Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS213476.roa
File: AS213476.roa (raw, json)
Hash identifier: lDnsumxXzyGdJOWWBSsUedIJ39uQg6EpKed+dQRjsVw=
Subject key identifier: 83:C1:0C:AA:48:B8:3C:B8:1E:3C:CD:61:ED:77:E7:A6:CD:50:16:02
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 3D955FD6E4CAA4DD42EABDE9C60236BDA81DF70B
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS213476.roa
Signing time: Wed 17 Sep 2025 13:52:45 +0000
ROA not before: Wed 17 Sep 2025 13:47:45 +0000
ROA not after: Wed 16 Sep 2026 13:52:45 +0000
asID: 213476
IP address blocks: 178.93.115.0/24 maxlen: 24
178.94.150.0/24 maxlen: 24
178.94.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Oct 2025 15:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:95:5f:d6:e4:ca:a4:dd:42:ea:bd:e9:c6:02:36:bd:a8:1d:f7:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Sep 17 13:47:45 2025 GMT
Not After : Sep 16 13:52:45 2026 GMT
Subject: CN=83C10CAA48B83CB81E3CCD61ED77E7A6CD501602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9b:f9:28:00:4e:8b:0e:19:ce:e6:44:1e:3a:
8e:b2:cb:cb:a8:e0:35:f9:34:83:8c:e9:20:b8:c8:
e2:8e:74:ed:5e:d2:bd:03:10:25:c3:3d:b1:ea:ce:
67:35:a3:2a:66:20:bd:99:52:a5:07:2f:dd:8b:be:
f3:3a:60:34:30:c5:d2:6a:15:1a:e7:07:db:4c:1f:
84:ab:e1:24:ab:9e:1a:d4:e6:80:ae:cd:68:1a:4c:
23:47:63:e9:76:f2:1f:ec:e9:3d:fe:40:8f:1a:77:
1b:8d:6a:51:67:b0:27:22:39:7b:24:c7:2f:17:47:
59:ed:b2:2a:34:a3:19:e3:c6:b9:9b:ae:e9:87:29:
6a:df:d4:3b:22:7e:3f:2f:70:b2:e5:ce:ed:54:cd:
ac:26:ee:bd:d5:51:01:81:c7:72:20:cd:b0:01:af:
1c:b7:da:f7:4e:51:f2:c5:8a:ef:dc:f3:18:fb:1f:
6f:a7:ae:db:06:ec:41:7a:ba:89:2f:d8:2f:c6:32:
ec:24:e2:97:39:ac:32:5f:61:7b:aa:e2:68:8c:1c:
d2:4c:6f:f3:c2:68:87:1f:19:30:53:c5:65:df:fe:
18:b3:c8:9a:a0:c1:97:6a:45:b5:ec:15:60:75:4a:
b9:58:02:6d:71:30:0f:41:33:6a:0d:32:20:68:b4:
41:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C1:0C:AA:48:B8:3C:B8:1E:3C:CD:61:ED:77:E7:A6:CD:50:16:02
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS213476.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.93.115.0/24
178.94.150.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:b1:1d:47:dc:0d:0d:77:ab:ff:38:3e:8c:96:9e:a9:a5:1b:
57:9a:e1:89:29:44:7a:7d:21:8d:30:56:28:5b:69:26:77:33:
67:37:42:e0:f5:9f:01:02:27:ef:53:2f:72:4d:e3:79:e4:d5:
c8:37:7d:6d:15:bd:46:5d:45:85:ea:da:08:8d:8e:3f:a6:6c:
92:c2:ad:7f:af:cb:23:ce:8d:5d:7c:97:c7:b0:24:43:eb:85:
f0:ef:4d:54:46:af:81:6e:6b:79:87:b8:98:48:03:c9:02:b8:
30:4f:40:41:98:f2:bc:18:e5:3f:f9:b1:b8:6c:30:7e:8d:ea:
4c:ad:24:ef:56:ce:51:e0:e6:c2:ca:9a:f2:cd:65:39:7a:31:
0d:40:7f:67:38:c4:4c:fa:88:9e:a6:4e:db:13:07:11:39:99:
43:fd:f9:44:58:1c:35:c1:47:01:4d:59:36:33:05:38:85:70:
d7:02:bd:2b:79:ed:18:84:7a:2d:36:e7:44:19:a7:f9:a6:df:
73:81:57:df:20:a0:e5:87:47:58:c7:65:9f:fa:b2:63:cc:bc:
19:d4:f1:a8:21:06:86:b7:b7:e2:08:37:78:80:4c:8c:53:e3:
fa:ab:07:2a:ba:eb:97:b5:20:84:26:b4:5a:27:5a:83:84:c7:
47:0a:88:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 16 21:29:42 2025 by rpki-client