Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
File: AS29262.roa (raw, json)
Hash identifier: HUrR0XfIJUiVszHp+ZNH8Bfxc9Ul37GUc24ZIoWxc/A=
Subject key identifier: B2:F3:AD:DA:A6:66:D4:03:7E:14:05:60:04:1B:BA:8E:85:A2:71:F3
Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Certificate serial: 0FDE4FCA6AAEA39501640A014FC784071E12B54E
Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
Signing time: Sun 11 May 2025 18:11:23 +0000
ROA not before: Sun 11 May 2025 18:06:23 +0000
ROA not after: Sun 10 May 2026 18:11:23 +0000
asID: 29262
IP address blocks: 77.241.72.0/24 maxlen: 24
77.241.73.0/24 maxlen: 24
77.241.74.0/24 maxlen: 24
77.241.75.0/24 maxlen: 24
139.28.240.0/24 maxlen: 24
139.28.241.0/24 maxlen: 24
185.254.55.0/24 maxlen: 24
193.187.134.0/24 maxlen: 24
193.187.135.0/24 maxlen: 24
194.169.92.0/24 maxlen: 24
194.169.93.0/24 maxlen: 24
194.169.94.0/24 maxlen: 24
194.169.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft
rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 10:25:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:de:4f:ca:6a:ae:a3:95:01:64:0a:01:4f:c7:84:07:1e:12:b5:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Validity
Not Before: May 11 18:06:23 2025 GMT
Not After : May 10 18:11:23 2026 GMT
Subject: CN=B2F3ADDAA666D4037E140560041BBA8E85A271F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:25:a5:c6:a5:af:ba:7d:e7:9f:09:15:80:37:
53:5e:2f:8f:a8:7b:43:e5:51:8f:24:bb:01:66:51:
13:ad:6d:bf:fd:84:8a:9c:33:e9:a3:2b:85:7e:e6:
a0:50:31:76:18:44:04:99:db:33:fe:bf:ea:8f:d1:
2f:b9:c3:c5:45:26:f0:60:66:0d:ea:9f:04:73:1d:
5a:30:aa:47:a1:ac:8f:e4:fa:71:cd:1f:67:de:34:
56:75:85:e7:2d:97:9e:50:f7:a6:c2:54:11:bf:1b:
03:a4:52:1b:ec:c2:71:e6:ac:40:d3:a5:47:a7:a6:
1f:ff:42:c2:4c:0d:50:7f:05:74:ff:a8:d1:46:7c:
a1:48:52:a1:9a:45:e3:60:c9:e7:87:30:19:cb:b1:
61:80:95:5a:80:07:a6:1e:b1:cb:3a:dd:1c:a0:5d:
6f:d0:f5:c5:11:5f:94:cc:bf:e6:98:28:cf:60:da:
aa:ac:83:45:3e:c4:05:76:80:db:a8:0a:5f:c6:c1:
9f:1d:15:54:6f:0a:20:2e:6e:30:dc:22:c8:08:04:
6f:34:3b:e9:9e:59:09:04:78:fa:35:38:29:f1:38:
e8:9d:21:da:0f:4c:9c:79:75:e5:a7:61:58:cf:b7:
25:42:f7:17:ba:34:81:ed:90:4a:94:e9:14:9e:95:
96:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F3:AD:DA:A6:66:D4:03:7E:14:05:60:04:1B:BA:8E:85:A2:71:F3
X509v3 Authority Key Identifier:
keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS29262.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.72.0/22
139.28.240.0/23
185.254.55.0/24
193.187.134.0/23
194.169.92.0/22
Signature Algorithm: sha256WithRSAEncryption
33:f6:ba:83:e9:94:1c:8c:c5:d6:d1:eb:52:ab:d9:34:2c:53:
8d:d5:5b:e8:cb:e2:c7:c1:48:14:30:f1:ba:98:4c:2e:38:dd:
4c:8e:8e:6d:47:c1:4b:b0:78:b5:0b:3e:cf:e5:46:11:7f:8c:
29:82:a8:d4:30:55:d0:5c:59:cd:5f:bc:9f:56:f2:04:66:af:
6e:f6:d2:98:89:cc:15:f0:f6:41:d0:cc:62:92:2c:01:58:87:
40:f7:f3:73:b9:48:2a:fa:d0:3d:e8:58:ea:aa:09:b9:1a:1e:
4f:6b:b0:f0:cd:a9:6e:ab:24:f6:33:6c:74:8e:6f:be:b9:de:
88:e1:56:f5:7f:dd:f1:cb:b5:81:a1:46:b5:e0:c5:5a:51:2c:
98:21:35:46:79:a4:75:4b:d0:22:a6:af:dc:73:fc:e1:cb:fe:
1e:ba:35:0e:cd:50:7f:b8:ac:13:25:f2:2c:4c:59:4c:69:15:
a8:68:c9:29:d5:dd:fb:c9:0c:6e:20:6b:be:84:f1:fb:97:d9:
c8:63:1d:c5:10:ac:c3:07:3c:ae:0e:1b:42:10:ac:3b:4d:e5:
04:75:c3:63:14:25:6a:56:5e:f7:b6:e4:1d:93:94:19:06:58:
a5:1e:e1:5b:5a:f5:4e:e0:f2:20:bb:81:22:d7:f5:65:3c:1b:
e3:f1:29:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 00:18:39 2025 by rpki-client