Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa
File: AS214025.roa (raw, json)
Hash identifier: ww1O8tISNeoPyzWhD7XiRat9scyxfE5aGwJkhyvnF6Y=
Subject key identifier: 93:34:57:5C:D3:93:E1:49:11:F0:4C:C5:86:0C:62:E3:DD:9F:74:80
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 36BE1307962692FD0A0C3B0C009D09202387F1D4
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa
Signing time: Fri 23 May 2025 17:32:07 +0000
ROA not before: Fri 23 May 2025 17:27:07 +0000
ROA not after: Fri 22 May 2026 17:32:07 +0000
asID: 214025
IP address blocks: 82.26.110.0/24 maxlen: 24
82.27.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 05:59:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:be:13:07:96:26:92:fd:0a:0c:3b:0c:00:9d:09:20:23:87:f1:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 23 17:27:07 2025 GMT
Not After : May 22 17:32:07 2026 GMT
Subject: CN=9334575CD393E14911F04CC5860C62E3DD9F7480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c1:ce:d4:f5:f5:97:3d:1c:13:84:4c:4d:24:
fd:2d:b9:cf:9f:97:22:ef:ad:4b:47:0d:b1:5e:c0:
30:17:b0:32:15:ca:29:24:1f:82:49:f5:54:f2:34:
af:b0:41:87:fa:cd:a9:28:bc:d6:80:91:66:e8:7f:
44:7e:2c:ca:58:84:33:28:0b:64:18:0e:37:d5:a7:
ee:4a:91:2b:6d:16:fc:a5:0f:08:8b:bb:b2:b3:6c:
54:da:ef:76:e9:29:23:ab:6d:84:97:bb:c2:05:92:
a7:e9:2e:05:42:48:ca:e9:90:b8:cf:10:84:e7:ba:
c0:a6:d5:1d:6f:18:fa:09:5c:08:ff:14:55:d5:79:
e9:68:02:73:8c:d1:93:96:ee:b5:05:7d:7e:2a:fd:
23:da:9c:f6:95:43:d1:58:16:ac:41:c9:95:a3:a4:
27:b0:32:26:67:d7:d1:e9:6b:6c:f7:93:19:3f:c0:
12:93:77:06:21:9b:a9:56:1f:bd:13:a2:b3:4f:1e:
81:65:58:7b:f5:3b:81:a9:58:19:8c:aa:86:ef:86:
67:1d:1c:77:4e:fa:b0:7b:df:41:68:aa:99:3c:b2:
11:23:2a:b6:d0:83:eb:c2:4d:81:22:4c:b3:ec:26:
50:51:6e:46:10:6e:cf:6a:cc:78:60:69:dc:3d:04:
29:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:34:57:5C:D3:93:E1:49:11:F0:4C:C5:86:0C:62:E3:DD:9F:74:80
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214025.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.26.110.0/24
82.27.123.0/24
Signature Algorithm: sha256WithRSAEncryption
25:cf:2f:b8:51:20:2d:34:cc:1e:b1:80:01:a2:7c:31:54:43:
8b:60:49:19:cc:88:2a:1c:2e:4f:32:e2:63:8c:39:30:1e:0c:
d0:20:c8:c2:9e:d5:68:12:48:90:76:e3:d2:2f:9e:ee:03:03:
81:6a:a0:52:39:aa:a3:8c:10:c0:8c:62:2a:d8:37:79:d4:a0:
00:1a:23:c8:61:ab:c0:14:60:ab:52:0a:30:26:2d:6f:7f:1c:
e5:0f:fa:fd:ea:39:bc:bf:9b:43:b5:86:18:9c:a0:e8:6a:65:
37:a6:51:25:ae:bc:0d:5b:58:df:24:55:fa:53:1d:96:86:ad:
9a:a4:15:68:e3:9e:68:df:d2:44:b4:d6:55:16:e8:f1:14:b2:
e2:4f:ff:72:80:df:9d:15:83:3d:d1:56:8a:89:be:45:50:00:
75:b2:ee:67:5b:96:18:d6:d6:b4:64:e0:59:47:d4:65:54:ac:
fc:b9:36:56:d7:1e:6b:98:bf:f0:89:4f:57:da:cb:9d:dc:0e:
01:73:dd:21:3f:e0:34:e9:50:8d:69:0f:eb:d1:f8:ba:0c:3c:
3c:1a:a3:20:ca:26:9e:5a:0b:e8:8f:d4:15:f7:26:6e:ae:46:
3f:63:aa:32:e8:9b:ff:80:80:9b:3d:4d:9d:5f:ef:29:93:8b:
a2:19:61:c9
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIUNr4TB5Ymkv0KDDsMAJ0JICOH8dQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNTA1MjMxNzI3MDdaFw0yNjA1MjIxNzMyMDdaMDMxMTAvBgNV
BAMTKDkzMzQ1NzVDRDM5M0UxNDkxMUYwNENDNTg2MEM2MkUzREQ5Rjc0ODAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFwc7U9fWXPRwThExNJP0tuc+f
lyLvrUtHDbFewDAXsDIVyikkH4JJ9VTyNK+wQYf6zakovNaAkWbof0R+LMpYhDMo
C2QYDjfVp+5KkSttFvylDwiLu7KzbFTa73bpKSOrbYSXu8IFkqfpLgVCSMrpkLjP
EITnusCm1R1vGPoJXAj/FFXVeeloAnOM0ZOW7rUFfX4q/SPanPaVQ9FYFqxByZWj
pCewMiZn19Hpa2z3kxk/wBKTdwYhm6lWH70TorNPHoFlWHv1O4GpWBmMqobvhmcd
HHdO+rB730Foqpk8shEjKrbQg+vCTYEiTLPsJlBRbkYQbs9qzHhgadw9BCm7AgMB
AAGjggIQMIICDDAdBgNVHQ4EFgQUkzRXXNOT4UkR8EzFhgxi492fdIAwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE0MDI1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUhpu
AwQAUht7MA0GCSqGSIb3DQEBCwUAA4IBAQAlzy+4USAtNMwesYABonwxVEOLYEkZ
zIgqHC5PMuJjjDkwHgzQIMjCntVoEkiQduPSL57uAwOBaqBSOaqjjBDAjGIq2Dd5
1KAAGiPIYavAFGCrUgowJi1vfxzlD/r96jm8v5tDtYYYnKDoamU3plElrrwNW1jf
JFX6Ux2Whq2apBVo455o39JEtNZVFujxFLLiT/9ygN+dFYM90VaKib5FUAB1su5n
W5YY1ta0ZOBZR9RlVKz8uTZW1x5rmL/wiU9X2sud3A4Bc90hP+A06VCNaQ/r0fi6
DDw8GqMgyiaeWgvoj9QV9yZurkY/Y6oy6Jv/gICbPU2dX+8pk4uiGWHJ
-----END CERTIFICATE-----
Generated at Fri Jun 6 11:53:10 2025 by rpki-client