Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS57578.roa
File: AS57578.roa (raw, json)
Hash identifier: XVO4IBJL9kaRbAzjLo8uXnHBR2QxRp6aZ0sfKRdtQ5M=
Subject key identifier: 18:40:E7:56:FE:F9:C1:3A:F3:EA:3E:CF:AA:D5:F5:F2:08:BB:D6:FC
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 1F6BEC4226CCE71044A7817C3EEF9F6009C4B7B7
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS57578.roa
Signing time: Wed 22 Oct 2025 21:31:24 +0000
ROA not before: Wed 22 Oct 2025 21:26:24 +0000
ROA not after: Wed 21 Oct 2026 21:31:24 +0000
asID: 57578
IP address blocks: 45.131.68.0/22 maxlen: 24
45.142.246.0/24 maxlen: 24
185.209.84.0/23 maxlen: 24
2a0b:4342:1a20::/44 maxlen: 48
2a0b:4342:2000::/36 maxlen: 48
2a0b:4342:4000::/36 maxlen: 48
2a0e:5c40::/29 maxlen: 40
2a0e:5c43::/32 maxlen: 48
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 02:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:6b:ec:42:26:cc:e7:10:44:a7:81:7c:3e:ef:9f:60:09:c4:b7:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Oct 22 21:26:24 2025 GMT
Not After : Oct 21 21:31:24 2026 GMT
Subject: CN=1840E756FEF9C13AF3EA3ECFAAD5F5F208BBD6FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:23:1e:d5:6b:a6:0a:4b:be:0a:e5:ce:e7:99:
52:26:77:a7:52:7a:7d:23:bd:d8:bf:e9:4a:4f:95:
25:c2:c2:c8:ea:5a:9f:9d:24:d6:d9:2a:b4:8c:dd:
f6:cd:17:d9:4f:69:c2:95:27:b7:99:1f:37:72:48:
5b:0b:3d:e0:fe:dd:67:79:77:a7:fb:1a:02:e0:ac:
e1:96:20:61:f7:01:79:40:fe:08:59:08:f9:93:61:
5b:5d:b5:4d:df:a4:90:bc:fa:fa:8f:14:10:44:ea:
f2:25:0e:97:46:e1:b8:6a:13:2f:d7:95:83:75:54:
31:69:98:31:f7:56:f7:0c:9b:ce:a0:b0:de:28:c7:
9a:0f:ec:27:be:eb:56:ea:fc:4c:14:f5:4b:45:18:
d0:c6:2d:b7:5f:d1:d5:fe:df:5f:68:04:7b:9a:7e:
b1:b5:f3:c4:9f:8e:d3:24:43:14:d6:a7:22:52:f6:
ee:25:d6:1e:fc:4b:9c:65:fd:e4:99:dd:0e:8c:d8:
11:0b:3b:ba:0d:32:c4:57:dc:b3:b5:b5:a6:57:77:
2b:a9:5d:8e:86:30:68:b4:19:d3:9d:94:6a:b0:c3:
3d:5f:3f:7e:a8:a1:b8:38:cc:f7:ae:67:14:9f:f1:
31:cb:25:33:57:d8:4c:15:15:57:d6:bc:a3:2c:b9:
46:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:40:E7:56:FE:F9:C1:3A:F3:EA:3E:CF:AA:D5:F5:F2:08:BB:D6:FC
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS57578.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.68.0/22
45.142.246.0/24
185.209.84.0/23
IPv6:
2a0b:4342:1a20::/44
2a0b:4342:2000::/36
2a0b:4342:4000::/36
2a0e:5c40::/29
Signature Algorithm: sha256WithRSAEncryption
6a:15:e1:2b:fd:60:c3:5d:15:5f:3b:b7:00:e2:f7:eb:c3:60:
bb:5f:b5:da:69:2c:da:6e:bf:57:bc:b9:c7:20:df:03:2d:b9:
8a:b5:53:e7:30:5e:bd:25:54:d2:50:41:a5:54:02:11:81:ff:
dc:c1:b6:c2:d2:50:b1:4d:fa:a0:82:ff:03:fc:4e:15:48:26:
5c:bc:52:1c:56:45:09:dd:64:52:3d:1f:38:62:10:52:9f:06:
ec:1a:05:23:e1:2c:74:a4:a5:1d:74:72:d9:17:e2:9a:0e:aa:
af:f2:0f:b1:f5:f8:3c:1b:38:51:90:9f:c5:65:96:40:1e:9a:
fd:2f:62:18:60:96:03:5e:1c:78:41:0f:cc:de:ee:47:86:ab:
45:c9:72:1d:f7:87:dc:1e:1f:a1:dc:15:1d:95:d3:65:5a:4d:
1e:bb:fb:d4:26:72:9d:ab:8c:94:43:64:14:c5:64:8e:64:f5:
af:3b:ef:3e:e6:59:77:c9:75:8a:25:03:3d:84:57:68:22:58:
0e:e6:dd:cc:c1:b1:88:11:83:36:bd:d8:97:be:8c:49:4b:33:
26:37:ab:c2:92:87:4a:8c:80:16:32:e0:21:aa:98:a7:f5:43:
99:4e:6f:88:f9:49:26:62:d2:b2:2c:b2:a1:71:46:6b:58:4d:
f6:54:9b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 12:55:40 2025 by rpki-client