Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
File: AS36530.roa (raw, json)
Hash identifier: dMhYzHb5qLR5gUKQlQ5NuZwtJGQXySrg/yw1gHKFDfg=
Subject key identifier: 67:67:B5:2C:22:26:EF:DD:01:C8:04:FD:26:3B:D6:E1:EF:8C:88:69
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 23731F1CADAB9F34CD0D1D5B46AAB9416304B305
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
Signing time: Fri 23 May 2025 17:32:07 +0000
ROA not before: Fri 23 May 2025 17:27:07 +0000
ROA not after: Fri 22 May 2026 17:32:07 +0000
asID: 36530
IP address blocks: 82.26.72.0/23 maxlen: 24
82.26.78.0/23 maxlen: 24
82.26.110.0/24 maxlen: 24
82.27.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:73:1f:1c:ad:ab:9f:34:cd:0d:1d:5b:46:aa:b9:41:63:04:b3:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 23 17:27:07 2025 GMT
Not After : May 22 17:32:07 2026 GMT
Subject: CN=6767B52C2226EFDD01C804FD263BD6E1EF8C8869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0e:90:6f:51:a4:21:67:f7:66:f8:77:e6:0b:
c2:2d:db:d2:82:2b:fe:86:7c:1d:2d:7b:4b:0a:16:
77:e4:bd:a0:5d:4e:28:ab:d9:fe:5c:72:ff:5e:ba:
b6:8f:50:61:a9:05:3e:9a:95:2a:a4:19:7f:a2:21:
6d:fa:0f:36:09:58:a3:34:88:13:72:83:18:58:a0:
6c:8a:44:75:ef:24:cb:f7:0a:f4:71:5e:16:08:60:
aa:ab:40:21:3c:f0:35:70:69:b1:94:dc:9d:f5:c6:
71:4a:6c:e8:50:18:0d:ec:2e:c0:30:26:1f:a4:ee:
bd:94:3a:b9:2a:e8:87:99:f9:74:2c:b2:9b:b4:44:
58:90:11:20:69:29:89:00:9e:1d:0e:04:a7:7f:84:
79:ae:9d:ec:3b:41:38:62:83:37:0a:dc:8a:d2:31:
5f:5f:1f:67:fe:b3:be:a4:b6:4c:b4:af:d0:47:03:
a2:f6:c8:5c:e5:4e:19:d8:f4:99:84:97:70:40:5a:
12:d7:fe:18:00:c1:f4:a6:f2:71:48:9d:45:15:3a:
d3:84:db:f7:9d:ce:e6:41:46:af:b4:9c:d3:38:85:
31:ff:ef:93:16:76:4f:f3:df:51:de:49:f5:59:a2:
c8:de:d1:37:6f:4f:99:86:19:d4:52:05:30:48:ae:
39:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:67:B5:2C:22:26:EF:DD:01:C8:04:FD:26:3B:D6:E1:EF:8C:88:69
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.26.72.0/23
82.26.78.0/23
82.26.110.0/24
82.27.123.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:ae:49:ac:34:cc:7b:32:ca:37:9a:48:f2:02:1e:c2:b6:33:
e9:e3:44:80:f2:18:db:2e:96:5e:f3:5b:30:dc:88:a7:f1:de:
00:41:5c:0f:a0:4b:00:c5:30:7b:9c:e5:08:69:94:fd:1d:67:
12:a3:d7:8d:4c:5e:86:a2:44:0a:30:80:d2:f6:5c:4b:3b:5d:
b0:de:54:1e:b9:1f:e9:a0:74:20:7e:cb:a4:34:d7:e2:f2:4c:
71:29:fd:97:4a:01:18:ce:4a:23:2d:18:8e:ef:ad:ef:5b:8a:
26:b7:b6:99:bf:78:57:be:51:86:92:6e:cf:74:b1:32:0b:03:
74:a9:a6:ca:1a:21:0d:7e:32:26:8e:bc:ff:2f:9f:6f:a2:74:
80:84:00:78:73:13:ba:16:94:4e:1c:57:4b:1f:f1:b8:8d:d1:
c8:6f:59:21:9a:04:0d:2f:bf:31:2d:86:02:ef:97:ed:60:d0:
3c:9a:a7:40:d0:8e:fb:ca:bd:a3:87:1b:d9:11:00:54:b4:7f:
b6:ca:06:12:71:74:00:f3:04:34:ce:00:53:b1:05:b1:f4:5e:
0d:9e:f5:4a:2c:d8:00:da:9b:87:ab:9a:89:ad:3c:8c:d1:47:
2b:a1:19:ef:65:ec:74:07:96:47:e5:76:e8:37:77:37:b1:f7:
bb:ee:a2:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:26:35 2025 by rpki-client