Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213929.roa
File: AS213929.roa (raw, json)
Hash identifier: bpGK5G7j5d+ave5gYduIlOK3E9vGUmZH61ow4pLOz4c=
Subject key identifier: F2:66:F5:A3:54:94:B0:AD:73:68:31:C6:3C:A3:71:DB:B9:68:F4:82
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 5F3711E5942FA26B46A694F93FCF3C24D10B0D6F
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213929.roa
Signing time: Sun 01 Jun 2025 16:11:36 +0000
ROA not before: Sun 01 Jun 2025 16:06:36 +0000
ROA not after: Sun 31 May 2026 16:11:36 +0000
asID: 213929
IP address blocks: 2a13:9500:7b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:37:11:e5:94:2f:a2:6b:46:a6:94:f9:3f:cf:3c:24:d1:0b:0d:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 1 16:06:36 2025 GMT
Not After : May 31 16:11:36 2026 GMT
Subject: CN=F266F5A35494B0AD736831C63CA371DBB968F482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d0:c0:09:f9:d7:6a:28:d3:3c:ef:15:5c:10:
88:fe:47:6f:5a:18:1f:51:d6:ab:c3:45:20:75:c2:
08:4e:97:86:d4:2a:48:27:0d:e3:1e:73:b0:6a:96:
25:aa:da:08:1c:38:27:97:7f:92:cd:5d:4b:4e:a3:
12:3d:5f:b6:e1:0a:4f:ab:f8:40:d9:8b:14:23:5b:
e9:cd:c2:c2:1c:1b:bc:33:7d:72:65:23:ae:db:01:
4b:f4:fe:44:1a:ea:5a:5d:68:9e:4c:d4:fe:83:c5:
da:3d:36:a8:43:9b:75:53:1b:69:11:6f:83:6b:b9:
7a:af:db:67:93:ed:9f:68:96:83:98:4c:be:90:a7:
fc:05:e8:aa:1f:15:70:24:9e:e5:33:e8:15:32:69:
1d:3e:f8:b7:03:9b:1f:68:d5:e8:22:73:6d:56:88:
5e:3d:97:3f:aa:6b:c9:9c:28:8c:96:96:7d:26:86:
f7:14:00:30:7f:6a:62:f5:80:6f:aa:ce:47:0d:eb:
99:6c:d0:39:1f:01:e9:22:ab:ff:b8:7c:60:bc:9f:
24:26:66:f5:8b:cb:61:03:62:59:e1:e6:b7:ec:f1:
e7:b2:5e:ed:54:8a:0d:87:d3:3d:35:82:03:b3:26:
8b:4b:29:ed:53:e8:76:9a:17:f4:aa:99:6f:55:65:
07:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:66:F5:A3:54:94:B0:AD:73:68:31:C6:3C:A3:71:DB:B9:68:F4:82
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213929.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:7b::/48
Signature Algorithm: sha256WithRSAEncryption
3b:cf:28:db:5c:61:0c:1e:c4:8d:0d:1f:de:b9:ef:4b:f4:36:
9c:c8:b9:13:6e:06:b3:13:43:9c:66:4c:b4:75:78:47:f0:a5:
b1:1b:67:c5:4e:17:84:88:9c:98:61:27:58:7f:8c:33:34:4c:
c9:bd:52:cc:99:12:ff:df:99:f5:37:b1:c9:6a:e2:6c:d1:e3:
bf:66:ee:56:bf:f3:66:fb:69:20:62:08:f8:b1:38:d2:00:c9:
b2:ad:ba:e7:76:6b:6a:3d:ba:04:ad:c8:0b:9d:25:76:90:ea:
45:22:45:34:a5:24:d5:ee:96:1b:ee:81:95:63:16:09:f9:88:
cb:42:59:3c:a7:c8:00:52:d8:7b:69:c5:70:08:36:94:2e:9e:
48:80:4d:71:73:4a:c8:e9:c3:6f:7a:01:68:4a:72:d5:cf:9c:
a9:9e:6f:df:8d:6d:7e:78:14:be:62:71:d4:3c:e4:6f:c0:d8:
9f:5f:77:0a:64:34:44:4a:94:6d:e2:48:78:e8:6d:14:bd:df:
a5:8a:2e:cf:b9:cc:bd:99:0d:8b:66:22:7f:cf:ce:5a:06:a3:
d8:5c:e0:d1:aa:aa:82:83:f3:51:58:fc:ed:0f:f6:b2:02:e5:
95:57:a0:f2:30:5b:5d:87:26:90:10:c4:6a:67:0a:53:3a:bd:
99:11:02:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 21:54:13 2025 by rpki-client