Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214025.roa
File: AS214025.roa (raw, json)
Hash identifier: yPw/RZJYrp7Wl7KLfx9TOb7YMo9ZBez3hiIMPFSAmQE=
Subject key identifier: 3B:1F:69:F7:C5:61:84:50:29:63:D7:4A:CC:5E:54:E0:F4:FF:36:42
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 262A346AABA90C45CEFB8FD78C656E7294053752
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214025.roa
Signing time: Mon 05 May 2025 17:08:32 +0000
ROA not before: Mon 05 May 2025 17:03:32 +0000
ROA not after: Mon 04 May 2026 17:08:32 +0000
asID: 214025
IP address blocks: 96.62.100.0/24 maxlen: 24
96.62.101.0/24 maxlen: 24
96.62.114.0/24 maxlen: 24
96.62.115.0/24 maxlen: 24
148.135.190.0/24 maxlen: 24
148.135.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 16:09:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:2a:34:6a:ab:a9:0c:45:ce:fb:8f:d7:8c:65:6e:72:94:05:37:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 5 17:03:32 2025 GMT
Not After : May 4 17:08:32 2026 GMT
Subject: CN=3B1F69F7C56184502963D74ACC5E54E0F4FF3642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:31:bf:7a:00:f6:bd:45:09:44:d6:f5:1a:27:
fd:a0:76:49:16:d4:09:60:91:b1:f2:cb:be:47:fd:
91:2c:83:eb:62:88:b0:0f:60:09:8e:ef:28:65:b1:
d9:74:3e:10:7f:77:3f:4d:28:b0:3a:16:56:40:dc:
5c:38:b2:24:d9:ea:c1:5e:8c:0d:2f:dd:1d:62:af:
e5:58:1c:a8:cc:b5:67:34:65:40:ad:65:92:3c:29:
56:99:0c:ce:60:4b:9f:45:22:83:d5:70:25:f2:a2:
84:3b:fe:3c:9e:eb:23:39:1d:cc:c7:dd:e7:9a:08:
63:3f:c8:ca:63:08:a9:52:9b:af:8a:cf:88:61:79:
cc:fe:9c:bb:e4:66:52:9f:a0:43:b1:dc:b4:1a:e6:
d6:06:42:44:dc:b9:49:4f:f5:6d:b9:03:10:33:5a:
f2:4e:f3:52:c2:8c:3c:bc:2f:f0:36:72:1f:a9:2f:
04:04:45:f0:20:58:4a:47:0c:bc:6d:9b:20:5f:6b:
b0:ae:57:d4:77:61:d0:08:1e:89:ee:33:6b:d7:5f:
6e:4c:3f:e2:7c:aa:22:95:9d:1e:bb:0f:5e:a4:c1:
7b:6b:44:ea:cf:30:b3:d3:25:1c:f1:85:7e:d6:2c:
2f:40:51:b8:3a:ef:fa:8c:53:a9:a6:cb:fe:be:f4:
d1:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:1F:69:F7:C5:61:84:50:29:63:D7:4A:CC:5E:54:E0:F4:FF:36:42
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214025.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.100.0/23
96.62.114.0/23
148.135.190.0/24
148.135.255.0/24
Signature Algorithm: sha256WithRSAEncryption
30:57:37:3a:6a:7a:50:9b:66:7a:6f:9c:09:1e:41:a5:82:b3:
8c:66:fa:6a:4d:75:bd:fe:9a:ef:ae:36:69:e7:38:be:02:2b:
71:01:12:e0:4e:b6:00:1b:80:08:5e:d3:2d:47:01:78:59:3b:
48:64:22:bb:d0:9d:be:62:a0:e1:cd:43:5e:f9:d0:8d:1b:6e:
9b:e9:3a:7e:1b:2a:3a:64:d9:55:25:56:f4:95:17:78:ef:0d:
cf:40:0a:1d:b9:b4:52:18:2f:21:0b:45:0c:7e:9e:6a:02:77:
94:4e:76:2b:d7:69:bb:c9:c2:2e:d0:1b:02:b4:73:e3:5f:65:
13:b4:10:d9:48:c1:1a:db:13:56:5f:47:dd:b9:23:80:49:94:
5b:e1:09:f7:53:b0:cd:32:e2:06:15:4f:5d:ba:89:7d:38:01:
81:f9:ce:3c:d3:66:ed:90:b8:4d:ac:e9:e4:ab:7a:7a:69:4e:
85:72:67:12:c9:b6:79:67:20:af:a9:06:17:4b:90:0a:5f:11:
0b:f1:3f:2b:65:8c:a8:46:41:8d:ed:e3:b2:b9:26:1a:30:37:
23:94:fb:3b:ad:76:d4:52:f8:11:35:09:5b:39:67:cf:b8:fa:
8b:76:62:21:56:04:4f:c5:d5:13:42:09:99:5a:ce:15:27:d2:
fb:3e:5c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 08:19:34 2025 by rpki-client