Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS32613.roa
File: AS32613.roa (raw, json)
Hash identifier: djIvRf1v395O1MNI3KlO5K3+Z+KFBZX1Te+2lNEbjbk=
Subject key identifier: 0F:BA:8E:37:43:4C:78:17:2A:C5:92:37:45:85:9B:E5:84:A8:E4:33
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 164B11838392A31C5D01808F9F8D1F7C0581FA20
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS32613.roa
Signing time: Mon 10 Feb 2025 16:21:34 +0000
ROA not before: Mon 10 Feb 2025 16:16:34 +0000
ROA not after: Mon 09 Feb 2026 16:21:34 +0000
asID: 32613
IP address blocks: 82.21.232.0/24 maxlen: 24
82.22.228.0/24 maxlen: 24
82.23.176.0/24 maxlen: 24
82.23.179.0/24 maxlen: 24
82.23.180.0/24 maxlen: 24
82.23.182.0/24 maxlen: 24
82.23.213.0/24 maxlen: 24
82.23.220.0/24 maxlen: 24
82.25.221.0/24 maxlen: 24
82.26.209.0/24 maxlen: 24
82.26.215.0/24 maxlen: 24
82.26.227.0/24 maxlen: 24
82.27.209.0/24 maxlen: 24
82.27.211.0/24 maxlen: 24
82.27.224.0/24 maxlen: 24
82.29.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 15:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:4b:11:83:83:92:a3:1c:5d:01:80:8f:9f:8d:1f:7c:05:81:fa:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 10 16:16:34 2025 GMT
Not After : Feb 9 16:21:34 2026 GMT
Subject: CN=0FBA8E37434C78172AC5923745859BE584A8E433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1a:00:10:f9:5f:93:4d:59:b8:53:a4:25:de:
1b:5e:d6:dc:5e:1e:e3:bc:5f:d2:fc:3a:30:ca:ce:
71:4c:65:bf:3d:80:ab:8a:31:68:3e:ce:2d:ba:9e:
c7:55:63:27:ad:7b:66:67:a8:fe:7a:8f:68:2f:c0:
8f:32:bd:12:b2:ba:94:f4:cb:13:e0:38:1d:5d:ab:
51:86:f4:4f:e7:a2:3a:87:f2:80:c6:78:96:54:c9:
b5:25:bf:7f:0f:8e:7d:81:2e:c4:40:d4:6f:ce:8c:
43:11:0d:d3:1e:f7:83:81:42:18:a6:a8:65:99:73:
52:3b:ea:18:c6:13:4a:4b:18:8b:d1:83:85:25:54:
15:8e:e7:3a:14:d5:80:fb:29:72:0c:99:4f:48:3d:
02:e6:1b:b8:4f:d7:fa:45:a0:69:59:12:86:65:59:
df:1c:a8:93:8a:0d:e3:4b:2e:a6:8d:a7:c6:6b:3a:
6f:7a:4f:52:d5:6f:50:fb:be:07:9c:5b:b8:a5:7c:
c5:ba:61:22:7a:d2:ca:05:60:fc:63:56:b7:15:ee:
b4:66:48:06:da:23:93:ec:d7:0a:fd:58:b5:f6:98:
6f:00:74:90:2b:df:88:52:41:b1:d1:d9:3d:15:76:
0e:56:a8:6f:c7:46:a5:08:5e:28:c6:ee:6e:8e:73:
c8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:BA:8E:37:43:4C:78:17:2A:C5:92:37:45:85:9B:E5:84:A8:E4:33
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS32613.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.232.0/24
82.22.228.0/24
82.23.176.0/24
82.23.179.0-82.23.180.255
82.23.182.0/24
82.23.213.0/24
82.23.220.0/24
82.25.221.0/24
82.26.209.0/24
82.26.215.0/24
82.26.227.0/24
82.27.209.0/24
82.27.211.0/24
82.27.224.0/24
82.29.232.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:90:ba:ae:cc:0e:4d:d4:0b:25:6f:c6:4c:61:1b:76:db:23:
40:d6:85:6c:a5:7c:09:02:b0:ea:c0:b6:37:15:60:df:4f:f3:
32:af:61:60:92:c2:fe:ab:bc:ed:d0:8b:94:5a:86:f5:1c:e9:
9c:90:0e:14:1c:ee:d5:1f:c8:18:1a:13:9c:ee:40:17:55:3f:
4e:b8:5f:85:0f:87:02:11:88:00:bd:53:8a:c3:b9:54:00:c4:
5e:77:98:fe:fb:d0:e3:03:c2:6d:2d:6f:90:01:c1:23:15:f2:
08:9c:cc:29:e2:0f:fa:08:d0:64:b8:1a:77:10:d9:d8:2f:fd:
cd:e9:29:53:90:aa:8c:2c:f8:93:65:a0:5b:bf:4d:c3:31:65:
3c:23:6a:4f:54:86:b0:8d:62:51:b5:b6:b9:1e:a8:cd:a9:a3:
95:64:ec:30:ed:c5:16:30:0d:ca:ef:fb:20:30:2b:18:11:ac:
31:38:d8:2a:35:00:b6:87:7f:a9:b3:ea:5a:7c:a2:19:0a:93:
8c:33:76:8f:bc:c7:d2:a8:28:9a:b4:be:c9:e4:77:51:2c:dd:
57:b8:37:fe:a0:e9:68:ab:31:72:d5:90:4b:71:2c:aa:db:11:
98:4e:15:77:25:ce:21:7e:26:08:22:3a:76:dd:8d:59:ce:6c:
6e:3d:22:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 23:23:57 2025 by rpki-client