Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS216059.roa
File: AS216059.roa (raw, json)
Hash identifier: JwHqaeDwDWGIQ+FGP76BX13t9kbOwOAwm9PioyRhNG0=
Subject key identifier: 93:B6:4C:96:80:0C:CA:5A:9D:1B:8C:F8:5C:ED:05:83:66:E6:4C:36
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 3027B161C1F1EC35B92F5EE8571B6F0A7A760A1F
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS216059.roa
Signing time: Fri 04 Jul 2025 07:46:42 +0000
ROA not before: Fri 04 Jul 2025 07:41:42 +0000
ROA not after: Fri 03 Jul 2026 07:46:42 +0000
asID: 216059
IP address blocks: 96.62.190.0/23 maxlen: 23
96.62.218.0/23 maxlen: 23
155.117.126.0/23 maxlen: 23
155.117.136.0/23 maxlen: 23
155.117.146.0/23 maxlen: 23
155.117.202.0/23 maxlen: 23
162.141.2.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 11:33:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:27:b1:61:c1:f1:ec:35:b9:2f:5e:e8:57:1b:6f:0a:7a:76:0a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jul 4 07:41:42 2025 GMT
Not After : Jul 3 07:46:42 2026 GMT
Subject: CN=93B64C96800CCA5A9D1B8CF85CED058366E64C36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3b:82:08:ec:c4:f4:66:f9:61:89:7a:a1:32:
42:0b:31:51:9b:8e:47:8d:a7:f0:53:63:c9:c1:4b:
7e:8b:9e:8d:ca:76:f0:1d:39:7c:11:3f:10:e2:7a:
55:8d:00:42:de:57:67:0f:d8:00:4a:63:4a:7f:8a:
5a:4b:c7:87:f5:68:33:a0:32:18:ff:14:08:7c:00:
e2:25:d3:8b:a2:c9:5f:bd:41:dc:f5:38:9a:95:50:
6d:d9:45:94:34:d8:4e:ed:78:10:de:28:ee:1d:b4:
22:35:75:de:b6:57:b7:49:2a:e6:96:05:ff:78:bc:
92:0a:23:75:5f:c8:7e:94:ef:f5:0d:a6:26:86:15:
99:ab:17:4b:72:56:67:3b:6a:00:10:e0:e1:02:e6:
f1:9b:27:c0:88:85:7f:4c:61:f0:29:e5:16:88:24:
d9:17:23:32:22:3f:53:1c:0b:73:c7:76:75:2e:2e:
1f:fc:cf:b3:99:7a:02:b9:96:2e:23:8d:91:2f:46:
2b:df:62:31:09:19:12:c4:80:ae:17:12:0f:f3:f2:
7b:a0:ad:d8:4f:68:a5:97:87:c6:1b:8d:97:4c:f1:
81:16:cb:a0:26:80:09:9e:19:2b:3d:cb:40:4c:18:
ee:49:78:55:dd:69:1c:9f:f7:89:f1:9a:cb:be:cb:
05:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:B6:4C:96:80:0C:CA:5A:9D:1B:8C:F8:5C:ED:05:83:66:E6:4C:36
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS216059.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.190.0/23
96.62.218.0/23
155.117.126.0/23
155.117.136.0/23
155.117.146.0/23
155.117.202.0/23
162.141.2.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:d9:ec:66:8d:a9:c3:cc:0b:07:ef:61:6c:42:8f:98:ef:e6:
52:59:29:8f:34:47:bb:6c:d8:f4:18:30:d2:f5:8e:12:ed:44:
ae:59:39:83:76:b2:6e:2a:62:a3:38:13:05:fc:34:29:45:91:
19:e1:e8:b7:65:80:70:74:c9:29:8a:8f:fe:57:c5:f4:59:91:
a0:a2:bb:94:9f:e9:70:be:a8:58:40:b9:4a:d6:78:85:1e:e8:
6a:95:51:27:86:45:1b:08:e9:38:7c:c8:02:da:3a:65:2f:d5:
9b:ce:7b:f8:79:00:57:ef:da:4a:aa:76:bc:52:96:92:ee:fc:
e5:fc:1f:d4:82:42:68:d8:12:9d:dc:7e:3c:cc:88:7d:c4:04:
58:14:3d:6d:f1:54:0b:83:87:56:69:d3:01:1b:82:67:b5:bc:
d4:0f:98:d1:16:44:6f:5f:b6:cd:7b:86:b4:1e:df:3e:10:47:
10:c3:10:07:28:26:4f:e4:30:6e:d4:c7:02:3b:c3:5e:5d:68:
c3:7d:67:d4:e1:b4:86:b7:fd:f6:52:ef:4f:a8:12:0d:a7:a8:
2b:b5:ec:86:9b:40:6b:4a:7e:17:38:3e:94:d5:b0:05:f2:07:
2f:e5:f2:fe:ca:ca:37:8d:06:a1:88:39:96:2a:36:b7:56:85:
57:67:b7:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 01:11:08 2025 by rpki-client