Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS206033.roa
File: AS206033.roa (raw, json)
Hash identifier: V3UA5tuk1TXo6DIQRxASqfNGsLafQPOb7sIOLyLdpFA=
Subject key identifier: AC:EC:0A:83:4F:1D:68:7B:11:27:CA:50:30:1D:4F:BB:4A:ED:4F:C2
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 216C3BD93E86772C62CAEF04284886C3EB8828B1
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS206033.roa
Signing time: Thu 31 Jul 2025 12:06:35 +0000
ROA not before: Thu 31 Jul 2025 12:01:35 +0000
ROA not after: Thu 30 Jul 2026 12:06:35 +0000
asID: 206033
IP address blocks: 2a13:9500:6b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:6c:3b:d9:3e:86:77:2c:62:ca:ef:04:28:48:86:c3:eb:88:28:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jul 31 12:01:35 2025 GMT
Not After : Jul 30 12:06:35 2026 GMT
Subject: CN=ACEC0A834F1D687B1127CA50301D4FBB4AED4FC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e4:51:48:4d:76:2a:2f:84:3d:17:bb:66:d0:
f4:af:c9:ad:38:b7:59:a6:ab:38:46:a4:d6:1b:cc:
0a:ed:a8:c4:9a:3c:c0:d1:15:cd:9d:e1:9f:74:79:
30:33:2c:4d:2e:bd:72:25:ef:86:e9:16:69:26:e6:
b4:5d:29:e6:74:07:8f:cf:fa:40:1e:a3:b9:7c:b9:
cf:e8:30:af:f1:c2:a6:53:62:4d:a2:9e:ff:1f:66:
07:bf:8d:f7:0b:a9:fe:55:d5:b8:32:8e:1d:e1:d2:
bd:d3:20:19:d7:f1:6b:05:b8:c2:6b:44:9e:cc:a0:
98:be:31:8d:7a:4b:e8:4d:27:67:23:8c:21:77:e5:
e8:59:d3:65:a2:f3:ff:be:76:7f:78:e8:4f:68:b1:
9a:eb:d7:8f:11:53:0e:87:22:b4:3e:9d:54:41:a6:
da:53:9f:6f:01:36:f2:0b:05:67:ad:cf:47:98:72:
2f:13:2a:cc:a8:65:44:58:13:c4:1e:b3:cb:91:d0:
c7:33:47:97:33:e7:d0:9e:4d:3f:a8:fc:fd:20:59:
2c:6d:35:9d:33:f7:70:ee:7d:1e:2a:10:0d:c4:2d:
0a:6c:2d:c1:1e:4f:56:22:26:56:ed:55:5e:46:cc:
14:a7:ec:5d:87:ec:0c:44:7e:48:bc:a1:d3:26:c7:
32:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:EC:0A:83:4F:1D:68:7B:11:27:CA:50:30:1D:4F:BB:4A:ED:4F:C2
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS206033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:6b::/48
Signature Algorithm: sha256WithRSAEncryption
08:e5:95:0d:24:22:5c:1a:c3:aa:6d:ea:30:4d:50:1d:6d:b8:
be:a8:50:8b:e6:e5:b7:99:02:15:d0:49:d3:c7:b7:0f:8f:25:
c9:1f:ec:41:c3:12:3d:23:97:5e:68:1c:20:51:c6:cf:1b:92:
98:55:0b:ec:76:05:b6:aa:11:dc:05:22:10:d3:74:c5:4e:6f:
2c:eb:ee:27:76:cb:99:ae:51:04:8c:67:02:eb:1f:7a:23:80:
b2:02:f6:62:28:cd:e8:e2:8e:34:8d:41:97:f1:b6:d8:b2:2b:
eb:ff:ae:2a:01:dd:62:a7:b3:ad:7f:92:0c:9f:a0:42:6d:ab:
70:14:ff:df:60:44:21:ea:5e:cb:ff:1b:1e:35:cc:03:ee:09:
16:34:02:32:21:6d:93:96:60:c0:e1:d1:06:ac:79:a0:01:7b:
2e:00:62:80:8e:52:d4:d1:ea:ca:13:ea:58:12:cf:2f:85:70:
41:09:91:70:61:92:00:eb:2d:f3:d5:1e:a0:13:a0:da:51:c8:
1b:93:da:e3:8b:27:51:f7:e9:40:9f:13:30:f6:15:64:38:42:
0f:38:e0:27:f7:94:1c:fa:f2:ca:f3:df:b0:3c:9c:35:56:0e:
20:90:fe:92:0b:65:31:e6:71:a3:e3:a1:ec:a5:37:ef:7f:08:
24:57:26:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 07:39:02 2025 by rpki-client