Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
File: AS54339.roa (raw, json)
Hash identifier: uDvMU7+zXBHtFF8P4FhF+QSDUOQPpsJe3AxSz3R8pGI=
Subject key identifier: 64:DC:9D:55:36:37:45:8F:3C:07:DB:A1:23:D5:B8:E4:2D:4D:9A:78
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 1CD2817862F0D0D704221C1C05D69BDCC59C27C2
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
Signing time: Wed 11 Jun 2025 15:38:26 +0000
ROA not before: Wed 11 Jun 2025 15:33:26 +0000
ROA not after: Wed 10 Jun 2026 15:38:26 +0000
asID: 54339
IP address blocks: 46.203.107.0/24 maxlen: 24
46.203.114.0/24 maxlen: 24
46.203.145.0/24 maxlen: 24
46.203.146.0/24 maxlen: 24
46.203.168.0/24 maxlen: 24
46.203.169.0/24 maxlen: 24
46.203.171.0/24 maxlen: 24
46.203.174.0/24 maxlen: 24
46.203.177.0/24 maxlen: 24
46.203.179.0/24 maxlen: 24
46.203.199.0/24 maxlen: 24
46.203.235.0/24 maxlen: 24
92.112.6.0/24 maxlen: 24
92.112.7.0/24 maxlen: 24
92.112.8.0/24 maxlen: 24
92.112.36.0/24 maxlen: 24
92.112.38.0/24 maxlen: 24
92.112.55.0/24 maxlen: 24
92.112.89.0/24 maxlen: 24
92.112.142.0/24 maxlen: 24
92.113.4.0/24 maxlen: 24
92.113.6.0/24 maxlen: 24
92.113.9.0/24 maxlen: 24
92.113.15.0/24 maxlen: 24
92.113.40.0/24 maxlen: 24
92.113.56.0/24 maxlen: 24
92.113.57.0/24 maxlen: 24
92.113.58.0/24 maxlen: 24
92.113.59.0/24 maxlen: 24
92.113.169.0/24 maxlen: 24
92.113.247.0/24 maxlen: 24
95.134.184.0/24 maxlen: 24
95.134.206.0/24 maxlen: 24
95.134.221.0/24 maxlen: 24
95.134.223.0/24 maxlen: 24
95.135.72.0/24 maxlen: 24
178.92.30.0/23 maxlen: 23
178.92.44.0/24 maxlen: 24
178.93.117.0/24 maxlen: 24
178.93.121.0/24 maxlen: 24
178.94.168.0/24 maxlen: 24
178.94.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:d2:81:78:62:f0:d0:d7:04:22:1c:1c:05:d6:9b:dc:c5:9c:27:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 11 15:33:26 2025 GMT
Not After : Jun 10 15:38:26 2026 GMT
Subject: CN=64DC9D553637458F3C07DBA123D5B8E42D4D9A78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ca:f0:76:6e:13:95:c2:65:cc:65:9c:23:ec:
c0:67:2a:60:69:69:8d:59:c8:c9:d9:20:f5:a9:2f:
98:b6:04:5c:02:2d:54:99:6d:a2:27:ad:f4:06:bd:
f2:bf:0c:96:b1:a2:6b:cc:00:b6:98:71:5d:11:e1:
3f:9f:80:d3:45:6b:ae:47:27:49:08:5b:46:91:70:
1e:8e:d5:31:c5:a4:c9:24:4b:0e:c9:29:16:ed:ef:
45:bb:93:dd:82:57:39:c5:46:e3:e1:00:60:bc:2a:
13:89:21:4b:0e:78:1e:b6:65:27:d8:6c:93:ce:e6:
d1:33:0e:f0:ff:2b:10:69:2b:70:fe:c5:58:5e:2b:
60:20:09:38:cd:b6:f7:67:25:4b:0c:cd:7e:16:3f:
42:ef:51:a8:4e:08:c3:50:61:3c:9d:f8:00:df:ba:
f3:f0:3d:df:75:88:02:10:68:f9:a6:54:ed:27:95:
5a:7d:c1:32:33:e2:44:fd:77:be:25:8d:c8:d6:ef:
7e:fe:9d:91:5b:18:ff:64:9c:15:11:9a:84:a3:a1:
94:02:eb:cb:2f:9e:7a:75:cd:93:2d:5d:23:7d:46:
ab:66:ac:c2:53:4e:36:28:8d:76:c7:a2:25:c7:b7:
17:31:d0:a4:3d:26:aa:2c:d1:78:3d:21:06:6a:21:
38:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DC:9D:55:36:37:45:8F:3C:07:DB:A1:23:D5:B8:E4:2D:4D:9A:78
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS54339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.107.0/24
46.203.114.0/24
46.203.145.0-46.203.146.255
46.203.168.0/23
46.203.171.0/24
46.203.174.0/24
46.203.177.0/24
46.203.179.0/24
46.203.199.0/24
46.203.235.0/24
92.112.6.0-92.112.8.255
92.112.36.0/24
92.112.38.0/24
92.112.55.0/24
92.112.89.0/24
92.112.142.0/24
92.113.4.0/24
92.113.6.0/24
92.113.9.0/24
92.113.15.0/24
92.113.40.0/24
92.113.56.0/22
92.113.169.0/24
92.113.247.0/24
95.134.184.0/24
95.134.206.0/24
95.134.221.0/24
95.134.223.0/24
95.135.72.0/24
178.92.30.0/23
178.92.44.0/24
178.93.117.0/24
178.93.121.0/24
178.94.168.0/24
178.94.175.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:23:84:52:d2:36:cf:80:c7:ee:d3:f3:c5:58:e7:ca:18:2d:
c7:9c:7e:03:75:b6:fb:77:de:15:bf:66:8b:7b:d7:4e:70:59:
03:a7:5a:90:45:e7:9e:da:60:0e:2e:2d:3e:5f:ec:94:81:ff:
e1:d2:63:af:2b:22:fa:61:f2:be:a9:84:f3:3b:64:e1:f7:c4:
4a:0d:df:34:e9:a3:2e:28:bc:a5:9c:1e:ee:7c:77:42:ad:68:
7e:52:5c:f1:ad:0a:ff:85:00:21:62:10:fc:a0:bb:68:40:c6:
fc:97:e2:5e:45:b9:01:75:b7:cf:e9:76:5c:71:50:75:ef:27:
b4:d2:17:de:bc:84:3f:2b:3f:68:f1:15:3f:ff:92:29:4c:4f:
38:04:29:08:00:cb:44:d9:18:30:14:e4:05:7c:20:79:fc:ce:
1b:d5:30:c3:5d:77:45:59:25:33:8f:5d:2b:3d:3c:1a:b5:18:
ed:c7:bf:1b:a9:e5:58:d9:f9:39:e0:66:e8:75:7d:ef:37:d7:
ff:8e:40:fb:d1:9d:2b:21:5d:b7:51:22:e7:7e:e7:33:cc:13:
fc:83:0b:0c:b2:7d:26:db:6e:48:7d:cf:07:80:4d:92:44:0a:
54:a1:a4:97:b6:79:98:b7:08:fd:d5:ac:65:71:45:b9:91:2d:
e9:ba:6c:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:59:41 2025 by rpki-client