Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
File: AS10753.roa (raw, json)
Hash identifier: r0PUVK0wKRNaR5wSpxebMAXicIKo9stRPj6zR9m4XoE=
Subject key identifier: D2:3D:3C:15:73:67:BD:6C:F7:5B:3A:41:9A:64:3C:A4:61:7C:4E:BD
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 72E51E7B7DDC02F7EC2DA8EF16DB61C9D19AEAF0
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
Signing time: Thu 02 Apr 2026 10:20:27 +0000
ROA not before: Thu 02 Apr 2026 10:15:27 +0000
ROA not after: Thu 01 Apr 2027 10:20:27 +0000
asID: 10753
IP address blocks: 82.25.225.0/24 maxlen: 24
82.25.250.0/24 maxlen: 24
82.26.234.0/24 maxlen: 24
82.26.250.0/24 maxlen: 24
82.27.250.0/24 maxlen: 24
82.29.239.0/24 maxlen: 24
82.38.42.0/23 maxlen: 24
82.38.46.0/23 maxlen: 24
82.38.80.0/23 maxlen: 24
178.83.82.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:e5:1e:7b:7d:dc:02:f7:ec:2d:a8:ef:16:db:61:c9:d1:9a:ea:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 2 10:15:27 2026 GMT
Not After : Apr 1 10:20:27 2027 GMT
Subject: CN=D23D3C157367BD6CF75B3A419A643CA4617C4EBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:47:59:bf:2d:07:75:c0:b0:6f:cf:e6:f2:ca:
66:d2:8c:55:e9:d4:a3:55:8a:e6:21:b4:38:9c:b6:
ba:1b:36:dc:58:fc:cf:bf:b9:31:9b:dd:a6:ff:4a:
a6:05:aa:11:29:21:fa:93:fb:86:65:d9:26:37:a4:
d9:80:88:6b:72:55:93:83:47:74:e7:c1:40:ed:0e:
26:4c:c5:f5:aa:f7:d8:51:0a:0d:3b:05:f1:3f:89:
5f:74:7c:33:3f:21:35:7c:a8:db:da:98:f0:d8:a7:
27:1f:71:d4:b4:ed:5d:80:29:f0:95:c1:94:ef:5d:
87:c8:0e:18:a2:a4:2f:87:09:d3:07:96:16:41:43:
f8:15:c4:ea:13:86:1d:32:86:24:b4:5e:0b:3a:61:
a3:af:e3:80:b0:6b:a8:10:9e:31:37:7d:d0:6f:55:
fb:a5:64:f1:c9:2a:6e:01:96:c2:41:5d:c7:e6:c4:
a6:d5:f3:0d:45:92:4b:1d:07:5a:1a:41:3e:27:24:
6d:db:0e:21:b8:2b:e2:19:fd:7d:b2:f7:60:1d:85:
bf:58:c4:94:c7:1c:6b:09:f5:6e:59:9e:8e:7a:e8:
1d:ed:79:11:c6:f4:60:b1:99:1e:53:0c:10:9a:45:
89:f4:6c:ec:45:d5:18:88:9b:3a:df:e6:13:49:bb:
e7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:3D:3C:15:73:67:BD:6C:F7:5B:3A:41:9A:64:3C:A4:61:7C:4E:BD
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.25.225.0/24
82.25.250.0/24
82.26.234.0/24
82.26.250.0/24
82.27.250.0/24
82.29.239.0/24
82.38.42.0/23
82.38.46.0/23
82.38.80.0/23
178.83.82.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:02:1a:30:9c:23:ab:2f:fb:51:dc:c5:d3:b4:00:77:77:97:
38:06:89:1e:f0:3b:56:e8:dc:e2:d8:38:95:ca:2c:5e:b9:8a:
46:ae:bf:58:1f:e1:6b:80:0c:0f:7d:7e:0d:3e:ff:ad:34:1a:
d0:67:12:fb:84:78:16:69:5b:86:3b:c9:ee:99:e1:9f:b1:08:
e3:31:4d:71:dd:e0:cc:ff:f9:e5:42:e5:2b:3d:d4:19:20:01:
dc:0f:ef:55:17:08:0a:47:29:e8:a5:96:f4:57:e7:1c:97:8a:
4a:80:99:44:3a:30:f2:9f:90:0e:d1:46:aa:45:a5:3c:2b:db:
72:7c:bc:f9:47:e1:e6:3e:4f:89:58:b1:f9:dc:5e:f2:41:0a:
0c:d8:54:e5:14:ed:10:eb:08:c5:7c:10:6a:98:f7:a3:f5:bb:
dc:7e:f2:3b:29:43:73:d4:18:09:1e:23:fd:c7:79:cf:bc:4a:
74:a3:21:db:4f:57:85:b3:26:ed:49:ab:27:df:02:2e:d8:04:
0f:b9:5b:96:af:0c:e2:24:fb:67:c2:4c:81:50:ea:2a:a3:93:
4d:78:24:e4:53:75:65:2b:e9:af:f3:97:b0:c7:2a:b2:b8:83:
59:13:14:dc:a3:5c:be:2a:0d:d1:7c:ab:18:22:b4:8d:76:b6:
5a:b9:35:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:38:22 2026 by rpki-client