Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS48266.roa
File: AS48266.roa (raw, json)
Hash identifier: RwWqUvwVdB9xIpj/D14aHLOOBPuyK3sY4Ve1Mx+9TwE=
Subject key identifier: 2D:A3:F8:50:59:93:36:6B:0C:94:2C:EF:67:B9:5A:DB:4B:77:45:F9
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 70D9CCB354BCDAC660753684F7B08EC9CEBA1385
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS48266.roa
Signing time: Tue 17 Jun 2025 07:04:11 +0000
ROA not before: Tue 17 Jun 2025 06:59:11 +0000
ROA not after: Tue 16 Jun 2026 07:04:11 +0000
asID: 48266
IP address blocks: 82.25.33.0/24 maxlen: 24
82.25.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:d9:cc:b3:54:bc:da:c6:60:75:36:84:f7:b0:8e:c9:ce:ba:13:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 17 06:59:11 2025 GMT
Not After : Jun 16 07:04:11 2026 GMT
Subject: CN=2DA3F8505993366B0C942CEF67B95ADB4B7745F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:26:88:0b:47:7f:bb:ff:89:bb:59:7a:56:8b:
4e:7b:0f:8a:de:ac:67:d5:6c:cd:1e:4f:eb:c5:e7:
6b:17:5a:f5:84:2f:30:9e:a9:76:78:7d:68:b3:c9:
19:78:99:a6:f2:07:26:6d:0e:b1:b8:02:b0:ff:95:
78:6e:16:4b:fb:e3:39:d7:15:cb:aa:2d:ea:91:59:
62:83:1a:92:a0:3e:26:60:38:c4:f6:38:e9:aa:e9:
22:b5:f1:61:91:92:23:9c:24:0e:50:e5:8b:92:c4:
a0:79:0e:66:98:40:17:cf:81:00:21:3e:f6:8d:42:
45:84:27:06:1d:e7:4f:85:82:91:39:f3:06:17:fe:
83:ff:e4:5d:c4:fc:3d:97:27:13:84:e4:f1:d4:dd:
3e:39:aa:0f:08:50:8e:63:d6:f4:0d:9c:6d:14:ee:
87:ef:ee:00:08:8f:57:09:bf:c9:f6:91:05:42:4a:
fb:d5:db:f7:90:36:96:98:73:5c:3d:c7:ed:a1:83:
4f:9b:6a:7f:e5:5f:f6:79:e1:6e:0f:4d:fb:53:95:
60:f0:0a:dc:7a:92:92:6b:80:4d:99:d5:a1:0e:cb:
75:8a:eb:27:cc:6c:26:21:05:28:d5:65:31:09:9a:
b6:88:2e:78:e0:f6:b6:4d:be:fb:a9:f5:cf:70:c9:
11:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A3:F8:50:59:93:36:6B:0C:94:2C:EF:67:B9:5A:DB:4B:77:45:F9
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS48266.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.25.33.0/24
82.25.40.0/24
Signature Algorithm: sha256WithRSAEncryption
56:5e:35:12:ff:b7:16:99:d0:fe:3b:fe:2a:ef:f6:39:83:a4:
06:c6:e7:51:0c:94:69:33:34:89:92:8a:7a:fc:8d:4d:b3:c7:
44:1c:34:bf:b9:3c:f1:c1:15:7c:b1:ae:00:62:49:96:d4:60:
19:27:cd:6f:a0:2e:5f:5b:2f:d7:f9:bc:40:03:2a:c8:8e:d6:
f4:98:11:c3:35:d6:05:39:c6:3d:62:db:09:bd:d1:96:87:4f:
56:dc:57:6d:aa:2c:b3:2b:10:e6:30:3b:2b:7e:41:1c:3b:6b:
ab:fd:f9:67:eb:ab:83:14:d3:dd:42:85:70:16:1d:6d:87:ab:
0d:42:04:9e:74:df:80:63:0f:5d:e0:81:62:95:5e:68:5e:be:
d4:9b:34:33:9f:70:b1:c0:83:3d:7b:ca:bc:3b:08:4b:76:07:
16:a8:ff:34:01:14:70:72:90:74:e0:b7:d9:07:57:29:0f:b2:
42:1c:5b:e0:a2:de:f8:de:bb:c6:5f:a3:75:e1:55:87:28:bd:
80:df:a0:96:be:e8:09:5e:e6:66:fe:02:55:ba:de:e0:d9:94:
ae:a0:d4:fd:9f:fb:1a:68:b6:61:34:2c:cc:10:76:ea:f3:a3:
00:1c:99:d4:77:e8:43:8a:f3:2b:00:14:4d:6b:6c:29:e6:a7:
00:7e:24:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:49:00 2025 by rpki-client