Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198831.roa
File: AS198831.roa (raw, json)
Hash identifier: WXiWs43Pcw8NIQG06YYkV1lkJl4Xkz1sK8cZCO1yznA=
Subject key identifier: 83:E2:5D:E0:5F:FA:7C:E5:EE:1F:E9:03:D8:50:28:C7:51:04:FC:93
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 31AE295BE1EC946F5FE282A5DD8660BC31A5D558
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198831.roa
Signing time: Sun 10 Aug 2025 18:05:53 +0000
ROA not before: Sun 10 Aug 2025 18:00:53 +0000
ROA not after: Sun 09 Aug 2026 18:05:53 +0000
asID: 198831
IP address blocks: 82.24.183.0/24 maxlen: 24
2a13:9500:c4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:ae:29:5b:e1:ec:94:6f:5f:e2:82:a5:dd:86:60:bc:31:a5:d5:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Aug 10 18:00:53 2025 GMT
Not After : Aug 9 18:05:53 2026 GMT
Subject: CN=83E25DE05FFA7CE5EE1FE903D85028C75104FC93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:cc:c8:6c:99:64:da:85:c5:79:48:b0:4d:ac:
b8:37:19:38:8b:bf:ab:95:fc:9f:45:21:5f:46:bf:
44:47:81:e8:2d:5e:02:60:89:bf:89:d2:3d:96:64:
e8:9f:e7:0f:65:f0:9e:0a:ff:11:d5:4e:fd:0c:92:
37:e4:ed:d3:c1:57:4f:d7:a1:50:82:82:c5:e9:ae:
38:00:29:cf:66:be:d1:de:6d:a5:95:2e:b7:86:dc:
7f:48:b8:7c:35:b4:c4:55:1e:de:ec:56:fd:3f:99:
2c:e3:7d:4a:67:83:76:d4:0c:58:aa:eb:ed:c4:df:
27:94:a2:6c:15:d3:43:ff:89:77:a2:7e:aa:ae:2c:
b8:fa:3c:d2:84:b7:51:f9:d1:9a:5c:b8:7d:9f:ee:
d2:8c:7e:f5:9e:06:77:95:05:93:ec:20:cd:d2:7d:
07:30:40:38:4c:60:7d:24:59:cb:ab:7f:57:8c:ef:
09:cc:63:36:5f:2e:f8:1c:fc:c3:88:ee:64:08:cd:
80:2f:de:c2:ff:b6:cf:55:1d:21:03:7e:93:b2:6d:
08:8f:3e:83:ab:b0:2b:1a:91:e5:48:f7:d7:ea:79:
5a:b6:68:43:9a:e4:0c:f9:5e:f8:9f:df:38:42:51:
f7:f9:03:11:ae:14:80:8d:0c:7d:f7:e9:1a:e5:da:
9a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E2:5D:E0:5F:FA:7C:E5:EE:1F:E9:03:D8:50:28:C7:51:04:FC:93
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.24.183.0/24
IPv6:
2a13:9500:c4::/48
Signature Algorithm: sha256WithRSAEncryption
0c:b1:d0:e1:f9:09:12:18:07:f4:8f:c9:a0:a8:d6:cf:db:d8:
ea:7f:4b:7e:59:a9:f7:35:e9:81:2a:53:f9:29:eb:a6:52:3a:
64:ce:a1:cd:c4:c8:14:b3:78:15:f8:c1:53:d1:cb:b8:49:67:
49:20:22:cd:93:e9:df:d0:42:a6:ee:94:18:2f:c2:30:8e:b0:
28:cf:fb:61:1b:db:b0:2d:0c:21:d8:73:94:7d:89:5b:78:01:
69:f0:f8:05:ae:2a:f3:0f:6a:ca:3e:39:69:d6:5c:d5:0a:17:
75:42:d9:41:ab:06:f6:7c:b1:cd:c6:de:94:a4:10:13:1b:19:
0d:ba:99:52:55:66:c7:85:c6:f4:73:42:62:24:62:c5:99:d6:
37:46:fa:fd:5d:f8:40:05:12:b0:2f:6f:87:a2:ad:24:95:ae:
f4:02:7c:44:a9:6e:a1:eb:b9:e2:f4:b8:8b:76:ca:aa:ca:ab:
5e:fa:a6:a9:13:33:a5:13:d8:2d:b5:c5:b3:db:1e:66:4a:80:
77:05:ee:2e:64:4a:a4:f2:cb:d4:59:02:42:81:de:f0:ce:2d:
7e:47:84:4f:e0:1c:76:c8:77:04:d2:9f:95:bc:b4:08:bb:af:
c5:b9:b2:b5:0b:76:a7:2e:26:d0:fa:49:b7:82:21:8c:ea:e8:
3d:d8:db:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:45:27 2025 by rpki-client