Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS812.roa
File: AS812.roa (raw, json)
Hash identifier: EbmRSu5NI4Ro11TqD77Tym1g5a470/HlCwBWbFfEEB8=
Subject key identifier: E7:7C:34:F8:72:C5:10:25:7F:73:7F:06:CC:6F:01:8B:17:2F:DA:CA
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 729FFC6D8F4F83C7228200D5EF099D8FCA1508C1
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS812.roa
Signing time: Mon 16 Jun 2025 07:12:11 +0000
ROA not before: Mon 16 Jun 2025 07:07:11 +0000
ROA not after: Mon 15 Jun 2026 07:12:11 +0000
asID: 812
IP address blocks: 178.94.167.0/24 maxlen: 24
178.94.191.0/24 maxlen: 24
178.95.77.0/24 maxlen: 24
178.95.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:9f:fc:6d:8f:4f:83:c7:22:82:00:d5:ef:09:9d:8f:ca:15:08:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 16 07:07:11 2025 GMT
Not After : Jun 15 07:12:11 2026 GMT
Subject: CN=E77C34F872C510257F737F06CC6F018B172FDACA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:74:03:6e:17:80:1f:79:fb:de:0a:57:03:c6:
cb:74:95:0b:78:ac:3e:db:5a:6e:45:91:95:0b:a5:
f2:42:32:8b:d1:13:a6:da:b5:13:22:b2:57:65:3b:
71:52:4d:c0:28:32:b8:5a:59:f3:7b:63:17:60:4c:
14:25:eb:bf:c3:88:51:ce:6f:77:3f:0b:13:ea:40:
28:55:a2:55:6f:a4:3f:cd:5a:6d:f1:e0:7c:fd:a9:
15:13:00:9b:01:2f:fb:11:0a:bf:19:ea:df:35:02:
38:fe:f3:2a:ba:a9:61:02:f2:f9:86:14:50:7b:ba:
87:30:3e:8d:36:97:83:e6:78:b7:f3:9b:61:31:5e:
ab:32:6d:22:e3:27:00:62:00:94:b4:72:9e:07:8c:
e1:11:c2:54:66:a1:99:8d:e6:f4:f9:22:5c:d0:b3:
7e:ae:e0:dc:b2:93:45:e1:2d:9e:8e:d2:ee:5b:a5:
a8:de:fb:8b:38:45:8e:7f:03:78:d9:bb:6d:1a:4f:
be:e2:c3:85:83:94:f8:ba:8b:3a:a1:cd:f3:c3:25:
2a:37:a6:b7:9c:a3:15:2c:e1:e4:84:2a:42:4d:d3:
4a:11:db:a3:6a:38:c8:6a:e2:6f:99:16:d1:62:f9:
71:c3:8e:b4:59:47:62:87:c3:42:30:00:2d:17:db:
98:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:7C:34:F8:72:C5:10:25:7F:73:7F:06:CC:6F:01:8B:17:2F:DA:CA
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS812.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.94.167.0/24
178.94.191.0/24
178.95.77.0/24
178.95.82.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:41:fe:d4:02:19:56:6d:f7:0d:88:8e:d0:a8:09:1e:36:cc:
48:01:ca:59:57:f4:e8:97:f3:a9:da:19:c5:ad:a6:9f:6f:28:
da:52:6a:77:d7:f6:37:ac:e5:dc:d9:34:ba:97:3a:c6:9b:c7:
40:2a:e4:41:45:52:83:9c:92:e0:a3:a6:5a:ff:4a:49:70:d1:
20:89:c3:4b:f9:61:a5:2b:90:bb:c1:e9:d1:5f:4f:d2:36:fe:
2e:85:ec:7a:79:82:a2:37:ef:85:7a:06:8a:0f:23:73:e5:4b:
58:e9:fe:de:1b:37:8e:7b:c4:ee:0d:7b:d5:6d:a8:f0:f8:0d:
a2:d7:4b:af:cb:7f:1a:53:59:13:f8:58:0b:50:b8:e7:00:dd:
14:50:f2:36:9c:aa:70:4b:ca:8d:a8:f0:c4:af:94:2a:2a:a5:
cf:ae:7d:60:0f:a5:22:e7:e8:9b:58:e5:ff:9b:fb:dd:25:c1:
4b:e3:5f:12:3e:97:64:86:f1:1b:22:e2:26:ed:65:1a:74:1b:
67:84:97:d7:93:98:ca:23:2e:c7:70:c2:d7:e8:71:16:d7:f4:
5c:94:af:10:0e:7d:05:3d:c1:11:a5:31:39:4f:07:1b:a8:cd:
04:32:76:a9:f5:b9:d9:82:ba:49:0c:81:79:fc:1e:55:d1:02:
94:d1:e0:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:51:58 2025 by rpki-client