Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS216383.roa
File: AS216383.roa (raw, json)
Hash identifier: H2C3pnFew5k9S+XpKI2qyGdYL7vMDfe1IbV2ouunRB4=
Subject key identifier: A0:BC:FD:DC:A4:2E:25:41:43:70:25:E2:44:B8:C5:F6:36:08:CA:D9
Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Certificate serial: 0AE869271C7043E5648DE7D13022C549CDCF3980
Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS216383.roa
Signing time: Wed 07 May 2025 09:45:15 +0000
ROA not before: Wed 07 May 2025 09:40:15 +0000
ROA not after: Wed 06 May 2026 09:45:15 +0000
asID: 216383
IP address blocks: 193.111.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft
rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 16:32:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:e8:69:27:1c:70:43:e5:64:8d:e7:d1:30:22:c5:49:cd:cf:39:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Validity
Not Before: May 7 09:40:15 2025 GMT
Not After : May 6 09:45:15 2026 GMT
Subject: CN=A0BCFDDCA42E2541437025E244B8C5F63608CAD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0a:26:67:50:8b:c8:e1:ed:17:22:bb:6e:a4:
31:b7:86:15:8e:ec:1c:e9:dd:58:a1:73:80:a6:1c:
69:29:6b:c9:43:64:7e:91:6d:57:22:88:87:93:d8:
6a:a9:3e:84:c0:98:e0:35:17:a7:fb:64:2c:2e:9b:
69:05:94:4b:d4:5d:ca:d3:b2:45:e0:31:7d:6d:44:
57:1c:e9:83:8a:31:9d:16:c6:86:92:dd:8e:0d:ce:
50:06:66:5c:8c:97:20:8d:c9:b6:c8:33:74:a6:58:
76:7d:d4:57:53:77:19:29:fd:05:38:a5:ee:8a:60:
86:32:7b:56:f4:c8:ec:5b:09:09:0d:1f:8e:06:6e:
1b:8f:ea:9d:de:4d:1f:a4:9b:20:e5:43:02:c3:fc:
de:d5:87:b6:27:04:41:ad:30:bc:a2:7f:c7:76:c0:
61:ea:ed:e1:06:c6:d7:c2:44:1d:98:fa:79:fa:20:
17:14:aa:73:a9:90:6e:42:bd:f3:b6:c4:ea:9c:55:
ef:ca:8e:7e:5b:cb:30:fe:4b:e3:da:8a:cc:d2:38:
02:cc:28:b3:e6:93:54:9c:c7:7b:40:b7:b6:32:7b:
4c:71:ab:73:7c:40:b6:51:02:6b:c7:54:55:0b:97:
5c:09:86:e5:81:cf:1d:b0:08:37:40:99:fa:2c:c5:
ae:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:BC:FD:DC:A4:2E:25:41:43:70:25:E2:44:B8:C5:F6:36:08:CA:D9
X509v3 Authority Key Identifier:
keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS216383.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.76.0/24
Signature Algorithm: sha256WithRSAEncryption
77:60:5e:30:14:02:a1:80:86:55:28:4d:5c:7c:54:1a:b0:83:
2a:7f:fb:8d:45:10:58:76:39:ae:51:07:b8:88:82:dc:12:ec:
23:23:8f:0f:9e:e0:f8:e3:98:dc:86:4a:ea:72:9b:a6:73:13:
8c:9d:34:bb:80:98:85:1a:82:b5:c8:29:79:f6:ae:79:67:b7:
45:21:88:06:f1:1c:43:dc:a9:f0:2a:86:03:de:f8:94:50:ee:
14:f7:d9:1c:66:28:d9:96:41:5d:09:e3:6a:4b:74:25:d8:c7:
87:c0:04:94:2c:75:c4:20:2b:53:cd:d6:dc:80:f1:87:b8:7f:
a7:4e:06:69:75:69:65:aa:34:8f:85:d8:6d:63:84:bb:5f:e1:
f1:79:67:70:81:c8:ab:3e:a6:98:23:e8:f7:fa:0e:e0:aa:8b:
ca:0a:5a:1d:63:73:f6:f6:31:27:ea:f8:58:b1:5a:3d:63:f7:
29:f4:36:89:b9:c7:b0:09:ec:f0:f1:47:82:7a:68:c9:b4:cf:
73:f9:9f:f2:8c:c3:6c:a9:37:3e:cb:f7:a8:c7:22:08:85:2f:
84:c5:8e:fd:0e:40:02:bd:16:ef:3e:a9:cb:92:06:75:00:6b:
cf:6e:e4:7b:3c:d4:72:e4:3a:f8:e1:56:85:06:64:13:94:8f:
6d:12:19:33
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUCuhpJxxwQ+VkjefRMCLFSc3POYAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy
ZjJmNDE1YjAeFw0yNTA1MDcwOTQwMTVaFw0yNjA1MDYwOTQ1MTVaMDMxMTAvBgNV
BAMTKEEwQkNGRERDQTQyRTI1NDE0MzcwMjVFMjQ0QjhDNUY2MzYwOENBRDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6CiZnUIvI4e0XIrtupDG3hhWO
7Bzp3Vihc4CmHGkpa8lDZH6RbVciiIeT2GqpPoTAmOA1F6f7ZCwum2kFlEvUXcrT
skXgMX1tRFcc6YOKMZ0WxoaS3Y4NzlAGZlyMlyCNybbIM3SmWHZ91FdTdxkp/QU4
pe6KYIYye1b0yOxbCQkNH44GbhuP6p3eTR+kmyDlQwLD/N7Vh7YnBEGtMLyif8d2
wGHq7eEGxtfCRB2Y+nn6IBcUqnOpkG5CvfO2xOqcVe/Kjn5byzD+S+PaiszSOALM
KLPmk1Scx3tAt7Yye0xxq3N8QLZRAmvHVFULl1wJhuWBzx2wCDdAmfosxa6rAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUoLz93KQuJUFDcCXiRLjF9jYIytkwHwYDVR0j
BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0
ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4
dlFWcy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt
NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTMjE2MzgzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwW9M
MA0GCSqGSIb3DQEBCwUAA4IBAQB3YF4wFAKhgIZVKE1cfFQasIMqf/uNRRBYdjmu
UQe4iILcEuwjI48PnuD445jchkrqcpumcxOMnTS7gJiFGoK1yCl59q55Z7dFIYgG
8RxD3KnwKoYD3viUUO4U99kcZijZlkFdCeNqS3Ql2MeHwASULHXEICtTzdbcgPGH
uH+nTgZpdWllqjSPhdhtY4S7X+HxeWdwgcirPqaYI+j3+g7gqovKClodY3P29jEn
6vhYsVo9Y/cp9DaJucewCezw8UeCemjJtM9z+Z/yjMNsqTc+y/eoxyIIhS+ExY79
DkACvRbvPqnLkgZ1AGvPbuR7PNRy5Dr44VaFBmQTlI9tEhkz
-----END CERTIFICATE-----
Generated at Sat May 10 05:29:52 2025 by rpki-client