Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
File: AS5650.roa (raw, json)
Hash identifier: Cy+qT17vVHVKRVdGQ0ZjNOQfh1xLiMdqNVtlwWaS3G0=
Subject key identifier: E3:BE:A0:E7:CC:36:9E:D6:DF:4E:8B:E6:9F:B0:0D:B6:8C:CA:E5:0B
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 41C02D5DAE4E72AD74881A31D0750553D2E85D8A
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
Signing time: Thu 27 Mar 2025 18:36:59 +0000
ROA not before: Thu 27 Mar 2025 18:31:59 +0000
ROA not after: Thu 26 Mar 2026 18:36:59 +0000
asID: 5650
IP address blocks: 46.203.160.0/24 maxlen: 24
46.203.164.0/24 maxlen: 24
92.112.32.0/24 maxlen: 24
92.112.33.0/24 maxlen: 24
92.112.34.0/24 maxlen: 24
92.112.35.0/24 maxlen: 24
92.112.36.0/23 maxlen: 24
92.112.38.0/23 maxlen: 24
92.112.40.0/21 maxlen: 24
92.112.157.0/24 maxlen: 24
92.113.56.0/21 maxlen: 22
95.135.38.0/24 maxlen: 24
95.135.138.0/24 maxlen: 24
95.135.180.0/24 maxlen: 24
95.135.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 03:24:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:c0:2d:5d:ae:4e:72:ad:74:88:1a:31:d0:75:05:53:d2:e8:5d:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 27 18:31:59 2025 GMT
Not After : Mar 26 18:36:59 2026 GMT
Subject: CN=E3BEA0E7CC369ED6DF4E8BE69FB00DB68CCAE50B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:28:dc:81:83:73:2a:d3:16:70:ff:12:f4:21:
51:b2:57:ac:80:ae:65:39:ff:78:13:11:ed:65:8c:
1d:19:7f:8c:d9:5e:af:7f:98:d4:aa:6b:d9:fc:01:
25:6d:98:3e:53:81:f2:16:38:1d:7b:eb:47:c8:dc:
b7:96:48:63:b2:22:99:24:01:cd:87:7b:f7:a4:ae:
5e:2b:98:1d:0f:4c:a3:22:8c:5a:a0:57:12:a1:b8:
42:b1:f0:a3:cc:de:12:1f:4f:2a:57:a5:26:9b:e2:
5f:b3:f7:05:f1:5d:f4:89:bf:cd:4a:71:a8:da:99:
ce:50:36:d8:9a:25:d8:cd:57:2d:a9:86:3a:f4:51:
0c:46:82:ec:c0:5c:e9:bc:1f:38:57:14:0a:08:1d:
63:39:5a:e4:f1:c8:3c:a4:f8:88:cb:f8:4b:3f:ad:
ea:c4:72:ec:77:b2:23:69:59:d0:b9:35:b7:bb:48:
23:06:45:f5:d0:a8:25:25:3f:b8:d7:05:a2:86:38:
06:d3:b6:55:07:76:1d:b8:ac:20:60:1f:f2:67:67:
65:df:13:e6:af:0b:99:a1:6f:8c:be:73:f1:ae:0f:
08:f4:df:49:68:b4:2c:1c:82:cf:93:9c:41:0c:08:
87:b8:e1:2e:0e:15:97:24:87:b8:e1:e7:da:f6:f3:
6f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:BE:A0:E7:CC:36:9E:D6:DF:4E:8B:E6:9F:B0:0D:B6:8C:CA:E5:0B
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.160.0/24
46.203.164.0/24
92.112.32.0/20
92.112.157.0/24
92.113.56.0/21
95.135.38.0/24
95.135.138.0/24
95.135.180.0/24
95.135.219.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:d2:dd:3d:c0:e5:e1:93:1c:d9:00:84:c1:2d:cf:43:49:d4:
c5:86:d5:18:54:7d:dc:21:16:82:ea:82:73:ba:bf:af:e2:d1:
66:83:3f:88:ca:27:61:e9:35:0b:5c:7c:c1:49:56:31:da:38:
ac:a8:4c:1c:2e:8a:17:fe:cb:fc:17:16:ee:df:35:af:c3:ed:
43:07:ee:0c:1c:53:31:2a:ed:50:53:c4:45:d7:83:4a:52:f4:
3f:49:9b:27:a8:29:c4:b3:8a:79:21:ad:19:4a:28:38:a2:ad:
3d:59:6c:9d:82:32:a4:73:55:0d:d1:81:98:bc:7b:a3:5c:0c:
a9:ed:d2:05:00:74:c7:2b:52:08:46:01:21:64:f7:8d:dd:58:
f7:3e:0d:bc:eb:b1:2c:8a:e1:05:22:b1:f0:57:96:f5:ae:d3:
a0:dd:a3:c3:bc:ce:4e:6d:df:0b:c2:6a:ea:36:d9:d3:7a:34:
d2:b8:16:32:86:3c:82:d1:06:46:1b:df:7d:a2:b3:3c:6a:63:
f7:e2:9f:51:ea:55:c6:78:4d:cd:84:a6:c7:56:8e:03:00:ec:
58:c3:0e:1e:fb:2b:24:36:ae:d7:c7:e8:27:70:41:67:97:fe:
82:0e:8e:4e:89:af:7f:80:7f:f3:b7:ea:ed:65:87:01:49:17:
54:00:d7:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:30:56 2025 by rpki-client