Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
File: AS36530.roa (raw, json)
Hash identifier: Er4L19ILAeSJ53aR3cZ7Q5azbtlgiZwtMlU5uE8c+ZA=
Subject key identifier: 29:08:6B:61:7C:08:EB:32:1D:55:2A:3D:BE:03:75:9A:8C:4B:B1:B0
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 0C9F6C6D6D63C3E52D69E8F4FE13082F0502EBC4
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
Signing time: Thu 07 Aug 2025 14:43:40 +0000
ROA not before: Thu 07 Aug 2025 14:38:40 +0000
ROA not after: Thu 06 Aug 2026 14:43:40 +0000
asID: 36530
IP address blocks: 82.21.200.0/23 maxlen: 24
82.24.127.0/24 maxlen: 24
82.24.189.0/24 maxlen: 24
82.25.46.0/23 maxlen: 24
82.26.72.0/23 maxlen: 24
82.26.78.0/23 maxlen: 24
82.26.91.0/24 maxlen: 24
82.26.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:9f:6c:6d:6d:63:c3:e5:2d:69:e8:f4:fe:13:08:2f:05:02:eb:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Aug 7 14:38:40 2025 GMT
Not After : Aug 6 14:43:40 2026 GMT
Subject: CN=29086B617C08EB321D552A3DBE03759A8C4BB1B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:58:55:18:2f:81:47:2f:bc:31:96:46:2b:84:
4b:2b:35:e2:47:58:ca:98:ac:5d:3f:57:90:10:e9:
fe:80:f8:e4:44:ac:8a:4b:c5:44:c5:b2:cd:b7:88:
58:2b:ae:a2:54:7a:4f:85:8e:d6:02:cf:14:c0:af:
70:72:68:c7:93:ed:09:50:78:75:d6:14:01:b1:f2:
47:ea:fe:be:54:32:87:63:7e:8c:5c:fd:d2:89:66:
ff:ff:9c:2f:90:10:c6:eb:7f:65:09:57:44:0e:3e:
ff:07:50:c6:64:19:62:37:ec:a6:f2:62:3f:1b:d1:
d3:89:21:6e:8d:fb:3e:f5:d8:f5:7a:c8:a3:bb:b2:
57:88:a4:a9:7f:f5:76:7a:7f:13:19:fc:31:d9:62:
19:19:fd:9f:cc:82:2a:ba:c3:d9:26:0b:90:50:e1:
6e:ff:a6:44:52:b3:4a:97:c5:b6:16:e2:83:18:77:
87:46:d6:3c:71:99:67:fa:de:ab:b3:39:bf:cf:fc:
30:9c:fb:6f:c1:76:76:ae:7a:8f:6b:0b:7d:0e:df:
4a:7b:b9:68:a2:16:35:0a:ac:99:b6:20:5a:d6:01:
c2:1e:7e:4e:c0:9e:fe:c8:55:6a:58:67:4e:03:91:
62:52:4b:35:b3:ff:dc:89:a1:30:f0:96:07:03:ef:
e7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:08:6B:61:7C:08:EB:32:1D:55:2A:3D:BE:03:75:9A:8C:4B:B1:B0
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.200.0/23
82.24.127.0/24
82.24.189.0/24
82.25.46.0/23
82.26.72.0/23
82.26.78.0/23
82.26.91.0/24
82.26.93.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:f3:57:4a:3a:9d:c5:95:d9:61:08:9e:fb:85:24:14:9d:e6:
61:50:98:8a:fd:5d:2b:6c:66:26:ff:d7:2b:13:80:90:87:99:
cb:6c:de:7e:9c:f2:c3:ce:62:21:c2:ab:d1:b9:b9:ca:02:44:
84:50:c9:38:46:29:bb:18:17:4b:65:2a:c3:47:d2:e8:22:7f:
a8:dd:f7:a1:14:e9:21:fb:b3:4c:e0:d3:4a:ad:7f:64:b0:00:
22:d3:12:0e:c9:59:20:b1:be:26:f7:27:5d:8f:b5:7b:b7:fa:
28:ed:d4:8a:b4:d2:e3:54:50:8d:6f:29:7b:db:35:7d:fd:b3:
bf:9d:a1:b0:0c:32:6f:23:6b:2c:2b:03:ce:64:9f:c1:4c:56:
86:08:80:74:37:05:d1:f2:17:e9:b1:e0:f0:1a:1a:ec:e0:e8:
b7:04:dd:9b:3d:82:6a:d4:38:6a:02:85:86:db:0b:74:d0:4b:
d4:e9:3e:36:9e:ce:94:d3:9f:7c:48:cd:f4:0a:a7:32:88:75:
89:09:cf:22:8a:8d:19:35:0b:10:d3:f8:da:05:ac:ac:10:b2:
16:01:2a:83:c1:76:49:03:3f:49:7a:62:6f:16:f5:72:a6:95:
d8:ae:47:ce:c2:8f:24:b0:58:6a:52:30:a0:c8:d6:5d:fd:d7:
98:0b:9c:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:07:50 2025 by rpki-client