Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa
File: AS214025.roa (raw, json)
Hash identifier: vOi9NjlaoNQyURq7xlUJ1WgwhlEJPO1OLVOvxP4hEsM=
Subject key identifier: 8F:52:92:BC:EF:D2:5A:ED:3E:44:34:A5:43:AC:0E:A1:77:E9:D0:34
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 50199711FAE7AD2290F7C7D279947BCAB8C2B414
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa
Signing time: Fri 23 May 2025 17:32:04 +0000
ROA not before: Fri 23 May 2025 17:27:04 +0000
ROA not after: Fri 22 May 2026 17:32:04 +0000
asID: 214025
IP address blocks: 46.203.98.0/24 maxlen: 24
46.203.203.0/24 maxlen: 24
92.113.106.0/23 maxlen: 24
92.113.112.0/23 maxlen: 24
92.113.124.0/23 maxlen: 24
92.113.136.0/23 maxlen: 24
92.113.142.0/23 maxlen: 24
95.134.140.0/24 maxlen: 24
95.134.141.0/24 maxlen: 24
95.134.142.0/24 maxlen: 24
95.135.83.0/24 maxlen: 24
95.135.109.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:19:97:11:fa:e7:ad:22:90:f7:c7:d2:79:94:7b:ca:b8:c2:b4:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 23 17:27:04 2025 GMT
Not After : May 22 17:32:04 2026 GMT
Subject: CN=8F5292BCEFD25AED3E4434A543AC0EA177E9D034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a1:01:2b:7d:23:2d:08:0c:ce:c9:04:3e:eb:
8d:27:34:f9:ff:ae:4f:49:5a:6c:ad:5a:a5:74:5a:
8f:d4:bb:f2:50:16:c1:f2:ee:95:80:b7:53:37:ae:
41:0b:47:d5:b7:67:1f:0d:fb:6c:5a:04:c7:13:33:
3f:d1:8e:57:7d:9e:94:dc:d1:90:83:19:ea:36:9d:
e7:4b:02:4e:11:0d:0f:87:46:dd:25:e2:d9:fa:1d:
25:d1:4a:a4:28:c4:8d:b9:25:a4:be:db:4f:e9:d9:
51:25:9b:fa:ae:17:31:a2:ce:0b:10:11:26:42:0d:
34:18:20:ce:a4:ee:c4:e3:23:1e:60:ad:b9:df:1d:
09:c5:07:62:f5:33:c2:bf:43:8d:a5:5e:91:38:2f:
4b:dd:1e:d8:be:32:fb:71:96:63:1d:19:d4:63:8e:
4a:12:06:8e:51:5a:24:5c:ba:89:61:28:58:e4:91:
d4:ce:ca:6f:88:ce:84:e7:df:af:3f:91:10:86:23:
62:6c:9e:01:ad:a3:1f:94:5d:e0:95:c9:52:cd:45:
84:ed:ec:03:c8:fa:c8:38:b6:a4:0f:4f:87:f1:0c:
5f:05:78:14:b6:8e:2f:fe:b2:96:ca:73:d0:5d:cd:
36:bd:15:c6:04:d0:7d:a9:f3:16:09:f5:22:7e:19:
74:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:52:92:BC:EF:D2:5A:ED:3E:44:34:A5:43:AC:0E:A1:77:E9:D0:34
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.98.0/24
46.203.203.0/24
92.113.106.0/23
92.113.112.0/23
92.113.124.0/23
92.113.136.0/23
92.113.142.0/23
95.134.140.0-95.134.142.255
95.135.83.0/24
95.135.109.0/24
Signature Algorithm: sha256WithRSAEncryption
23:10:7a:60:e3:b5:5b:d6:fc:c1:64:74:21:38:ad:f1:a4:ac:
9a:9e:b6:39:27:be:49:92:c7:4e:21:23:61:73:e3:76:31:cd:
95:83:2e:ce:30:f2:54:46:8d:39:fd:50:7f:49:a9:6f:4b:9e:
73:a2:d4:f0:4b:f0:3f:71:cb:10:73:cb:ee:0e:a9:10:b1:ae:
88:82:52:14:8c:6e:0c:bc:bd:c3:cd:1f:95:42:3b:fe:ec:e8:
26:eb:33:68:f2:ec:eb:fc:da:19:7d:a1:6d:b6:c6:26:0c:ee:
4c:03:76:85:3b:10:ca:0f:35:4f:7a:cd:8c:a2:0d:a9:1c:a5:
be:f0:f4:60:1b:52:8d:e6:28:10:56:66:4a:0a:c4:a4:dd:a1:
aa:95:e8:66:c8:2d:90:5b:b1:b7:62:f5:d5:6f:f2:f6:07:3f:
d8:60:42:dc:4c:ff:6e:39:2b:d9:a1:79:f8:a6:2f:13:43:9b:
e5:88:1e:4e:10:61:e5:1f:af:78:c1:f7:30:3e:f6:87:c9:4c:
0c:ea:4b:63:9b:e3:f3:16:23:5a:e0:09:ba:bb:54:6b:04:31:
e1:ed:d6:6d:52:09:29:6a:5d:ef:71:e0:14:e9:fd:ce:80:55:
46:a1:06:ed:f9:45:96:c4:8b:fa:c9:db:4d:34:cb:4d:a2:81:
a7:8b:cb:0f
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUUBmXEfrnrSKQ98fSeZR7yrjCtBQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNTA1MjMxNzI3MDRaFw0yNjA1MjIxNzMyMDRaMDMxMTAvBgNV
BAMTKDhGNTI5MkJDRUZEMjVBRUQzRTQ0MzRBNTQzQUMwRUExNzdFOUQwMzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzoQErfSMtCAzOyQQ+640nNPn/
rk9JWmytWqV0Wo/Uu/JQFsHy7pWAt1M3rkELR9W3Zx8N+2xaBMcTMz/Rjld9npTc
0ZCDGeo2nedLAk4RDQ+HRt0l4tn6HSXRSqQoxI25JaS+20/p2VElm/quFzGizgsQ
ESZCDTQYIM6k7sTjIx5grbnfHQnFB2L1M8K/Q42lXpE4L0vdHti+MvtxlmMdGdRj
jkoSBo5RWiRcuolhKFjkkdTOym+IzoTn368/kRCGI2JsngGtox+UXeCVyVLNRYTt
7API+sg4tqQPT4fxDF8FeBS2ji/+spbKc9BdzTa9FcYE0H2p8xYJ9SJ+GXSPAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUj1KSvO/SWu0+RDSlQ6wOoXfp0DQwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE0MDI1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDBKBAIAATBEAwQALsti
AwQALsvLAwQBXHFqAwQBXHFwAwQBXHF8AwQBXHGIAwQBXHGOMAwDBAJfhowDBABf
ho4DBABfh1MDBABfh20wDQYJKoZIhvcNAQELBQADggEBACMQemDjtVvW/MFkdCE4
rfGkrJqetjknvkmSx04hI2Fz43YxzZWDLs4w8lRGjTn9UH9JqW9LnnOi1PBL8D9x
yxBzy+4OqRCxroiCUhSMbgy8vcPNH5VCO/7s6CbrM2jy7Ov82hl9oW22xiYM7kwD
doU7EMoPNU96zYyiDakcpb7w9GAbUo3mKBBWZkoKxKTdoaqV6GbILZBbsbdi9dVv
8vYHP9hgQtxM/245K9mhefimLxNDm+WIHk4QYeUfr3jB9zA+9ofJTAzqS2Ob4/MW
I1rgCbq7VGsEMeHt1m1SCSlqXe9x4BTp/c6AVUahBu35RZbEi/rJ2000y02igaeL
yw8=
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:00:16 2025 by rpki-client