Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7029.roa
File: AS7029.roa (raw, json)
Hash identifier: ufmSJ2jT7puE66JoDonLYMnYQriD1Xcv75eh1RNuqpQ=
Subject key identifier: 82:79:18:8C:D3:EA:83:E7:74:B3:E7:FD:67:8B:3A:B5:87:FC:EF:61
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 6DCAC36EDF079EBE395995D8F8FD1CC266182C2B
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7029.roa
Signing time: Thu 31 Jul 2025 10:59:03 +0000
ROA not before: Thu 31 Jul 2025 10:54:03 +0000
ROA not after: Thu 30 Jul 2026 10:59:03 +0000
asID: 7029
IP address blocks: 46.202.200.0/24 maxlen: 24
46.202.206.0/24 maxlen: 24
46.203.6.0/24 maxlen: 24
91.124.228.0/23 maxlen: 24
91.124.230.0/23 maxlen: 24
91.124.232.0/23 maxlen: 24
91.124.234.0/23 maxlen: 24
92.112.32.0/24 maxlen: 24
92.112.33.0/24 maxlen: 24
92.112.34.0/24 maxlen: 24
92.112.35.0/24 maxlen: 24
92.112.40.0/21 maxlen: 24
92.112.157.0/24 maxlen: 24
92.113.170.0/24 maxlen: 24
92.113.171.0/24 maxlen: 24
92.113.175.0/24 maxlen: 24
92.113.215.0/24 maxlen: 24
92.113.224.0/24 maxlen: 24
92.113.230.0/24 maxlen: 24
178.95.208.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:ca:c3:6e:df:07:9e:be:39:59:95:d8:f8:fd:1c:c2:66:18:2c:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jul 31 10:54:03 2025 GMT
Not After : Jul 30 10:59:03 2026 GMT
Subject: CN=8279188CD3EA83E774B3E7FD678B3AB587FCEF61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6a:2a:41:1b:01:2f:db:f0:8e:9f:0d:bf:dd:
bf:23:b8:d0:5e:4b:91:51:b6:5f:63:a5:f9:e0:7c:
0a:c7:b3:13:bb:67:b7:3c:08:ff:75:25:67:2c:17:
5a:61:92:19:e6:1d:4f:bd:97:31:da:ce:c8:93:3e:
a5:0d:77:8c:70:f1:6d:f6:8a:0c:9e:b6:25:25:21:
fb:fb:82:d3:e4:2f:e2:22:19:be:b3:2e:98:80:da:
ae:c7:41:ec:c3:5f:ad:0b:d2:f0:71:b5:a9:10:b9:
85:1b:2f:93:4d:27:70:7c:bf:82:f3:25:32:eb:bc:
a1:c1:3f:88:40:e8:24:a3:dd:84:e7:3b:ac:7d:e9:
c4:8c:88:83:a1:bf:80:71:dd:19:7e:91:d9:df:7e:
27:ce:ae:30:79:2a:48:ec:f4:34:fd:f5:fb:1b:c4:
57:00:c8:2b:b6:42:31:e6:d6:ca:6c:ea:87:3a:2e:
6b:9f:7f:67:79:e1:57:a9:1a:26:41:99:3f:20:74:
2d:98:b4:eb:fb:bc:29:78:67:04:33:ff:5c:57:fc:
06:4d:9e:d8:ba:0b:1a:c7:47:d2:ac:e0:e0:dc:d3:
3e:9e:1d:92:71:8a:3f:8f:80:ea:30:72:ac:a8:67:
8e:d8:ff:02:3f:ec:6f:70:d2:9e:1c:ee:01:92:89:
4a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:79:18:8C:D3:EA:83:E7:74:B3:E7:FD:67:8B:3A:B5:87:FC:EF:61
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7029.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.200.0/24
46.202.206.0/24
46.203.6.0/24
91.124.228.0-91.124.235.255
92.112.32.0/22
92.112.40.0/21
92.112.157.0/24
92.113.170.0/23
92.113.175.0/24
92.113.215.0/24
92.113.224.0/24
92.113.230.0/24
178.95.208.0/20
Signature Algorithm: sha256WithRSAEncryption
96:e2:ce:e6:b0:a5:af:1c:50:90:46:0f:70:62:b1:ca:85:ed:
41:dd:a3:41:32:68:41:47:bb:24:43:7f:65:3d:a7:83:26:b6:
85:b9:c0:f5:d0:ee:21:83:02:77:83:dd:c1:b5:a6:02:87:37:
ca:0f:fd:75:f4:1c:e8:39:2d:92:8d:a9:ee:55:5c:b1:84:82:
fa:1c:91:7b:66:be:0d:cb:c0:00:eb:3e:2c:a2:12:74:c3:4a:
65:14:fc:7b:15:d7:ba:af:03:f4:e0:8b:dc:8d:32:1d:eb:f2:
f5:6f:2d:5e:a7:bc:2a:9e:e3:f1:3e:d4:9b:8f:d8:07:54:8b:
17:62:75:31:8a:e3:7a:a9:0f:9c:5d:c0:8c:f1:21:53:5c:70:
88:f6:2c:70:d8:31:d8:9a:b7:c2:32:38:a4:ec:5d:9d:22:78:
e6:fc:bc:84:2a:d0:7c:75:10:24:84:1d:d7:c1:b3:71:6a:48:
e3:2a:86:21:b8:b2:6e:52:4b:56:f2:72:36:b4:22:d6:28:60:
a5:25:47:e2:d5:51:28:db:4c:7f:0d:12:19:de:1c:36:47:c1:
1a:76:94:3e:3c:01:4f:e0:c8:89:f4:c5:dc:2e:7d:93:26:5a:
e0:94:a6:70:13:41:b7:15:59:e2:33:5d:0f:37:c9:56:18:2b:
17:3f:41:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 13:56:01 2025 by rpki-client