Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS57695.roa
File: AS57695.roa (raw, json)
Hash identifier: oc+M5RaKKneDt+xjVnZrlMa9SqrvruVJ6Dpfe25rUAY=
Subject key identifier: 89:56:3D:3E:2F:B9:40:5E:CD:10:FB:95:6D:93:60:8E:68:B0:68:6B
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 4FBE02E91D0C34F8DF8CFEED240F99B7C980E122
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS57695.roa
Signing time: Wed 22 Oct 2025 21:31:25 +0000
ROA not before: Wed 22 Oct 2025 21:26:25 +0000
ROA not after: Wed 21 Oct 2026 21:31:25 +0000
asID: 57695
IP address blocks: 45.11.104.0/22 maxlen: 24
45.131.68.0/22 maxlen: 24
45.142.246.0/24 maxlen: 24
45.142.247.0/24 maxlen: 24
45.150.240.0/22 maxlen: 24
185.189.72.0/24 maxlen: 24
185.234.213.0/24 maxlen: 24
194.45.101.0/24 maxlen: 24
194.156.162.0/23 maxlen: 24
2a0b:4341::/32 maxlen: 48
2a0b:4342::/32 maxlen: 48
2a0d:5641:2100::/44 maxlen: 48
2a0e:6901::/32 maxlen: 48
2a0e:6902::/32 maxlen: 48
2a11:6e01::/32 maxlen: 48
2a12:8d00::/29 maxlen: 48
Validation: OK
Signature path: rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 02:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:be:02:e9:1d:0c:34:f8:df:8c:fe:ed:24:0f:99:b7:c9:80:e1:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Oct 22 21:26:25 2025 GMT
Not After : Oct 21 21:31:25 2026 GMT
Subject: CN=89563D3E2FB9405ECD10FB956D93608E68B0686B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b8:ef:ea:f5:fc:84:61:a9:91:3c:69:f4:06:
ae:be:ff:57:3b:ec:68:44:b1:2d:42:53:7b:b8:66:
4a:ef:a1:ca:85:32:93:44:ad:c3:10:71:6c:70:a8:
a6:d0:bc:33:3d:09:68:82:50:07:b7:74:7e:9e:82:
68:53:26:9a:b7:30:f2:b2:ef:68:ed:4a:b3:8e:0c:
24:26:01:10:5d:58:5d:f7:95:1e:5d:b3:5e:72:45:
0a:1a:f7:1f:d7:60:f9:b9:9a:8a:dd:f1:f4:81:d8:
66:bc:12:29:75:87:85:b5:b8:c1:fe:0c:91:8b:b0:
b7:e6:4e:00:52:eb:b6:71:7e:4d:da:58:26:a7:1e:
71:42:85:34:02:9d:b7:10:dc:51:7f:6f:44:3a:60:
1b:8f:eb:0b:04:f6:cb:91:1a:13:69:8b:a7:b0:d7:
6a:58:2e:a3:1d:e6:9a:5e:8b:18:a3:42:f0:6a:e6:
96:95:3e:37:73:ee:40:1b:b6:b3:80:ad:e9:08:28:
07:35:7f:1b:ce:8b:bb:54:d8:7f:67:cb:14:28:1e:
98:f5:b9:ef:ac:cc:03:dd:59:15:50:5d:ff:cb:1e:
a0:4f:28:c6:fa:d3:b3:96:d3:9f:7c:90:0a:5b:1d:
b5:38:76:06:79:48:1b:62:16:fe:f5:6a:fe:ed:5b:
81:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:56:3D:3E:2F:B9:40:5E:CD:10:FB:95:6D:93:60:8E:68:B0:68:6B
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS57695.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.104.0/22
45.131.68.0/22
45.142.246.0/23
45.150.240.0/22
185.189.72.0/24
185.234.213.0/24
194.45.101.0/24
194.156.162.0/23
IPv6:
2a0b:4341::-2a0b:4342:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:5641:2100::/44
2a0e:6901::-2a0e:6902:ffff:ffff:ffff:ffff:ffff:ffff
2a11:6e01::/32
2a12:8d00::/29
Signature Algorithm: sha256WithRSAEncryption
4a:d0:90:cc:e3:cc:a3:8a:81:26:fe:fe:6b:ed:13:bb:88:d6:
7e:45:85:5e:04:37:e6:1a:ea:04:ff:01:0c:bc:83:cc:3b:e6:
7a:cc:e9:08:5f:05:b8:bd:08:19:c3:69:5a:76:a0:03:e0:51:
ca:c6:bf:71:f8:53:a8:10:fb:77:cd:40:83:80:93:7b:7e:ce:
6e:9d:12:8e:43:d6:45:37:b6:99:6e:91:e1:8b:92:4b:30:0b:
0b:57:42:b5:ac:72:c2:22:83:e0:27:90:22:f4:31:41:af:fe:
11:6a:25:29:52:cf:af:0e:1e:07:d5:75:d8:b2:b1:a2:41:a2:
7f:ea:62:c5:3d:fd:06:db:7d:b3:92:52:d1:52:bd:61:36:31:
67:a1:8a:b2:73:6d:26:f2:9a:37:cf:c8:8e:7b:30:06:96:a8:
35:5b:6c:5f:e7:06:de:56:6c:51:82:02:d1:d2:0e:be:58:50:
98:bc:f8:0e:bf:53:f3:b6:ec:6d:9a:6f:71:a1:9a:a0:e6:38:
36:e9:1b:c9:9f:4e:18:a5:7e:83:60:bd:88:de:80:90:6a:9f:
85:f7:c9:0b:6d:0b:e5:77:f2:cc:73:cb:8c:b8:2f:dd:38:48:
f2:e8:b8:e4:c2:0b:da:ca:66:ed:07:87:44:ed:7e:27:90:cb:
06:50:5e:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 13:06:06 2025 by rpki-client