB2C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:42:f1:b4:84:82:26:e3:fb:9a:b3:93:0e:b0:
48:08:9a:08:61:70:af:aa:d8:e5:20:4e:3b:fa:de:
1b:11:b0:7a:bf:66:89:3f:2f:d3:ee:c4:bd:20:5c:
99:b6:d2:39:d1:d3:37:c9:89:54:e1:04:82:06:36:
fd:39:de:c9:d9:e5:55:8e:3c:ea:9d:2a:7f:2d:41:
ab:d7:1f:c2:77:e2:56:1a:3b:83:97:97:4f:36:28:
96:06:9d:8f:7b:07:e7:65:17:80:d7:3e:f1:2e:0a:
46:2e:29:4e:8d:01:d8:38:2f:08:73:35:ff:3b:ad:
ac:23:e7:83:4d:53:ec:f9:8f:0d:cf:20:9d:9c:2e:
f0:ff:a5:a0:30:3b:5b:84:6d:c4:26:c4:6b:7a:56:
77:46:c1:4b:60:34:8e:a4:04:79:54:eb:e7:9c:b3:
c9:c7:9c:cf:a0:c7:8b:42:b1:5a:72:8f:db:38:f8:
47:ea:30:ae:e6:38:c8:f3:b5:04:8d:a8:e9:f7:fb:
55:0c:d3:7f:0e:6d:22:e3:0f:d0:2a:e3:07:ce:0a:
cd:18:2a:96:0c:2d:5c:b9:4d:dc:aa:40:7f:cb:90:
94:79:8e:3c:9d:6c:25:bb:4e:31:62:09:5a:70:a2:
7c:cb:b0:5a:83:10:65:4f:71:71:71:d5:22:81:c5:
73:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B4:8E:00:77:C3:05:47:81:4D:6C:10:AE:CC:71:35:B3:3D:B2:C8
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213769.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.26.131.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:63:4f:23:0a:81:63:37:e4:12:d1:e2:db:6e:da:27:a9:07:
f4:5f:3e:41:ae:e6:af:b4:90:ea:fc:28:82:c3:01:cf:da:f6:
89:c5:3a:a4:04:d8:1f:86:24:6c:99:3d:47:87:52:ab:ce:ee:
15:8c:73:f6:99:ce:6b:3f:80:4e:72:de:91:a7:ca:02:79:8a:
6b:15:5b:2d:3f:60:00:91:d5:bf:f8:af:cb:74:67:f1:1e:22:
c9:0e:0e:be:af:a3:e4:f5:3d:c9:d6:66:6f:f1:cf:b2:19:2c:
d7:49:fc:6e:e2:9e:55:db:84:44:ff:e2:41:ff:66:77:36:b7:
fb:ba:1b:0e:8c:c1:c3:c7:3e:da:0b:a6:55:92:ba:45:76:9b:
e2:ed:97:01:46:fa:92:a4:d3:3b:6b:76:6d:d4:25:fc:4b:1f:
02:26:d3:ce:03:7f:21:d2:a2:66:3f:4d:7c:5b:e4:a5:94:aa:
cd:f1:69:4e:bf:81:e3:db:47:54:51:f7:44:b7:92:f5:63:a4:
6b:0f:9d:7b:75:1f:bb:32:36:9e:0e:02:9e:1f:42:75:43:20:
b4:11:a5:83:90:90:9e:b1:f9:c8:8d:64:b3:9d:4e:a6:0a:5b:
1d:a1:e1:53:15:1a:df:3e:ac:f5:7f:68:67:da:b6:e7:5a:3a:
7d:c2:1c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:15:34 2025 by rpki-client