Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS812.roa
File: AS812.roa (raw, json)
Hash identifier: K+5fgtb6qejNz1z0iNRzY7RbIlWLUZ53SqPyxMcg1Sg=
Subject key identifier: AD:E1:E3:D8:83:03:7C:EC:85:06:6C:63:FF:9F:99:AF:AB:05:80:5D
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 06BF8B96F9B89E7E3A68F0589748BD6D52FD3005
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS812.roa
Signing time: Mon 17 Feb 2025 08:33:58 +0000
ROA not before: Mon 17 Feb 2025 08:28:58 +0000
ROA not after: Mon 16 Feb 2026 08:33:58 +0000
asID: 812
IP address blocks: 82.21.60.0/24 maxlen: 24
82.21.61.0/24 maxlen: 24
82.22.158.0/24 maxlen: 24
82.23.92.0/24 maxlen: 24
82.23.93.0/24 maxlen: 24
82.23.94.0/24 maxlen: 24
82.23.95.0/24 maxlen: 24
82.23.96.0/24 maxlen: 24
82.23.97.0/24 maxlen: 24
82.23.98.0/24 maxlen: 24
82.23.99.0/24 maxlen: 24
82.23.100.0/24 maxlen: 24
82.23.101.0/24 maxlen: 24
82.23.102.0/24 maxlen: 24
82.23.103.0/24 maxlen: 24
82.23.104.0/24 maxlen: 24
82.23.105.0/24 maxlen: 24
82.23.106.0/24 maxlen: 24
82.23.107.0/24 maxlen: 24
82.23.108.0/24 maxlen: 24
82.23.109.0/24 maxlen: 24
82.23.110.0/24 maxlen: 24
82.23.111.0/24 maxlen: 24
82.23.112.0/24 maxlen: 24
82.23.113.0/24 maxlen: 24
82.23.114.0/24 maxlen: 24
82.23.115.0/24 maxlen: 24
82.23.116.0/24 maxlen: 24
82.23.117.0/24 maxlen: 24
82.23.118.0/24 maxlen: 24
82.23.124.0/24 maxlen: 24
82.23.125.0/24 maxlen: 24
82.23.127.0/24 maxlen: 24
82.23.174.0/24 maxlen: 24
82.29.115.0/24 maxlen: 24
82.29.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 19:12:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:bf:8b:96:f9:b8:9e:7e:3a:68:f0:58:97:48:bd:6d:52:fd:30:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 17 08:28:58 2025 GMT
Not After : Feb 16 08:33:58 2026 GMT
Subject: CN=ADE1E3D883037CEC85066C63FF9F99AFAB05805D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cb:e0:25:29:7b:3e:c1:0d:c8:c7:8a:d4:0e:
cf:40:38:54:fe:d2:2d:0b:84:bc:b4:85:dc:25:ad:
84:6a:db:46:57:4d:cd:00:71:af:f5:15:41:41:05:
01:ac:8d:5b:a0:e4:9f:f7:79:3c:6d:c9:e3:2c:34:
60:9d:7d:a0:ce:72:fa:c0:66:cb:42:6b:62:8b:b2:
29:93:ef:52:0a:89:05:14:eb:91:1e:7e:ea:12:7d:
ac:ed:72:9f:9b:3d:14:c7:f5:69:9f:8b:4f:8e:c0:
28:76:06:ac:b4:e0:44:fa:a1:5d:5c:c8:3a:d9:a1:
4f:3a:d9:49:a2:50:a2:29:49:2b:a3:c5:66:9b:7b:
5d:f5:e5:01:a5:f9:ff:ff:2f:83:6b:64:0b:9a:8a:
cd:be:5e:f1:11:4b:d9:c2:b6:94:2d:73:84:e4:e7:
72:4c:73:3c:a5:6c:fd:08:3a:fc:75:a5:1b:d8:3a:
57:1f:2a:43:1e:bb:f9:9d:72:0e:db:62:50:c0:6a:
2f:c4:87:b1:19:42:d5:2f:90:22:02:c4:0c:ad:a5:
9f:68:0a:5a:b6:35:bd:a2:7f:17:7b:6c:59:e9:95:
12:d2:1a:99:34:8d:66:85:31:fe:92:2e:1d:7e:4d:
d3:bd:95:00:68:6a:8e:60:58:68:84:8f:a3:0a:52:
48:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:E1:E3:D8:83:03:7C:EC:85:06:6C:63:FF:9F:99:AF:AB:05:80:5D
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS812.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.60.0/23
82.22.158.0/24
82.23.92.0-82.23.118.255
82.23.124.0/23
82.23.127.0/24
82.23.174.0/24
82.29.115.0/24
82.29.122.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:d4:5a:7b:4a:3b:ce:f7:d6:4a:95:cc:21:de:a8:1a:34:d6:
58:76:44:46:42:89:f3:76:43:8b:ba:35:3c:e7:9e:89:78:8d:
68:8b:b3:77:48:24:3b:e9:35:5b:52:41:6a:c8:99:07:6f:2c:
1a:c5:54:d8:a5:06:24:9e:40:1d:94:2d:36:c2:3e:30:7e:44:
ad:cf:87:0d:d4:2e:af:87:89:18:61:7c:6a:aa:89:e2:95:25:
a8:48:2a:b1:64:ad:77:0b:cc:14:b5:55:9c:58:31:cd:b0:ce:
08:9b:fb:8d:6d:87:31:54:7c:8a:1b:66:a6:be:eb:ee:dd:d8:
49:0c:90:ca:1a:6f:c2:df:20:13:22:f6:f6:68:2f:1b:77:3f:
8c:4c:bc:37:a2:79:6c:ec:12:42:c4:91:17:e2:8e:e2:a6:7c:
c8:7e:00:c2:4d:b7:83:62:44:49:75:dd:81:4d:1e:d7:88:76:
90:c3:d0:c2:62:a9:a2:ed:ca:5c:48:db:cb:74:b3:ae:07:02:
dc:44:ea:e4:22:f4:04:e7:58:9c:d2:13:09:e8:a1:c6:7e:4b:
24:25:ce:aa:69:72:43:db:36:21:47:a5:05:2e:65:38:a7:50:
3e:ea:97:55:5f:fe:1e:ec:d0:99:af:a4:e6:bf:aa:72:90:76:
69:91:f0:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:51:15 2025 by rpki-client