Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
File: AS29262.roa (raw, json)
Hash identifier: Q1k1Igu/oehCptH2djcz4RLIosb6wkTJfkJUWSiQztc=
Subject key identifier: 2C:F1:3B:78:AA:5F:F8:85:FC:40:6F:C8:06:88:9C:57:04:8D:E5:8D
Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Certificate serial: 5E8A1779BA8EF66F16FF8DB46BDCA576C1E4AA96
Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
Signing time: Thu 24 Apr 2025 07:02:24 +0000
ROA not before: Thu 24 Apr 2025 06:57:24 +0000
ROA not after: Thu 23 Apr 2026 07:02:24 +0000
asID: 29262
IP address blocks: 77.241.72.0/24 maxlen: 24
77.241.73.0/24 maxlen: 24
77.241.74.0/24 maxlen: 24
77.241.75.0/24 maxlen: 24
139.28.49.0/24 maxlen: 24
139.28.50.0/24 maxlen: 24
139.28.51.0/24 maxlen: 24
139.28.240.0/24 maxlen: 24
139.28.241.0/24 maxlen: 24
185.254.55.0/24 maxlen: 24
193.187.134.0/24 maxlen: 24
193.187.135.0/24 maxlen: 24
194.169.92.0/24 maxlen: 24
194.169.93.0/24 maxlen: 24
194.169.94.0/24 maxlen: 24
194.169.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft
rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 16:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:8a:17:79:ba:8e:f6:6f:16:ff:8d:b4:6b:dc:a5:76:c1:e4:aa:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Validity
Not Before: Apr 24 06:57:24 2025 GMT
Not After : Apr 23 07:02:24 2026 GMT
Subject: CN=2CF13B78AA5FF885FC406FC806889C57048DE58D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ce:5c:ae:78:b8:ef:f4:64:ed:6c:56:d7:90:
2a:71:47:a1:f4:78:ba:21:a6:d6:c1:80:2f:8e:3b:
26:7b:2c:06:e3:3a:da:a2:50:34:29:20:18:8e:ad:
a6:33:7b:61:09:5e:c5:da:42:45:b0:3d:8b:a5:80:
76:17:cc:bf:de:86:69:9a:a2:45:55:ec:ec:a1:63:
f5:6b:ff:24:59:80:4a:f3:58:4e:25:7d:0d:95:0f:
92:20:9e:3c:12:75:35:f5:75:b0:b5:54:61:83:86:
40:7f:6b:1a:c6:22:ee:d8:c4:e7:f2:aa:e1:7f:cc:
d7:93:6d:b0:a8:35:f8:97:d8:2c:10:12:3f:68:5e:
82:07:1f:51:45:dc:e5:23:f3:42:b4:ee:d5:44:b7:
4e:67:4c:1c:1d:96:09:01:7d:c2:b4:b9:46:27:e7:
f4:eb:52:3c:b6:b7:09:b5:bc:f3:92:8c:64:4b:e6:
e8:d6:a9:b8:ae:5e:1f:7e:af:31:81:c8:06:15:55:
3a:03:51:b5:64:59:f2:e7:47:51:93:8d:d9:2f:b2:
d8:06:b2:a4:47:e1:70:57:35:d8:35:17:c1:5b:e9:
55:97:e9:f5:f7:05:b5:a6:43:3b:ad:2c:ad:7e:b6:
67:03:a3:6d:97:9a:60:2c:11:13:2b:46:ee:19:08:
41:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:F1:3B:78:AA:5F:F8:85:FC:40:6F:C8:06:88:9C:57:04:8D:E5:8D
X509v3 Authority Key Identifier:
keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.72.0/22
139.28.49.0-139.28.51.255
139.28.240.0/23
185.254.55.0/24
193.187.134.0/23
194.169.92.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:83:84:68:6d:0c:90:5e:f8:0c:db:d5:8e:12:e5:3c:0c:42:
25:6f:6d:9b:d2:7d:cd:b8:01:b0:8d:4d:e2:8c:d3:8b:33:64:
c0:f4:f7:0e:11:4f:3a:fd:1e:51:ac:49:f4:32:79:44:51:87:
92:f0:ea:6b:1e:95:01:41:5c:bd:58:cd:99:7a:6d:b9:58:03:
85:67:1f:3e:d7:90:67:f1:79:74:47:62:64:69:8d:f1:e2:36:
5c:d5:66:f2:1a:6f:23:d1:c3:20:f8:4d:fc:fc:21:11:0f:12:
cf:33:95:80:60:cb:c4:1f:ae:db:0e:f6:67:80:da:5d:e6:18:
88:97:ee:3d:8e:1e:fe:ec:60:96:1b:4f:d8:ce:51:44:ac:15:
a7:59:e6:c0:2a:11:74:e7:5a:bf:73:03:e8:fe:6c:56:5d:b0:
fd:ab:64:bf:a7:8e:34:69:48:34:a8:1b:18:49:36:7b:e2:a5:
15:5a:cc:4c:b9:63:99:4a:f6:40:47:55:d4:42:04:a5:14:5c:
fa:cc:fd:63:b2:f1:a1:94:e9:ea:85:3e:65:02:5e:40:06:c9:
12:78:c5:11:0b:a1:da:ca:a1:4c:3d:98:a4:35:65:0d:4e:b8:
3c:e7:5c:c5:20:74:f5:cd:e3:39:e3:83:96:28:58:c8:66:46:
e7:48:37:c0
-----BEGIN CERTIFICATE-----
MIIFJTCCBA2gAwIBAgIUXooXebqO9m8W/420a9yldsHkqpYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzA1MWI0YzJmN2FlOWVmODBiNTMwMDBiMzJhYjhmNWQy
ZjJmNDE1YjAeFw0yNTA0MjQwNjU3MjRaFw0yNjA0MjMwNzAyMjRaMDMxMTAvBgNV
BAMTKDJDRjEzQjc4QUE1RkY4ODVGQzQwNkZDODA2ODg5QzU3MDQ4REU1OEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvzlyueLjv9GTtbFbXkCpxR6H0
eLohptbBgC+OOyZ7LAbjOtqiUDQpIBiOraYze2EJXsXaQkWwPYulgHYXzL/ehmma
okVV7OyhY/Vr/yRZgErzWE4lfQ2VD5IgnjwSdTX1dbC1VGGDhkB/axrGIu7YxOfy
quF/zNeTbbCoNfiX2CwQEj9oXoIHH1FF3OUj80K07tVEt05nTBwdlgkBfcK0uUYn
5/TrUjy2twm1vPOSjGRL5ujWqbiuXh9+rzGByAYVVToDUbVkWfLnR1GTjdkvstgG
sqRH4XBXNdg1F8Fb6VWX6fX3BbWmQzutLK1+tmcDo22XmmAsERMrRu4ZCEFrAgMB
AAGjggIvMIICKzAdBgNVHQ4EFgQULPE7eKpf+IX8QG/IBoicVwSN5Y0wHwYDVR0j
BBgwFoAUcFG0wveunvgLUwALMquPXS8vQVswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOWM1Y2U5ZmEtOWE2Zi00ZTBjLTk4MDktN2E0Nzg4NzQ0
ODkzLzAvNzA1MUI0QzJGN0FFOUVGODBCNTMwMDBCMzJBQjhGNUQyRjJGNDE1Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NGRzB3dmV1bnZnTFV3QUxNcXVQWFM4
dlFWcy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzljNWNlOWZhLTlhNmYt
NGUwYy05ODA5LTdhNDc4ODc0NDg5My8wL0FTMjkyNjIucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwRQYIKwYBBQUHAQcBAf8ENjA0MDIEAgABMCwDBAJN8Ugw
DAMEAIscMQMEAoscMAMEAYsc8AMEALn+NwMEAcG7hgMEAsKpXDANBgkqhkiG9w0B
AQsFAAOCAQEAH4OEaG0MkF74DNvVjhLlPAxCJW9tm9J9zbgBsI1N4ozTizNkwPT3
DhFPOv0eUaxJ9DJ5RFGHkvDqax6VAUFcvVjNmXptuVgDhWcfPteQZ/F5dEdiZGmN
8eI2XNVm8hpvI9HDIPhN/PwhEQ8SzzOVgGDLxB+u2w72Z4DaXeYYiJfuPY4e/uxg
lhtP2M5RRKwVp1nmwCoRdOdav3MD6P5sVl2w/atkv6eONGlINKgbGEk2e+KlFVrM
TLljmUr2QEdV1EIEpRRc+sz9Y7LxoZTp6oU+ZQJeQAbJEnjFEQuh2sqhTD2YpDVl
DU64POdcxSB09c3jOeODlihYyGZG50g3wA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 02:45:34 2025 by rpki-client