Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS51082.roa
File: AS51082.roa (raw, json)
Hash identifier: 2m1pEYR2Exzzj8mtZDYNSedApbV8Zz3Cc5yRQfVlMBg=
Subject key identifier: E9:BE:F1:C0:DB:57:FF:93:10:14:8C:BC:BD:90:D1:FB:7C:0A:2C:43
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 155D0CC8F2281A161BCD070D010BBC61D69AF135
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS51082.roa
Signing time: Mon 26 May 2025 14:22:33 +0000
ROA not before: Mon 26 May 2025 14:17:33 +0000
ROA not after: Mon 25 May 2026 14:22:33 +0000
asID: 51082
IP address blocks: 82.26.171.0/24 maxlen: 24
82.27.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:5d:0c:c8:f2:28:1a:16:1b:cd:07:0d:01:0b:bc:61:d6:9a:f1:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 26 14:17:33 2025 GMT
Not After : May 25 14:22:33 2026 GMT
Subject: CN=E9BEF1C0DB57FF9310148CBCBD90D1FB7C0A2C43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:62:23:cb:d7:de:d9:04:7e:89:1f:3a:af:f5:
47:4f:bd:90:cc:b1:85:30:8b:1a:73:97:2d:db:7c:
39:7c:19:0b:6c:64:19:56:31:34:89:6b:a9:8b:51:
3c:4a:6e:92:ad:b9:41:84:e0:ae:20:b7:72:dd:29:
69:28:89:a0:1d:ac:3d:76:d9:cb:7a:2e:f7:b7:e2:
ac:d3:86:3f:38:2f:04:11:0f:6c:73:dd:8b:28:16:
10:79:03:ce:4a:58:0a:39:88:e6:25:da:b0:bc:12:
fe:19:5b:dd:4e:32:cb:f7:ee:3b:d5:74:79:02:be:
e8:9e:46:e8:0f:d0:76:c7:52:8d:32:15:60:65:c2:
30:84:55:b6:92:c4:61:0e:e2:3c:b9:7c:22:48:0e:
50:9a:a0:87:97:e7:65:c2:e7:cf:77:8c:cf:94:a6:
9a:0e:df:0a:2c:47:3b:98:b3:37:5d:17:a5:3f:4e:
fc:4d:5f:70:0a:31:a2:e6:06:4c:19:4f:8a:67:4c:
6a:bb:8d:5f:e5:0c:02:e3:8e:55:3c:f6:f7:4c:0f:
65:d7:c6:fb:57:2e:c7:07:b0:ef:1b:c0:39:cf:c3:
73:9d:05:0f:b5:db:22:df:4e:db:2d:c0:e1:b1:71:
04:8d:9e:d8:d9:a5:eb:22:19:e7:79:e7:8a:19:7b:
67:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:BE:F1:C0:DB:57:FF:93:10:14:8C:BC:BD:90:D1:FB:7C:0A:2C:43
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS51082.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.26.171.0/24
82.27.17.0/24
Signature Algorithm: sha256WithRSAEncryption
76:9f:ab:02:42:92:37:02:dc:99:a0:64:89:47:55:74:5b:8f:
bd:e0:71:88:19:67:8b:42:60:84:24:3f:88:fc:fa:c7:5b:66:
2b:d6:5e:e7:06:9c:99:21:c0:28:ee:2e:22:26:cd:61:d1:0d:
82:99:96:d0:e9:fc:f8:2e:a3:77:d3:3c:3e:2e:8b:00:90:67:
a4:83:79:08:dc:1d:d4:c8:e2:90:47:f2:52:23:be:54:c8:c7:
ac:71:ce:d5:48:b0:85:75:b9:3e:25:0b:93:24:d6:47:59:53:
4b:ec:45:b0:b5:e1:02:d2:f4:85:1c:05:60:bd:07:eb:86:23:
a9:b4:e6:40:6d:0d:0d:85:d1:04:12:fe:43:d2:74:12:e8:d5:
dc:75:90:b7:3d:77:0e:d9:d8:11:d2:ae:57:36:27:24:a7:8f:
26:82:f1:b7:9a:17:33:99:81:1f:9a:d0:59:42:30:39:64:ca:
bb:44:cc:f2:95:a8:47:86:5e:6a:49:32:a4:e1:3a:3f:8f:14:
55:85:4a:6b:32:a8:49:dd:bf:4c:b3:4a:42:d8:d8:9f:81:28:
c6:ac:88:2e:3b:ad:21:53:a1:f2:d0:43:ba:b9:c1:18:f9:74:
4b:6b:b3:1f:4c:f0:64:50:81:5a:0b:13:89:9c:39:5a:d3:dc:
b5:5f:8a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 21:56:22 2025 by rpki-client