Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
File: AS36530.roa (raw, json)
Hash identifier: ecj13Fmqyk2yLqHsjh0ZnAXVzSZoTOQIvM5axCd2rGk=
Subject key identifier: 31:34:51:B9:14:55:60:C5:44:EB:A8:B0:52:5C:DB:DF:DF:CA:18:85
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 17B382D99DCE321A52A9FF6D8D432AE3971FB8AE
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
Signing time: Sat 28 Jun 2025 07:21:20 +0000
ROA not before: Sat 28 Jun 2025 07:16:20 +0000
ROA not after: Sat 27 Jun 2026 07:21:20 +0000
asID: 36530
IP address blocks: 82.21.200.0/23 maxlen: 24
82.26.72.0/23 maxlen: 24
82.26.78.0/23 maxlen: 24
82.26.91.0/24 maxlen: 24
82.26.93.0/24 maxlen: 24
82.26.110.0/24 maxlen: 24
82.27.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:b3:82:d9:9d:ce:32:1a:52:a9:ff:6d:8d:43:2a:e3:97:1f:b8:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 28 07:16:20 2025 GMT
Not After : Jun 27 07:21:20 2026 GMT
Subject: CN=313451B9145560C544EBA8B0525CDBDFDFCA1885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:34:f6:a6:09:2b:53:a0:fa:7f:b4:e0:e5:84:
60:16:01:81:3d:20:0b:a8:d3:aa:a8:27:2f:8e:d8:
98:e6:fb:ec:8a:b6:61:52:a8:78:31:e1:cf:52:a6:
fa:a3:1e:2f:8b:3f:ca:6d:d8:1a:7a:94:0b:6e:fc:
4b:c8:99:d5:a0:17:89:00:d3:cc:16:3c:8b:b1:27:
e0:55:e8:7b:47:f8:b4:bf:0c:6b:2c:98:f5:b0:8c:
33:c7:ca:22:d9:88:39:3d:2c:90:2b:0c:fd:30:3b:
a7:59:e7:9b:ef:be:57:7b:be:a9:8a:c9:83:b9:7d:
79:ef:18:39:43:4d:85:b9:36:ba:3d:80:a3:91:07:
f0:ce:69:db:59:a3:90:d2:35:df:50:58:56:a5:87:
04:2f:6b:89:84:bd:20:fd:9f:37:83:b6:62:89:0f:
d4:85:9d:d9:1f:91:e6:1e:7e:09:a6:78:af:32:36:
37:1c:8c:fb:18:87:64:66:ea:f5:2c:59:cd:d2:c7:
54:c8:ed:21:79:de:1b:2b:bc:ac:1c:95:93:f3:8f:
bb:cb:fb:bc:4d:11:c8:2b:a5:7d:7a:ac:e5:db:3c:
83:df:0a:05:24:63:e9:ee:2a:d0:95:c4:cb:a4:2f:
0a:6b:28:4a:a5:2f:12:1d:c7:74:c4:64:65:a2:75:
df:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:34:51:B9:14:55:60:C5:44:EB:A8:B0:52:5C:DB:DF:DF:CA:18:85
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.200.0/23
82.26.72.0/23
82.26.78.0/23
82.26.91.0/24
82.26.93.0/24
82.26.110.0/24
82.27.123.0/24
Signature Algorithm: sha256WithRSAEncryption
07:a4:73:b5:dc:e1:e7:7e:30:b2:03:26:b9:af:21:3c:b3:66:
b4:71:20:81:b9:09:ce:94:53:0d:c7:1f:3e:c3:d3:af:3a:eb:
c2:7f:39:6e:b8:a7:9a:22:04:5a:2a:a3:0d:16:f7:2e:2e:6c:
98:75:41:99:f3:6e:bb:59:f8:48:4b:49:ea:97:e6:27:10:c3:
63:3b:58:6a:0f:3c:62:5e:08:11:06:f5:a2:41:d5:bd:c7:37:
6d:bd:88:ea:7e:3c:f2:f0:c2:c4:43:94:a5:fc:fa:62:28:57:
49:32:51:06:d0:d8:80:c8:d8:67:0c:04:23:04:32:75:da:b7:
ef:ae:04:f9:a5:6c:f9:cb:07:be:46:1a:2a:94:08:37:23:81:
3c:2c:63:7d:d5:85:9d:c7:2c:34:2d:b1:55:83:86:c5:19:80:
3e:3d:b6:0b:b5:44:27:ca:99:2d:75:ce:e1:d3:a3:90:1e:6c:
2b:9d:d1:c6:b4:21:7d:dd:c7:b9:56:ea:5c:61:5b:cd:b3:11:
30:89:79:e9:39:5f:f4:42:e3:42:66:6b:b4:60:a6:e2:84:03:
ee:2d:64:54:64:25:2b:c3:1d:aa:0a:6a:b9:4d:fe:2e:52:5e:
cb:aa:6e:49:97:e8:68:3a:96:88:4d:27:8d:ea:70:fa:a0:19:
8b:53:94:14
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgIUF7OC2Z3OMhpSqf9tjUMq45cfuK4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNTA2MjgwNzE2MjBaFw0yNjA2MjcwNzIxMjBaMDMxMTAvBgNV
BAMTKDMxMzQ1MUI5MTQ1NTYwQzU0NEVCQThCMDUyNUNEQkRGREZDQTE4ODUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeNPamCStToPp/tODlhGAWAYE9
IAuo06qoJy+O2Jjm++yKtmFSqHgx4c9SpvqjHi+LP8pt2Bp6lAtu/EvImdWgF4kA
08wWPIuxJ+BV6HtH+LS/DGssmPWwjDPHyiLZiDk9LJArDP0wO6dZ55vvvld7vqmK
yYO5fXnvGDlDTYW5Nro9gKORB/DOadtZo5DSNd9QWFalhwQva4mEvSD9nzeDtmKJ
D9SFndkfkeYefgmmeK8yNjccjPsYh2Rm6vUsWc3Sx1TI7SF53hsrvKwclZPzj7vL
+7xNEcgrpX16rOXbPIPfCgUkY+nuKtCVxMukLwprKEqlLxIdx3TEZGWidd8dAgMB
AAGjggItMIICKTAdBgNVHQ4EFgQUMTRRuRRVYMVE66iwUlzb39/KGIUwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMzY1MzAucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwQwYIKwYBBQUHAQcBAf8ENDAyMDAEAgABMCoDBAFSFcgD
BAFSGkgDBAFSGk4DBABSGlsDBABSGl0DBABSGm4DBABSG3swDQYJKoZIhvcNAQEL
BQADggEBAAekc7Xc4ed+MLIDJrmvITyzZrRxIIG5Cc6UUw3HHz7D068668J/OW64
p5oiBFoqow0W9y4ubJh1QZnzbrtZ+EhLSeqX5icQw2M7WGoPPGJeCBEG9aJB1b3H
N229iOp+PPLwwsRDlKX8+mIoV0kyUQbQ2IDI2GcMBCMEMnXat++uBPmlbPnLB75G
GiqUCDcjgTwsY33VhZ3HLDQtsVWDhsUZgD49tgu1RCfKmS11zuHTo5AebCud0ca0
IX3dx7lW6lxhW82zETCJeek5X/RC40Jma7RgpuKEA+4tZFRkJSvDHaoKarlN/i5S
XsuqbkmX6Gg6lohNJ43qcPqgGYtTlBQ=
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:50:02 2025 by rpki-client