Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS64267.roa
File: AS64267.roa (raw, json)
Hash identifier: i+kx2MUBiukeKUM/QqgFg3HJby/AzwTavDqr8dNPvdc=
Subject key identifier: 6F:BD:46:FD:B7:D2:51:4D:36:FE:34:28:90:FB:AB:87:A6:B3:D2:02
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4F556533C3593D3A98B50472C38A05E1E743E77E
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS64267.roa
Signing time: Thu 31 Jul 2025 00:02:01 +0000
ROA not before: Wed 30 Jul 2025 23:57:01 +0000
ROA not after: Thu 30 Jul 2026 00:02:01 +0000
asID: 64267
IP address blocks: 82.23.160.0/24 maxlen: 24
82.23.161.0/24 maxlen: 24
82.24.58.0/24 maxlen: 24
82.24.59.0/24 maxlen: 24
82.29.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:55:65:33:c3:59:3d:3a:98:b5:04:72:c3:8a:05:e1:e7:43:e7:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jul 30 23:57:01 2025 GMT
Not After : Jul 30 00:02:01 2026 GMT
Subject: CN=6FBD46FDB7D2514D36FE342890FBAB87A6B3D202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b2:ce:2c:25:8a:8d:6e:c5:74:ee:03:ce:c0:
39:82:05:f2:de:b1:21:6c:09:98:ec:4a:32:ac:de:
c0:35:c8:41:73:56:f0:1a:99:00:cf:9b:90:db:fe:
32:24:ad:95:8d:3d:d5:cb:05:3d:c3:6b:7e:5e:78:
d9:01:82:4d:4e:60:94:7e:78:80:ed:a7:2e:e5:e9:
d0:6f:1e:a3:25:1d:80:fa:29:fb:74:0c:76:3d:26:
50:6d:30:54:0b:5c:ed:8f:5f:03:cb:07:74:67:61:
ea:ed:56:32:c2:88:30:ad:e0:24:a2:ee:c8:3f:c9:
0d:5f:82:c6:ea:f6:e9:66:93:af:44:6c:19:d6:6a:
a5:f8:92:94:3e:0f:dd:ce:1c:db:e3:e2:51:c4:d4:
be:23:ab:51:5a:eb:90:6f:0d:88:09:70:3a:63:93:
4a:ed:85:c0:d7:46:b5:f7:9a:20:4d:0a:28:28:5b:
34:08:c8:b5:b8:fe:4f:fb:7b:1c:ac:16:48:fb:3c:
3b:9c:21:ee:fa:29:ec:aa:cd:d6:68:06:95:47:53:
ac:23:f6:e4:35:ad:d6:8f:ef:2f:e8:bd:de:53:8d:
df:5e:6c:15:a1:6c:85:ea:33:19:d0:2b:32:d2:af:
b4:96:19:ac:33:c1:bf:e1:4b:51:92:cd:ed:fa:dd:
a5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BD:46:FD:B7:D2:51:4D:36:FE:34:28:90:FB:AB:87:A6:B3:D2:02
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS64267.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.23.160.0/23
82.24.58.0/23
82.29.98.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:ee:35:32:6e:54:d2:37:a9:58:c6:a0:d8:ca:27:3a:1e:78:
de:27:38:7d:37:4b:64:57:c4:87:c5:ef:8d:62:1f:ba:e2:fa:
ef:f8:79:fb:09:0f:c2:6f:73:74:78:f2:57:8b:50:3d:28:a3:
f6:19:54:1a:b9:ae:b6:e0:e6:fd:5b:41:1c:5b:00:2c:05:08:
0d:72:1e:0e:bb:a5:74:25:99:0e:37:7f:e6:4e:c1:d3:c1:da:
84:41:89:60:bc:9c:91:37:17:76:39:ad:36:a1:b9:3f:cc:1c:
a2:49:05:bb:fa:c6:3b:d9:6c:2d:a5:77:9f:2f:38:be:e1:bc:
40:c4:e6:05:62:61:09:9b:6b:10:8e:94:a9:c9:e0:a9:c0:99:
e6:39:81:6b:0f:b0:97:76:e0:41:d8:66:53:6e:7e:bd:da:ba:
fc:b8:5d:b8:4a:43:0b:88:13:b5:05:59:05:95:e7:1f:06:b9:
86:e5:70:23:94:da:f1:0e:36:cf:ef:e5:21:2e:64:a0:58:6f:
e2:4a:f5:53:64:86:1e:7e:23:3c:d6:13:5e:dc:9d:cb:16:53:
ff:64:79:9e:2a:11:7e:b8:7d:af:02:60:b8:6e:e6:12:97:53:
96:cd:b8:6f:55:a8:3f:6a:3e:b1:6e:d0:9b:ce:60:5e:bb:e2:
72:7b:02:59
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Aug 4 07:39:17 2025 by rpki-client