Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS134098.roa
File: AS134098.roa (raw, json)
Hash identifier: 1tVsuu3oW0ecdDO1ER64yJu6elHlt+2yI1DobOmrdJE=
Subject key identifier: A4:C5:AB:40:96:AD:3C:91:E7:C8:C6:9D:47:A7:32:3D:A0:07:25:FF
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 6738CFDF3C5F1D7C72E439B6D5D096B6816269E7
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS134098.roa
Signing time: Wed 22 Oct 2025 21:31:24 +0000
ROA not before: Wed 22 Oct 2025 21:26:24 +0000
ROA not after: Wed 21 Oct 2026 21:31:24 +0000
asID: 134098
IP address blocks: 2a0b:4340:520::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 18:17:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:38:cf:df:3c:5f:1d:7c:72:e4:39:b6:d5:d0:96:b6:81:62:69:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Oct 22 21:26:24 2025 GMT
Not After : Oct 21 21:31:24 2026 GMT
Subject: CN=A4C5AB4096AD3C91E7C8C69D47A7323DA00725FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:13:06:67:8c:12:c7:f7:92:09:e8:8c:e8:20:
75:8a:10:e6:e3:4f:4e:43:7a:7c:fb:0a:3c:86:52:
a5:6c:4d:62:47:34:d7:7c:2c:e5:31:b7:82:d0:e1:
98:1d:4f:99:3b:36:11:6a:01:10:fd:65:4e:20:61:
04:38:07:af:92:c0:ae:f3:f1:93:db:6a:d3:ec:7b:
0b:81:1c:a5:85:58:9c:c0:da:9c:5c:e3:f9:68:d8:
7f:16:f2:ac:84:07:f0:99:98:21:97:00:f3:1b:dc:
36:9a:3b:6f:a9:7c:35:72:42:6f:e6:24:4d:15:01:
ce:6d:4c:76:3a:fa:46:b4:b4:db:2a:83:06:a6:ba:
ec:c7:b7:27:bb:49:f3:db:4a:bf:c8:1d:6b:8c:f9:
26:70:d5:92:1b:12:7a:d5:15:a4:ad:4b:26:7c:aa:
ad:a6:62:4f:db:0b:0a:0d:39:c4:c7:42:dd:6c:e0:
da:0d:4e:98:c8:6e:31:50:b0:3d:b7:7f:b2:78:91:
87:aa:8e:8c:bb:19:ed:03:4f:1f:07:7f:6c:c0:a6:
3e:12:ce:cd:f8:14:ac:a4:ad:02:59:6f:30:3d:af:
41:2a:b0:e3:dc:7f:8d:3a:e9:99:b7:79:b9:ee:f3:
9e:cc:c7:8b:f1:ac:05:e8:25:e3:37:61:18:73:2b:
4e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C5:AB:40:96:AD:3C:91:E7:C8:C6:9D:47:A7:32:3D:A0:07:25:FF
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS134098.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4340:520::/44
Signature Algorithm: sha256WithRSAEncryption
81:bd:ab:ad:5a:1b:9e:9d:f7:a4:30:a5:ab:c3:fc:51:71:85:
0a:f3:87:e1:87:28:a3:5b:38:34:37:f5:24:f3:45:36:9e:0d:
a3:73:13:66:48:ba:30:ca:0c:e6:e7:12:39:34:d1:82:bf:1e:
c8:48:da:07:5d:4a:d6:e3:fc:7e:a6:86:e9:0a:c6:e5:67:b9:
9a:51:b0:47:00:0a:d4:5e:35:3e:a1:a0:7d:3b:a4:35:8d:04:
d6:4f:93:ef:a7:1c:96:9b:ec:e1:3b:1e:86:c4:a8:af:4d:cb:
4b:c5:1e:44:23:13:73:a6:75:02:90:58:fb:06:44:6d:55:93:
5b:6d:68:b4:30:3e:69:9e:a2:fa:78:42:2c:fe:0b:9b:fa:e0:
1c:91:d4:f1:ef:c3:b1:b5:95:48:71:86:76:32:ab:fa:a9:cc:
5c:b4:2b:13:79:9f:5a:8b:f9:03:ea:1b:20:a1:9f:b0:aa:2e:
ba:4c:40:dd:28:d7:70:e8:77:66:ad:05:65:70:fc:c4:dd:cc:
be:10:4a:c0:ba:1c:ff:d2:bd:dd:5e:dc:3b:6a:56:42:a4:b9:
2c:1f:71:cf:db:70:b1:de:a9:39:e9:d8:0a:48:85:fe:a5:10:
c4:77:ac:0c:7f:72:e6:36:09:88:9e:eb:4a:ad:7a:07:7a:af:
64:0e:a2:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 02:10:20 2025 by rpki-client