Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS13213.roa
File: AS13213.roa (raw, json)
Hash identifier: gKaOmQeKjvqnfCHPsAgtOv8PUazuYAliFsHF5ZQ1hx0=
Subject key identifier: ED:28:87:FE:2B:7B:D6:6F:F2:B8:D1:14:B0:8B:7E:C8:70:FA:0A:57
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 52A22DDADF9B028F3302076FC7B91A70F7996D3D
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS13213.roa
Signing time: Fri 21 Feb 2025 09:39:06 +0000
ROA not before: Fri 21 Feb 2025 09:34:06 +0000
ROA not after: Fri 20 Feb 2026 09:39:06 +0000
asID: 13213
IP address blocks: 46.202.2.0/24 maxlen: 24
46.202.29.0/24 maxlen: 24
46.202.31.0/24 maxlen: 24
46.202.37.0/24 maxlen: 24
46.202.43.0/24 maxlen: 24
46.202.44.0/24 maxlen: 24
46.202.47.0/24 maxlen: 24
46.202.48.0/24 maxlen: 24
46.202.76.0/24 maxlen: 24
46.202.80.0/24 maxlen: 24
46.203.89.0/24 maxlen: 24
46.203.106.0/24 maxlen: 24
92.112.13.0/24 maxlen: 24
92.112.16.0/24 maxlen: 24
92.112.17.0/24 maxlen: 24
92.112.18.0/24 maxlen: 24
92.112.19.0/24 maxlen: 24
92.112.69.0/24 maxlen: 24
92.112.76.0/24 maxlen: 24
92.112.78.0/24 maxlen: 24
92.112.80.0/24 maxlen: 24
92.112.87.0/24 maxlen: 24
92.112.88.0/24 maxlen: 24
92.113.54.0/24 maxlen: 24
92.113.64.0/24 maxlen: 24
95.135.2.0/24 maxlen: 24
95.135.3.0/24 maxlen: 24
95.135.4.0/24 maxlen: 24
95.135.5.0/24 maxlen: 24
95.135.8.0/24 maxlen: 24
95.135.9.0/24 maxlen: 24
95.135.10.0/24 maxlen: 24
95.135.11.0/24 maxlen: 24
95.135.14.0/24 maxlen: 24
95.135.15.0/24 maxlen: 24
95.135.16.0/24 maxlen: 24
95.135.17.0/24 maxlen: 24
95.135.20.0/24 maxlen: 24
95.135.21.0/24 maxlen: 24
95.135.22.0/24 maxlen: 24
95.135.23.0/24 maxlen: 24
95.135.26.0/24 maxlen: 24
95.135.27.0/24 maxlen: 24
95.135.28.0/24 maxlen: 24
95.135.29.0/24 maxlen: 24
95.135.32.0/24 maxlen: 24
95.135.33.0/24 maxlen: 24
95.135.34.0/24 maxlen: 24
95.135.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 21:19:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:a2:2d:da:df:9b:02:8f:33:02:07:6f:c7:b9:1a:70:f7:99:6d:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 21 09:34:06 2025 GMT
Not After : Feb 20 09:39:06 2026 GMT
Subject: CN=ED2887FE2B7BD66FF2B8D114B08B7EC870FA0A57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:21:ef:36:36:15:e5:bc:4a:b9:ff:1b:45:47:
fb:9f:07:f5:29:b2:69:7c:c1:50:ff:a7:05:3c:b1:
a3:7a:dc:47:fc:04:81:3b:7a:45:23:ed:a5:54:0f:
3e:23:4e:2f:81:fc:80:bd:a7:ce:47:f6:dd:7e:1b:
c1:0a:59:b8:5e:04:e7:1c:7e:21:25:e2:78:36:76:
01:a5:bd:96:0e:d7:7c:8f:54:50:36:40:c5:e5:1e:
ab:ec:21:0c:3c:5d:f6:5c:3b:ee:05:cf:09:87:94:
94:e5:10:3d:64:d8:34:94:54:c3:ce:db:34:02:c4:
04:f8:2e:18:e7:ed:6d:60:8f:e1:75:92:ad:75:7d:
62:09:fe:66:72:cc:83:81:2d:34:f2:87:13:0e:36:
13:af:74:ed:05:f7:0d:f4:9a:14:91:ce:af:ed:fe:
f7:96:81:c5:a1:ad:f5:00:c9:e8:d2:c2:ca:2c:1e:
8e:9a:9d:1a:18:90:2f:ed:23:3e:5e:25:29:5f:f2:
39:04:d7:c6:5f:3a:3f:1d:72:b4:65:f4:8b:7c:a7:
6e:a6:c0:a0:f0:75:09:73:f5:79:94:2e:4e:3a:5a:
54:c5:11:14:28:7d:92:ec:96:0a:c2:76:46:13:9e:
e7:b0:4d:eb:ee:68:ae:a9:7d:3b:48:6c:57:2c:a0:
3f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:28:87:FE:2B:7B:D6:6F:F2:B8:D1:14:B0:8B:7E:C8:70:FA:0A:57
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS13213.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.2.0/24
46.202.29.0/24
46.202.31.0/24
46.202.37.0/24
46.202.43.0-46.202.44.255
46.202.47.0-46.202.48.255
46.202.76.0/24
46.202.80.0/24
46.203.89.0/24
46.203.106.0/24
92.112.13.0/24
92.112.16.0/22
92.112.69.0/24
92.112.76.0/24
92.112.78.0/24
92.112.80.0/24
92.112.87.0-92.112.88.255
92.113.54.0/24
92.113.64.0/24
95.135.2.0-95.135.5.255
95.135.8.0/22
95.135.14.0-95.135.17.255
95.135.20.0/22
95.135.26.0-95.135.29.255
95.135.32.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:47:01:10:ee:3a:67:8e:32:f8:bf:c8:40:e1:4e:86:ab:36:
5b:ab:32:4d:ac:7a:4f:4b:38:b5:0f:05:2b:01:02:f3:3e:6e:
2a:6b:c8:57:0f:f4:35:bf:5b:5b:22:6a:49:10:a8:bf:94:70:
ab:78:66:ea:4e:7e:ef:6a:ec:59:72:de:3f:3e:4b:42:1c:0c:
fb:87:9f:f3:80:0a:73:40:a6:03:42:16:99:cf:df:ee:b8:22:
5f:b5:65:82:7e:b0:7c:ed:23:ba:0f:c3:c0:9d:bd:49:da:20:
bf:02:d9:a1:64:e2:59:02:73:25:fe:e3:1b:80:61:c3:00:c5:
fc:0b:5c:c8:cf:d5:f9:71:89:33:ce:13:ca:6a:27:f7:33:d3:
43:28:a5:3d:4f:11:7f:d4:4a:75:45:29:1f:c0:aa:09:ae:c4:
1a:f6:6e:eb:f6:fb:dc:64:70:98:4d:c9:85:91:b4:1e:f8:b2:
22:55:bb:13:8d:b9:2f:a4:3c:b5:ec:8e:1c:d0:96:e1:e9:a7:
d8:2d:ec:7a:89:a3:a6:35:62:a7:f8:27:4c:07:1b:a2:0a:d2:
ae:73:7a:31:85:3d:b3:b9:f3:a5:fc:97:3f:2a:5f:2c:e4:b5:
30:ce:c1:49:bb:df:56:09:36:95:50:f1:25:0c:d5:e3:9c:8d:
49:78:e7:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:25 2025 by rpki-client