Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
File: AS29262.roa (raw, json)
Hash identifier: 2PJW6Ry4mEFvl8tdEcj+cV1xkvyo3tEAwP+6YKMg55o=
Subject key identifier: AF:53:E3:0C:DA:03:FA:B6:AE:1B:FC:FA:DB:3D:31:5B:F7:C8:5F:D8
Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Certificate serial: 731130F8BB7F01D9E70F4FD1FCF58078FCA1D856
Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
Signing time: Sun 12 Oct 2025 14:27:49 +0000
ROA not before: Sun 12 Oct 2025 14:22:49 +0000
ROA not after: Sun 11 Oct 2026 14:27:49 +0000
asID: 29262
IP address blocks: 77.241.72.0/24 maxlen: 24
77.241.73.0/24 maxlen: 24
77.241.74.0/24 maxlen: 24
77.241.75.0/24 maxlen: 24
139.28.240.0/24 maxlen: 24
139.28.241.0/24 maxlen: 24
193.187.134.0/24 maxlen: 24
193.187.135.0/24 maxlen: 24
194.169.92.0/24 maxlen: 24
194.169.93.0/24 maxlen: 24
194.169.94.0/24 maxlen: 24
194.169.95.0/24 maxlen: 24
2a02:f240::/29 maxlen: 29
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft
rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:11:30:f8:bb:7f:01:d9:e7:0f:4f:d1:fc:f5:80:78:fc:a1:d8:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Validity
Not Before: Oct 12 14:22:49 2025 GMT
Not After : Oct 11 14:27:49 2026 GMT
Subject: CN=AF53E30CDA03FAB6AE1BFCFADB3D315BF7C85FD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f1:88:5a:a7:1b:af:5f:51:5c:ea:82:05:8d:
08:78:63:6e:86:0a:20:1c:10:6b:77:35:f1:eb:41:
58:95:74:bb:83:e3:43:d2:26:f8:3c:ef:e0:77:5a:
0c:44:a1:14:59:5d:29:72:df:c9:8c:1c:d0:9a:8a:
66:3c:77:f9:e4:c4:c3:c5:8e:67:cf:08:c4:a1:a2:
01:be:ab:e5:7b:48:ff:5c:f3:3b:94:90:a4:3b:0a:
f5:4a:33:10:f7:be:c8:5f:dc:56:c7:ec:f6:b8:2f:
1b:b5:7c:d1:a1:5f:3d:59:ca:9d:c6:d6:0b:28:f0:
ba:e0:65:48:d3:1d:fb:32:4f:8b:b5:9a:48:8f:37:
87:04:d2:b8:f5:34:2e:54:54:e6:7d:d0:24:57:62:
50:da:33:e0:ac:4e:d6:92:d8:8b:d5:a1:d6:84:5e:
be:0d:83:59:72:4d:fb:ac:5b:fa:a6:8e:2d:04:8f:
0d:df:b1:48:fb:9b:e7:9b:9c:01:96:c1:a1:23:7d:
eb:13:50:cc:fb:67:7b:e4:c7:74:22:a8:d8:4c:cc:
f9:b1:22:8e:cd:ec:1b:39:00:27:c1:7a:9b:8e:e1:
b5:2d:11:ae:ba:b6:7a:f4:de:24:60:55:db:59:51:
d3:43:74:e2:9b:fc:a8:8c:a2:fe:8b:4c:40:94:29:
f5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:53:E3:0C:DA:03:FA:B6:AE:1B:FC:FA:DB:3D:31:5B:F7:C8:5F:D8
X509v3 Authority Key Identifier:
keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.72.0/22
139.28.240.0/23
193.187.134.0/23
194.169.92.0/22
IPv6:
2a02:f240::/29
Signature Algorithm: sha256WithRSAEncryption
9e:62:64:ab:05:fc:6b:9f:04:48:91:0c:54:a5:72:dc:e9:2c:
46:b7:86:3e:5b:52:c0:c2:5e:29:66:13:62:57:a2:fe:b6:47:
fb:10:ad:26:88:31:fd:3c:60:80:50:5f:5d:e5:ae:b7:df:49:
ef:84:8e:55:01:70:da:14:4c:11:b4:50:06:5e:72:6c:e8:4c:
4a:a3:4f:c2:38:57:a4:84:0f:0f:26:64:e9:0a:1d:f6:09:89:
0c:4d:d5:85:c6:18:5a:1e:17:83:ea:1b:04:b4:62:20:f0:14:
70:aa:81:12:44:fc:aa:ac:a7:5b:91:ac:7c:86:93:29:aa:37:
89:12:b9:00:b8:2d:48:63:23:61:9e:2e:08:61:90:f1:22:7a:
4d:d6:92:66:7c:1e:68:5f:ea:83:89:27:1a:e2:1a:b5:1b:19:
76:42:76:c2:36:2b:67:42:d9:9c:99:2c:51:bb:6d:c8:29:72:
f0:f1:29:3b:18:2f:a6:98:b8:4a:b1:67:c0:05:de:e8:99:bd:
32:47:c0:62:a9:5a:23:ef:6e:b2:ba:ec:51:ef:8e:9b:64:8c:
ae:ca:07:f9:79:df:ac:a6:9d:0a:cc:a4:4b:88:a2:c5:58:1f:
37:27:28:79:5d:d8:aa:d3:29:ab:13:8d:5a:e6:1c:cb:c5:b6:
94:21:e3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 14:34:46 2025 by rpki-client