Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS42831.roa
File: AS42831.roa (raw, json)
Hash identifier: yHJEf52JB/rwYot7OqCCM1KdPaU2mu5R3B7CGTM75b4=
Subject key identifier: B0:BA:B9:CD:9C:87:60:5B:38:E4:58:87:F6:11:54:B6:1D:F4:D2:EB
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 20425B4765124A6316897352F3D63E43183D47DC
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS42831.roa
Signing time: Mon 19 May 2025 23:54:02 +0000
ROA not before: Mon 19 May 2025 23:49:02 +0000
ROA not after: Mon 18 May 2026 23:54:02 +0000
asID: 42831
IP address blocks: 82.21.128.0/24 maxlen: 24
82.21.131.0/24 maxlen: 24
82.26.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:14:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:42:5b:47:65:12:4a:63:16:89:73:52:f3:d6:3e:43:18:3d:47:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 19 23:49:02 2025 GMT
Not After : May 18 23:54:02 2026 GMT
Subject: CN=B0BAB9CD9C87605B38E45887F61154B61DF4D2EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:dd:c7:b0:44:be:33:cd:cf:9b:45:0d:c8:16:
f1:d4:17:d3:57:0b:d0:e4:c9:a4:13:41:69:66:af:
49:b0:4a:58:1f:33:05:11:5a:25:7a:8b:45:22:9f:
80:ba:f0:6b:f0:f4:7f:a2:93:18:be:bb:f8:2e:e4:
0c:e3:0b:6e:8d:39:22:00:71:c6:26:fd:92:ae:d3:
ec:ea:9d:90:cb:57:1e:88:7b:84:c7:3e:bc:36:d8:
69:26:fc:93:94:20:e6:8c:08:53:be:88:fb:17:22:
c7:a9:b5:b1:93:bc:5c:ee:c8:25:db:54:8e:89:5f:
a6:aa:ca:c1:ad:a9:dc:bd:0e:bd:30:b7:e0:b8:17:
bd:f5:2c:a4:e1:87:56:2e:20:22:c9:0d:01:2e:53:
5d:e7:06:98:59:98:d4:ff:d3:6b:52:6d:68:d9:ea:
58:fc:1c:fa:2d:b3:d6:6f:a8:8e:61:11:fa:d3:b5:
c9:81:6d:c2:5b:a8:f0:a6:50:f2:17:12:5f:f0:90:
fb:32:ee:3c:db:dd:1a:a5:71:d6:76:95:90:27:2b:
00:56:7c:7a:be:65:87:68:98:b2:09:45:c6:a8:79:
5c:05:ea:d8:50:6a:b3:08:51:52:e5:e5:71:a7:88:
e8:6d:e4:3f:a1:64:d1:87:38:00:71:d3:bc:2f:2c:
86:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BA:B9:CD:9C:87:60:5B:38:E4:58:87:F6:11:54:B6:1D:F4:D2:EB
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS42831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.128.0/24
82.21.131.0/24
82.26.196.0/24
Signature Algorithm: sha256WithRSAEncryption
29:56:06:c4:03:e0:e6:2e:1f:d7:7a:0e:e0:33:4e:95:dd:5b:
1f:26:5f:b2:43:20:d8:b1:d5:23:e6:ea:8d:fc:a3:84:61:fa:
15:fc:16:aa:27:7c:d9:e5:8b:68:22:40:d4:09:08:79:bd:32:
53:2e:09:06:d9:f2:cc:fe:9b:01:0c:41:37:c2:df:18:04:59:
59:bb:f1:c2:d2:50:1d:d7:90:6f:b7:10:fb:42:7b:86:d3:07:
ce:27:6a:d4:66:55:b1:e4:42:42:eb:56:e2:41:8a:c7:b2:fe:
9e:e2:f5:bf:77:5a:98:49:87:e3:4a:a4:b5:6f:9b:97:4d:03:
fd:ba:6d:b8:30:19:77:b1:8a:54:0b:57:8a:fe:5f:cc:28:a7:
16:42:f3:f2:93:4c:62:01:7d:c7:db:33:20:60:b0:a1:71:7c:
bf:2a:bb:c5:9f:a1:63:63:68:9f:45:1c:cc:98:a6:fb:41:0e:
47:6a:0e:af:fa:2e:fa:d6:6d:29:23:51:b9:c1:23:94:5a:98:
e6:00:ac:57:e7:4f:15:fe:33:7c:bf:fd:52:6e:4a:96:8a:c8:
8e:7c:88:3d:33:73:85:ce:ff:7d:36:10:e7:90:d1:97:c6:e3:
63:f5:66:c7:df:e6:b3:5c:15:a3:5a:68:d4:d3:0d:14:73:84:
a6:40:3d:2d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 7 21:52:26 2025 by rpki-client