Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS13347.roa
File: AS13347.roa (raw, json)
Hash identifier: 08IwOtG8nzUxtyexEdcV9pymT9VYLVJwhbPIszOiYys=
Subject key identifier: 6A:11:DA:1B:34:27:BB:12:C8:17:F6:2A:81:9B:95:36:19:CB:C4:C8
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 7ED67C6F60AC7C824E8A6EAC76AEE1C51D6A1B45
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS13347.roa
Signing time: Tue 10 Jun 2025 16:45:05 +0000
ROA not before: Tue 10 Jun 2025 16:40:05 +0000
ROA not after: Tue 09 Jun 2026 16:45:05 +0000
asID: 13347
IP address blocks: 92.112.32.0/24 maxlen: 24
92.112.33.0/24 maxlen: 24
92.112.34.0/24 maxlen: 24
92.112.35.0/24 maxlen: 24
92.112.40.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:d6:7c:6f:60:ac:7c:82:4e:8a:6e:ac:76:ae:e1:c5:1d:6a:1b:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 10 16:40:05 2025 GMT
Not After : Jun 9 16:45:05 2026 GMT
Subject: CN=6A11DA1B3427BB12C817F62A819B953619CBC4C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2e:e9:6b:4c:84:3f:50:2f:59:41:19:14:5c:
44:c2:3a:b3:63:bb:c6:05:ca:77:34:c9:fd:54:1f:
e1:9f:cf:fb:5a:07:f4:a2:db:3f:15:9d:02:bd:48:
07:5b:29:73:72:b7:57:b4:fb:f1:30:06:f9:58:9f:
77:d7:0e:61:60:6d:dd:53:fe:7d:04:8f:c8:55:c0:
09:7a:7e:ac:8a:f6:06:6e:f5:6b:10:7a:32:c2:42:
8a:01:cf:a7:3f:79:93:65:c6:db:96:e8:1f:26:ec:
93:81:78:b4:9f:79:66:0d:1e:83:75:e0:94:a4:67:
42:d9:0a:d4:e9:d7:ec:d4:23:50:0a:74:95:53:c7:
fb:72:30:cb:70:4b:50:0d:78:df:05:0b:ca:d7:4e:
79:98:79:b0:c7:ac:1e:23:d1:d8:8e:ad:61:ca:3e:
12:97:da:d8:23:89:03:37:1d:52:fb:69:d6:c4:29:
5a:1c:e3:62:e6:95:4a:1c:c1:90:c4:86:1a:4d:2e:
d3:a3:d1:e8:d4:d7:ac:0f:f9:15:e1:ed:d1:25:79:
0a:49:8b:df:9b:6d:38:5c:95:da:a4:0a:c9:ea:21:
95:f8:fb:72:d9:72:33:26:53:82:89:cb:f9:1c:5e:
65:e7:1c:a8:20:16:b4:aa:3a:3d:bf:9c:30:88:1b:
0b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:11:DA:1B:34:27:BB:12:C8:17:F6:2A:81:9B:95:36:19:CB:C4:C8
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS13347.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.112.32.0/22
92.112.40.0/21
Signature Algorithm: sha256WithRSAEncryption
44:35:4f:fc:c8:2f:5f:f9:7b:b6:90:c1:69:4b:93:eb:03:53:
d4:ee:5e:2a:74:ac:79:0c:04:38:50:19:24:1f:25:7b:4b:2c:
e5:6c:51:c4:64:bb:7f:25:66:c7:14:b4:e7:d8:b7:1d:99:49:
8f:b8:83:25:27:d6:72:c2:fb:43:26:93:88:cf:39:3e:b5:e9:
6b:66:af:66:73:46:b6:55:26:cf:91:3d:6f:1c:25:61:b0:fb:
0d:2b:fd:3e:de:c7:8c:4d:17:4f:65:a9:bf:90:4b:13:ca:49:
5f:a7:a3:a1:7c:86:05:37:ca:72:19:a7:47:36:c3:5a:35:b3:
62:f7:70:dc:ec:c7:f0:e8:d5:51:9c:4b:98:91:54:f1:ea:d1:
90:a9:24:80:55:7d:26:ff:1f:5d:b1:2a:ab:4d:78:18:f4:31:
50:c9:77:18:c0:ec:ea:31:e2:a5:bb:4f:1c:f2:20:ed:d9:9e:
fb:57:1e:47:98:c4:a7:0c:c9:ab:a1:1d:f8:07:7a:7d:81:85:
06:71:e2:fc:ae:98:67:8b:4b:48:3d:9d:f2:52:67:c1:c8:c9:
1f:08:0e:9a:90:0f:bc:81:08:ed:7a:64:67:a8:7b:57:4c:98:
b8:b2:d8:ef:26:54:fb:17:d7:13:15:0f:1d:7d:8e:68:20:76:
21:53:58:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:59:37 2025 by rpki-client