Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
File: AS29262.roa (raw, json)
Hash identifier: 8+xYzkf80diDANGjdfEnVrSQZ4Fv2cJqUvxPtxhanSc=
Subject key identifier: 8D:5D:B6:28:66:7F:DC:EC:23:21:2D:2E:1A:47:BC:5C:3C:25:D8:86
Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Certificate serial: 34DADB95DFB35AF3F8688CF815BB372AF4470E12
Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
Signing time: Mon 03 Nov 2025 10:42:44 +0000
ROA not before: Mon 03 Nov 2025 10:37:44 +0000
ROA not after: Mon 02 Nov 2026 10:42:44 +0000
asID: 29262
IP address blocks: 77.241.72.0/24 maxlen: 24
77.241.73.0/24 maxlen: 24
77.241.74.0/24 maxlen: 24
77.241.75.0/24 maxlen: 24
139.28.32.0/22 maxlen: 22
139.28.240.0/24 maxlen: 24
139.28.241.0/24 maxlen: 24
193.187.134.0/24 maxlen: 24
193.187.135.0/24 maxlen: 24
194.169.92.0/24 maxlen: 24
194.169.93.0/24 maxlen: 24
194.169.94.0/24 maxlen: 24
194.169.95.0/24 maxlen: 24
2a02:f240::/29 maxlen: 29
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft
rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:08:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:da:db:95:df:b3:5a:f3:f8:68:8c:f8:15:bb:37:2a:f4:47:0e:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Validity
Not Before: Nov 3 10:37:44 2025 GMT
Not After : Nov 2 10:42:44 2026 GMT
Subject: CN=8D5DB628667FDCEC23212D2E1A47BC5C3C25D886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c1:21:1d:ef:6f:a3:1e:8e:1d:68:f6:ba:76:
21:15:4e:57:6e:d1:89:43:89:68:e5:e3:10:70:49:
8b:10:cc:67:32:07:d1:f5:53:a6:09:4b:8a:4a:85:
93:ac:21:a2:10:f1:cb:ea:63:b9:8f:66:f9:9e:58:
9e:13:1d:f4:0f:94:e5:72:d9:fc:d6:e2:08:11:7e:
35:92:e9:cd:8c:ca:32:42:48:84:37:97:c4:02:3c:
29:b6:f5:61:6b:20:17:3a:bf:6b:c6:a0:0f:e1:21:
27:ab:7b:15:dc:c0:22:88:84:95:99:15:e1:aa:00:
8a:6e:d2:b6:f9:46:44:b9:66:cc:49:38:de:a3:cc:
27:62:1a:64:0e:d8:06:20:2b:7b:b0:64:4a:91:f6:
43:50:b5:a5:89:b5:8a:79:b0:b2:8c:f5:c4:59:27:
34:21:e8:91:3e:fa:0f:41:43:d3:81:cc:98:b4:f3:
4e:f6:80:be:18:e0:37:ce:75:00:4f:66:22:51:92:
f1:d0:55:41:66:6d:45:9b:96:b2:0d:cf:ef:13:c1:
55:34:b0:33:f7:41:e3:b6:2f:fa:53:da:1c:61:8b:
a7:d4:b9:3c:da:2c:50:e2:76:38:2d:8f:92:e5:1c:
ba:db:9b:ea:9a:22:27:32:8e:ee:8d:2d:41:24:a6:
bb:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:5D:B6:28:66:7F:DC:EC:23:21:2D:2E:1A:47:BC:5C:3C:25:D8:86
X509v3 Authority Key Identifier:
keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.72.0/22
139.28.32.0/22
139.28.240.0/23
193.187.134.0/23
194.169.92.0/22
IPv6:
2a02:f240::/29
Signature Algorithm: sha256WithRSAEncryption
9b:d1:da:db:03:98:43:a6:d6:70:2f:f4:6e:58:c5:8b:5c:9b:
62:f3:41:11:33:c0:54:b5:d3:5e:66:0c:70:49:b2:a0:35:61:
6a:75:ba:4c:88:5e:7b:3c:ca:8c:63:c9:ff:56:ec:92:93:7e:
4a:e0:8f:84:6a:cd:00:28:8f:94:7a:19:2b:11:0b:4c:18:d8:
be:a0:68:0d:6b:df:98:79:cc:54:08:33:0a:59:fe:1f:3c:93:
b2:8f:1f:2e:e8:30:36:bb:ea:99:62:f9:72:f4:53:7d:72:95:
95:8f:c6:53:14:98:2e:66:ea:b9:31:d0:18:8f:08:75:06:26:
03:b9:4b:98:09:3e:1e:48:5d:05:36:ed:96:0f:c6:df:2f:88:
f5:c8:df:26:bc:f8:04:87:5c:34:95:24:de:de:f9:b4:7e:98:
42:f5:51:98:40:b1:03:f3:4f:6b:a9:ca:52:5e:7b:5a:7a:cf:
7d:85:74:a4:cc:67:67:47:d3:a0:5f:89:0f:ff:19:58:3f:1a:
00:68:d1:54:8b:43:79:37:d0:51:cd:38:ed:99:b3:0c:7b:b1:
b9:00:5c:a5:6b:e9:1f:73:22:07:c9:8d:24:aa:2e:ad:75:26:
df:ce:5d:44:7f:4c:e5:ef:72:4f:a3:e1:a4:3e:b1:a7:c6:ed:
fe:93:2f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:11:34 2025 by rpki-client