Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: RFVaCzVuQbokB7vSGRkyOFRTyUZaZNEIrXVYvRJ54SY=
Subject key identifier: 3A:53:56:51:34:6C:57:B8:93:D9:B4:44:B5:D8:FF:2E:D1:B4:E3:2D
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4EADCBD6D04A79A6622C3C8434F490C4E81B0603
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
Signing time: Wed 08 Oct 2025 09:47:00 +0000
ROA not before: Wed 08 Oct 2025 09:42:00 +0000
ROA not after: Wed 07 Oct 2026 09:47:00 +0000
asID: 174
IP address blocks: 82.22.19.0/24 maxlen: 24
82.22.22.0/24 maxlen: 24
82.22.24.0/24 maxlen: 24
82.22.26.0/24 maxlen: 24
82.22.44.0/24 maxlen: 24
82.22.46.0/24 maxlen: 24
82.22.48.0/24 maxlen: 24
82.22.51.0/24 maxlen: 24
82.22.52.0/24 maxlen: 24
82.22.54.0/24 maxlen: 24
82.22.56.0/24 maxlen: 24
82.22.58.0/24 maxlen: 24
82.22.60.0/24 maxlen: 24
82.22.62.0/24 maxlen: 24
82.27.128.0/24 maxlen: 24
82.27.129.0/24 maxlen: 24
82.27.132.0/24 maxlen: 24
82.27.133.0/24 maxlen: 24
82.27.134.0/24 maxlen: 24
82.27.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:ad:cb:d6:d0:4a:79:a6:62:2c:3c:84:34:f4:90:c4:e8:1b:06:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Oct 8 09:42:00 2025 GMT
Not After : Oct 7 09:47:00 2026 GMT
Subject: CN=3A535651346C57B893D9B444B5D8FF2ED1B4E32D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d0:28:69:e9:bd:a1:6e:57:aa:cf:62:63:0e:
8b:86:87:dc:8c:b7:90:44:2c:41:17:4c:aa:2e:f0:
8f:12:cf:9f:1d:1e:18:8b:df:7d:3c:3e:e1:cf:48:
07:86:b0:96:8a:b9:47:d1:d6:23:5f:98:68:e6:a3:
71:27:0d:85:04:26:30:24:c4:14:bd:16:05:53:55:
fe:7b:6e:b7:af:93:4d:8e:1f:8a:16:fa:97:c8:58:
66:bc:c8:e2:fe:4e:d9:af:97:5d:7b:a5:af:f7:86:
48:48:d2:e7:87:4e:35:66:e4:b8:c3:b4:70:cf:22:
6c:78:de:61:d1:4c:16:54:08:3b:95:62:2d:1e:b9:
4e:86:6f:ae:28:60:37:ec:7d:b5:34:50:c5:fa:b4:
d5:88:d4:3f:2d:b5:17:75:2f:82:7f:10:b3:64:d1:
a3:df:e6:1f:c1:8b:93:91:bd:9b:07:24:4c:1b:f6:
e4:21:da:b3:43:0d:33:95:c4:65:ae:66:ab:3f:3f:
90:b5:0e:21:5e:8d:68:67:3c:c7:e7:c4:96:1f:78:
f5:23:b4:02:6e:56:21:da:8c:34:46:95:7c:85:5a:
d4:5f:22:5a:05:c0:9d:a1:ea:a5:e6:66:b3:fa:8b:
db:52:b6:ef:28:e5:24:ad:6c:c9:ca:33:69:ff:b8:
36:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:53:56:51:34:6C:57:B8:93:D9:B4:44:B5:D8:FF:2E:D1:B4:E3:2D
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.19.0/24
82.22.22.0/24
82.22.24.0/24
82.22.26.0/24
82.22.44.0/24
82.22.46.0/24
82.22.48.0/24
82.22.51.0-82.22.52.255
82.22.54.0/24
82.22.56.0/24
82.22.58.0/24
82.22.60.0/24
82.22.62.0/24
82.27.128.0/23
82.27.132.0/22
Signature Algorithm: sha256WithRSAEncryption
56:8c:03:2a:5a:75:44:10:ac:31:70:17:62:7d:cd:6b:cd:3f:
f3:40:4c:1f:20:08:04:c1:2b:2b:95:9a:fd:df:6c:7f:44:dd:
e0:53:b4:dd:bb:85:26:b4:0a:94:4e:42:7b:a6:bb:8f:82:a2:
ea:ad:39:af:0b:31:62:dc:d2:2d:33:9d:09:08:06:ce:b0:5b:
30:d1:10:9b:35:4b:3b:f0:18:87:96:88:ac:cc:22:ed:62:9d:
16:b9:a6:24:5a:85:73:90:f0:18:f0:c1:16:94:0d:67:45:7a:
03:c3:93:2c:fd:e4:5d:35:74:cb:60:8e:11:4e:04:97:6e:99:
78:ab:66:4c:a3:b1:b0:d7:13:1a:12:3c:38:02:41:c6:ed:64:
1f:32:99:7e:e9:f6:ff:1d:5d:8c:1c:6a:76:d1:82:6e:1a:e9:
85:4d:1e:b9:89:ff:2e:f4:be:41:fc:52:f6:3e:ad:89:ae:3d:
dd:97:41:22:5f:c7:59:75:b4:78:a3:d2:2b:95:0b:bc:48:fa:
7e:a2:b0:26:52:c4:90:7a:f6:9f:8a:21:56:06:af:37:6e:7c:
1c:dd:46:a5:ab:b7:ff:cf:7f:28:b9:c3:16:bf:7d:eb:90:be:
5e:b7:f2:18:08:67:45:12:cc:57:32:37:72:a8:6c:e7:ba:ff:
48:6c:ad:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:58:06 2025 by rpki-client