Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS199432.roa
File: AS199432.roa (raw, json)
Hash identifier: 4ASsG7maD4BL3T5SBWKfO9tWKsLkkbnImyMBQnfVVt0=
Subject key identifier: 32:27:05:BC:16:28:C8:B0:0B:94:D7:DB:EE:5E:0A:8A:2A:58:15:E4
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 45CB8B7CF7BF5F485ED6D8A6674DB57D1ADBA541
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS199432.roa
Signing time: Sat 02 Aug 2025 16:34:25 +0000
ROA not before: Sat 02 Aug 2025 16:29:25 +0000
ROA not after: Sat 01 Aug 2026 16:34:25 +0000
asID: 199432
IP address blocks: 92.112.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:cb:8b:7c:f7:bf:5f:48:5e:d6:d8:a6:67:4d:b5:7d:1a:db:a5:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Aug 2 16:29:25 2025 GMT
Not After : Aug 1 16:34:25 2026 GMT
Subject: CN=322705BC1628C8B00B94D7DBEE5E0A8A2A5815E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:17:28:d5:42:45:d1:54:51:50:cc:fd:88:c4:
59:ef:a4:bb:bd:cf:01:2a:9f:ae:4b:fa:41:be:75:
36:16:f8:9c:a2:da:86:d7:c8:95:61:8b:c6:0f:16:
8e:30:f7:e2:0e:3b:de:56:37:2a:ef:03:8d:39:14:
f7:15:af:57:b9:e4:ea:ef:5b:e2:90:29:59:d1:12:
b8:e9:61:cf:2a:e2:18:22:fa:0e:ac:40:70:0b:f6:
e8:57:d3:5a:c1:e7:9f:b2:75:a9:cb:02:f0:cf:dd:
f4:43:68:32:d4:0c:17:9a:ef:7b:c3:17:96:18:85:
cd:18:4a:42:94:ac:5c:00:2a:6c:2f:32:be:7c:c0:
29:8a:fa:1d:1a:8f:d7:49:fd:04:cc:2e:34:84:45:
50:a5:91:25:c3:0c:28:e4:ba:e2:bd:2f:4b:3a:18:
a0:55:ac:a2:84:ac:e9:76:4a:e6:9e:fa:f7:4e:ae:
92:a9:4d:d1:8e:76:0f:a4:7e:16:f6:ad:63:89:1e:
58:3f:ff:5d:67:fc:41:d5:4e:7d:cb:28:d3:97:7a:
58:a8:4d:84:ce:ba:49:21:03:f8:b3:f3:bf:9f:27:
c6:b8:a1:25:b2:bb:a9:b3:58:cc:c2:92:6b:e1:ce:
0c:9c:e5:0d:4d:f3:35:73:a2:a2:50:6a:04:da:ae:
59:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:27:05:BC:16:28:C8:B0:0B:94:D7:DB:EE:5E:0A:8A:2A:58:15:E4
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS199432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.112.9.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:e9:7e:6b:7f:4d:59:37:3e:a4:4e:2f:57:d7:c4:46:ff:0b:
16:5e:61:37:99:0b:1d:54:5f:a8:a2:b5:8c:ef:7e:fa:7b:57:
fb:45:7f:f2:6e:34:a3:5f:03:6f:f6:0b:08:c2:ae:9b:7b:67:
bc:32:95:a5:58:b7:59:65:fb:6f:8a:d3:2e:ec:ac:60:60:24:
c5:44:8e:63:e3:85:bc:56:6a:b1:a4:48:5c:d6:99:11:9f:26:
4d:14:01:b7:67:95:5c:c9:b2:6d:cb:f5:aa:a1:ac:28:90:60:
86:e7:e5:09:aa:1c:aa:5c:47:21:ee:c3:58:28:a9:2d:ec:d6:
c0:c7:07:b4:24:c0:89:f3:a7:a6:c3:6c:20:28:37:53:cf:6e:
04:2a:48:45:2a:4e:78:2d:12:ec:b9:90:eb:8d:9e:6b:13:7e:
0c:30:0e:0b:4e:56:8c:07:e5:38:c6:52:b0:f0:56:8d:34:b7:
d5:d4:59:07:c8:9c:d7:2d:5e:4a:9e:90:dd:f8:ec:f7:1b:5d:
98:7c:ed:a5:32:8d:b4:65:5c:a5:87:9f:5a:05:3d:ed:be:5f:
b0:be:80:51:28:22:a8:d2:46:30:83:24:83:08:32:18:c6:da:
6d:d2:7c:1e:aa:a3:c4:b0:1e:d4:1a:a6:66:13:6c:b4:21:94:
43:4f:13:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 13:56:54 2025 by rpki-client