Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS6762.roa
File: AS6762.roa (raw, json)
Hash identifier: dMLZHicZo7PXlflyYHOPi4VES/bB5pqsVUolHkC3hPA=
Subject key identifier: A2:E1:72:A2:0F:92:CB:43:ED:34:61:A0:BF:A5:C5:69:DC:4F:78:97
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 0CDFE10687981FACFEF8469197BCA7A52B98399B
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS6762.roa
Signing time: Mon 24 Mar 2025 11:59:46 +0000
ROA not before: Mon 24 Mar 2025 11:54:46 +0000
ROA not after: Mon 23 Mar 2026 11:59:46 +0000
asID: 6762
IP address blocks: 82.21.9.0/24 maxlen: 24
82.21.10.0/24 maxlen: 24
82.21.11.0/24 maxlen: 24
82.21.12.0/24 maxlen: 24
82.21.13.0/24 maxlen: 24
82.21.14.0/24 maxlen: 24
82.21.15.0/24 maxlen: 24
82.21.16.0/24 maxlen: 24
82.21.17.0/24 maxlen: 24
82.21.18.0/24 maxlen: 24
82.21.19.0/24 maxlen: 24
82.21.22.0/24 maxlen: 24
82.21.23.0/24 maxlen: 24
82.21.24.0/24 maxlen: 24
82.21.25.0/24 maxlen: 24
82.21.26.0/24 maxlen: 24
82.21.27.0/24 maxlen: 24
82.21.32.0/24 maxlen: 24
82.21.33.0/24 maxlen: 24
82.21.34.0/24 maxlen: 24
82.21.35.0/24 maxlen: 24
82.21.36.0/24 maxlen: 24
82.21.37.0/24 maxlen: 24
82.21.38.0/24 maxlen: 24
82.21.39.0/24 maxlen: 24
82.21.40.0/24 maxlen: 24
82.21.42.0/24 maxlen: 24
82.21.44.0/24 maxlen: 24
82.21.45.0/24 maxlen: 24
82.21.46.0/24 maxlen: 24
82.21.47.0/24 maxlen: 24
82.21.48.0/24 maxlen: 24
82.21.49.0/24 maxlen: 24
82.21.51.0/24 maxlen: 24
82.21.52.0/24 maxlen: 24
82.21.54.0/24 maxlen: 24
82.21.55.0/24 maxlen: 24
82.21.62.0/24 maxlen: 24
82.21.63.0/24 maxlen: 24
82.21.71.0/24 maxlen: 24
82.21.73.0/24 maxlen: 24
82.21.83.0/24 maxlen: 24
82.21.85.0/24 maxlen: 24
82.21.86.0/24 maxlen: 24
82.21.130.0/24 maxlen: 24
82.21.173.0/24 maxlen: 24
82.22.156.0/24 maxlen: 24
82.22.163.0/24 maxlen: 24
82.22.165.0/24 maxlen: 24
82.22.168.0/24 maxlen: 24
82.22.169.0/24 maxlen: 24
82.22.179.0/24 maxlen: 24
82.22.181.0/24 maxlen: 24
82.22.182.0/24 maxlen: 24
82.22.183.0/24 maxlen: 24
82.22.198.0/24 maxlen: 24
82.23.178.0/24 maxlen: 24
82.23.189.0/24 maxlen: 24
82.24.27.0/24 maxlen: 24
82.24.29.0/24 maxlen: 24
82.26.64.0/24 maxlen: 24
82.26.69.0/24 maxlen: 24
82.26.75.0/24 maxlen: 24
82.26.77.0/24 maxlen: 24
82.26.85.0/24 maxlen: 24
82.26.107.0/24 maxlen: 24
82.27.18.0/24 maxlen: 24
82.27.21.0/24 maxlen: 24
82.27.96.0/24 maxlen: 24
82.27.97.0/24 maxlen: 24
82.27.121.0/24 maxlen: 24
82.27.125.0/24 maxlen: 24
82.27.126.0/24 maxlen: 24
82.27.127.0/24 maxlen: 24
82.27.196.0/24 maxlen: 24
82.27.199.0/24 maxlen: 24
82.27.200.0/24 maxlen: 24
82.27.202.0/24 maxlen: 24
82.27.203.0/24 maxlen: 24
82.27.204.0/24 maxlen: 24
82.27.207.0/24 maxlen: 24
82.29.123.0/24 maxlen: 24
82.29.124.0/24 maxlen: 24
82.29.139.0/24 maxlen: 24
82.29.141.0/24 maxlen: 24
82.29.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 11:22:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:df:e1:06:87:98:1f:ac:fe:f8:46:91:97:bc:a7:a5:2b:98:39:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 24 11:54:46 2025 GMT
Not After : Mar 23 11:59:46 2026 GMT
Subject: CN=A2E172A20F92CB43ED3461A0BFA5C569DC4F7897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ae:fc:95:61:1a:2c:0c:9e:8f:0f:2e:44:07:
db:f9:fc:68:8f:e2:09:c0:3e:a3:79:1d:2a:46:67:
c4:be:83:48:6b:f7:a2:a5:c9:a7:56:fa:f6:f5:b3:
79:58:dd:81:26:13:6f:1a:57:79:dd:51:e4:96:02:
0e:fc:d5:67:32:54:50:f9:01:e5:ce:3d:37:d7:15:
03:f1:cf:91:bd:9e:21:15:b2:58:35:9f:cd:09:39:
42:48:1d:87:db:da:59:b2:22:5c:e8:67:65:12:59:
61:c8:78:57:15:b7:6d:68:c2:c9:38:d7:8f:b1:09:
59:aa:1e:5f:65:da:80:47:40:72:95:06:3b:82:ae:
84:bd:5f:6d:b5:89:d0:17:39:c8:ab:a1:a6:a5:4f:
fe:12:d8:cc:ca:12:2e:83:0b:9b:2d:ac:e6:b2:85:
93:f9:65:89:5e:cd:a6:fb:7b:39:1f:23:03:3b:26:
46:a7:34:59:35:f6:7d:c4:54:91:3c:8d:78:8b:5f:
ff:bd:f5:26:b5:2e:d3:cc:47:0a:29:94:bd:00:76:
9f:06:39:31:5a:0c:9a:66:0b:1d:1e:79:42:33:df:
f6:22:45:1a:f9:11:eb:33:79:4a:50:8d:f8:ef:5d:
d2:be:8b:83:88:5f:71:bf:08:9c:ca:dd:16:2d:c9:
83:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:E1:72:A2:0F:92:CB:43:ED:34:61:A0:BF:A5:C5:69:DC:4F:78:97
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS6762.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.9.0-82.21.19.255
82.21.22.0-82.21.27.255
82.21.32.0-82.21.40.255
82.21.42.0/24
82.21.44.0-82.21.49.255
82.21.51.0-82.21.52.255
82.21.54.0/23
82.21.62.0/23
82.21.71.0/24
82.21.73.0/24
82.21.83.0/24
82.21.85.0-82.21.86.255
82.21.130.0/24
82.21.173.0/24
82.22.156.0/24
82.22.163.0/24
82.22.165.0/24
82.22.168.0/23
82.22.179.0/24
82.22.181.0-82.22.183.255
82.22.198.0/24
82.23.178.0/24
82.23.189.0/24
82.24.27.0/24
82.24.29.0/24
82.26.64.0/24
82.26.69.0/24
82.26.75.0/24
82.26.77.0/24
82.26.85.0/24
82.26.107.0/24
82.27.18.0/24
82.27.21.0/24
82.27.96.0/23
82.27.121.0/24
82.27.125.0-82.27.127.255
82.27.196.0/24
82.27.199.0-82.27.200.255
82.27.202.0-82.27.204.255
82.27.207.0/24
82.29.123.0-82.29.124.255
82.29.139.0/24
82.29.141.0/24
82.29.143.0/24
Signature Algorithm: sha256WithRSAEncryption
86:b8:de:71:b8:fa:21:a3:98:12:17:16:ce:a8:8a:61:3d:bd:
40:dc:87:3b:be:ac:7c:9f:52:4e:5f:c8:be:98:26:2f:2e:a7:
29:c9:0c:59:6f:10:4b:e6:5e:29:1d:95:6a:e4:bb:9d:31:4a:
bd:fa:aa:cf:af:0a:63:dc:87:0c:39:5c:96:3a:09:49:91:bc:
48:ad:5d:74:76:f8:3a:6d:f4:ed:e6:81:dd:b0:02:0f:bf:d7:
31:7f:ee:8e:72:69:51:47:9a:b9:7e:ba:23:9d:dc:1f:c5:12:
7b:78:03:85:39:cc:15:98:80:e3:76:a3:ea:85:d5:bf:46:f4:
d7:48:d6:ac:75:43:28:c8:27:e8:8e:30:f2:e3:86:80:dd:7f:
f0:95:9b:45:32:9c:52:89:f2:63:c4:b8:08:43:cf:b9:b3:3b:
f0:37:0d:aa:81:45:09:03:7e:ca:56:ec:81:2e:da:e8:97:e8:
e9:ad:b9:1c:74:19:8e:1d:9a:31:26:5e:a7:4d:ef:37:34:aa:
15:39:78:84:5f:2f:1b:fb:41:39:83:73:54:ca:a3:4f:f7:10:
c2:67:77:ca:5d:38:37:9e:f2:7a:f7:2e:d2:90:6d:99:36:91:
fc:75:6b:09:c3:09:de:51:15:e4:3c:c3:10:bc:01:71:79:92:
a2:11:bc:a8
-----BEGIN CERTIFICATE-----
MIIGYjCCBUqgAwIBAgIUDN/hBoeYH6z++EaRl7ynpSuYOZswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNTAzMjQxMTU0NDZaFw0yNjAzMjMxMTU5NDZaMDMxMTAvBgNV
BAMTKEEyRTE3MkEyMEY5MkNCNDNFRDM0NjFBMEJGQTVDNTY5REM0Rjc4OTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqrvyVYRosDJ6PDy5EB9v5/GiP
4gnAPqN5HSpGZ8S+g0hr96KlyadW+vb1s3lY3YEmE28aV3ndUeSWAg781WcyVFD5
AeXOPTfXFQPxz5G9niEVslg1n80JOUJIHYfb2lmyIlzoZ2USWWHIeFcVt21owsk4
14+xCVmqHl9l2oBHQHKVBjuCroS9X221idAXOciroaalT/4S2MzKEi6DC5strOay
hZP5ZYlezab7ezkfIwM7JkanNFk19n3EVJE8jXiLX/+99Sa1LtPMRwoplL0Adp8G
OTFaDJpmCx0eeUIz3/YiRRr5EeszeUpQjfjvXdK+i4OIX3G/CJzK3RYtyYOVAgMB
AAGjggNsMIIDaDAdBgNVHQ4EFgQUouFyog+Sy0PtNGGgv6XFadxPeJcwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNjc2Mi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjCCAYEGCCsGAQUFBwEHAQH/BIIBcDCCAWwwggFoBAIAATCC
AWAwDAMEAFIVCQMEAlIVEDAMAwQBUhUWAwQCUhUYMAwDBAVSFSADBABSFSgDBABS
FSowDAMEAlIVLAMEAVIVMDAMAwQAUhUzAwQAUhU0AwQBUhU2AwQBUhU+AwQAUhVH
AwQAUhVJAwQAUhVTMAwDBABSFVUDBABSFVYDBABSFYIDBABSFa0DBABSFpwDBABS
FqMDBABSFqUDBAFSFqgDBABSFrMwDAMEAFIWtQMEA1IWsAMEAFIWxgMEAFIXsgME
AFIXvQMEAFIYGwMEAFIYHQMEAFIaQAMEAFIaRQMEAFIaSwMEAFIaTQMEAFIaVQME
AFIaawMEAFIbEgMEAFIbFQMEAVIbYAMEAFIbeTAMAwQAUht9AwQHUhsAAwQAUhvE
MAwDBABSG8cDBABSG8gwDAMEAVIbygMEAFIbzAMEAFIbzzAMAwQAUh17AwQAUh18
AwQAUh2LAwQAUh2NAwQAUh2PMA0GCSqGSIb3DQEBCwUAA4IBAQCGuN5xuPoho5gS
FxbOqIphPb1A3Ic7vqx8n1JOX8i+mCYvLqcpyQxZbxBL5l4pHZVq5LudMUq9+qrP
rwpj3IcMOVyWOglJkbxIrV10dvg6bfTt5oHdsAIPv9cxf+6OcmlRR5q5frojndwf
xRJ7eAOFOcwVmIDjdqPqhdW/RvTXSNasdUMoyCfojjDy44aA3X/wlZtFMpxSifJj
xLgIQ8+5szvwNw2qgUUJA37KVuyBLtrol+jprbkcdBmOHZoxJl6nTe83NKoVOXiE
Xy8b+0E5g3NUyqNP9xDCZ3fKXTg3nvJ69y7SkG2ZNpH8dWsJwwneURXkPMMQvAFx
eZKiEbyo
-----END CERTIFICATE-----
Generated at Sun Apr 6 21:23:51 2025 by rpki-client