Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
File: AS10753.roa (raw, json)
Hash identifier: kLAmF/8S2N8vHyhmkkjwmT3Wn9mHcV7ypLfngCUwv8k=
Subject key identifier: 6F:97:72:C7:6E:16:4F:A6:36:62:7D:66:BA:15:DD:D1:C8:B4:0D:0D
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 428EF1CA1537E8D57C5445679BC69695D0484799
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
Signing time: Tue 09 Jun 2026 05:17:51 +0000
ROA not before: Tue 09 Jun 2026 05:12:51 +0000
ROA not after: Tue 08 Jun 2027 05:17:51 +0000
asID: 10753
IP address blocks: 82.21.210.0/24 maxlen: 24
82.21.216.0/24 maxlen: 24
82.21.234.0/24 maxlen: 24
82.22.250.0/24 maxlen: 24
82.25.225.0/24 maxlen: 24
82.25.250.0/24 maxlen: 24
82.26.234.0/24 maxlen: 24
82.26.250.0/24 maxlen: 24
82.27.210.0/24 maxlen: 24
82.27.220.0/24 maxlen: 24
82.27.250.0/24 maxlen: 24
82.29.239.0/24 maxlen: 24
82.29.240.0/24 maxlen: 24
82.38.23.0/24 maxlen: 24
82.38.42.0/23 maxlen: 24
82.38.46.0/23 maxlen: 24
82.38.80.0/23 maxlen: 24
82.38.105.0/24 maxlen: 24
82.38.215.0/24 maxlen: 24
82.39.136.0/24 maxlen: 24
82.39.245.0/24 maxlen: 24
178.83.82.0/23 maxlen: 24
178.83.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:8e:f1:ca:15:37:e8:d5:7c:54:45:67:9b:c6:96:95:d0:48:47:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 9 05:12:51 2026 GMT
Not After : Jun 8 05:17:51 2027 GMT
Subject: CN=6F9772C76E164FA636627D66BA15DDD1C8B40D0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a3:02:28:7f:21:79:85:a5:28:d1:9e:ff:67:
b8:2e:c2:98:ba:3c:c6:e0:5f:af:83:4f:55:70:e2:
96:06:4e:27:8e:a6:27:fb:4c:a5:5b:a5:0a:df:e8:
e5:65:1b:15:7f:23:11:9d:f7:99:f8:94:da:cc:5c:
20:0f:f5:f0:99:e8:ec:62:3f:0e:fb:25:2b:85:0c:
24:da:c2:11:20:23:9b:b0:dc:33:09:a5:ee:26:fe:
43:30:0a:c2:8b:ba:32:4a:7e:27:f4:82:d3:76:b7:
6d:ab:c0:c5:e1:0a:e9:63:3b:53:a9:91:68:9f:59:
5d:c0:09:e3:da:31:90:b4:fd:51:b4:6f:18:0f:83:
bd:35:bd:a6:dd:97:e4:00:64:53:6c:65:be:7a:13:
9b:10:a5:66:7e:c8:69:09:4e:5c:b9:ae:f0:b4:62:
81:8a:b5:c4:78:7a:dd:22:0d:75:a5:4c:a8:68:1b:
4f:e5:6f:ab:a9:10:d5:02:1e:b9:dc:bb:3d:65:39:
80:1b:93:2d:a7:1f:13:bc:c5:81:7a:a4:39:7d:0a:
18:58:23:1e:9e:31:f8:7b:00:82:2b:ed:db:52:80:
36:9a:71:c4:b2:96:2f:3f:fd:82:1c:49:2b:d5:f9:
24:8d:64:01:92:4b:86:2f:0b:86:00:57:37:10:a4:
30:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:97:72:C7:6E:16:4F:A6:36:62:7D:66:BA:15:DD:D1:C8:B4:0D:0D
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.210.0/24
82.21.216.0/24
82.21.234.0/24
82.22.250.0/24
82.25.225.0/24
82.25.250.0/24
82.26.234.0/24
82.26.250.0/24
82.27.210.0/24
82.27.220.0/24
82.27.250.0/24
82.29.239.0-82.29.240.255
82.38.23.0/24
82.38.42.0/23
82.38.46.0/23
82.38.80.0/23
82.38.105.0/24
82.38.215.0/24
82.39.136.0/24
82.39.245.0/24
178.83.82.0/23
178.83.171.0/24
Signature Algorithm: sha256WithRSAEncryption
15:1d:3f:d8:4f:d5:7d:83:b8:73:2b:41:8e:6b:f5:80:28:13:
aa:40:d6:d2:b6:63:a9:04:61:00:6a:45:86:bf:b5:76:f1:b0:
ce:92:ae:b7:e7:5c:e1:92:6e:0c:63:67:c1:33:59:35:df:74:
c7:10:e5:63:c5:8e:85:b5:6a:66:8c:e4:9c:52:c7:44:35:7f:
be:a9:77:cd:dd:f7:b6:a2:b6:ed:9b:e8:39:4f:e5:63:16:53:
5b:49:f0:72:13:69:a7:23:5b:9f:61:99:57:52:19:96:51:63:
e2:c9:4d:05:62:44:55:ce:bf:54:d9:f5:78:dc:a5:d6:90:ad:
19:87:15:4a:09:d3:bb:d2:af:2f:26:45:43:0b:75:19:15:53:
54:bd:dc:bd:4c:8c:e3:78:95:9f:bc:48:05:59:49:d7:9a:85:
c1:98:b7:11:f9:71:93:b9:12:79:2b:a1:f5:55:d7:0b:ea:a0:
1a:fe:e4:fe:d8:9e:8c:12:c9:ff:90:8d:4b:49:92:23:31:b2:
e7:63:e4:da:42:41:95:c7:3b:5a:67:fa:74:41:b5:d2:5e:a0:
81:4d:35:b0:04:98:f3:22:8d:9e:a3:9b:69:e6:df:d7:ab:46:
68:b9:ca:82:24:e2:af:02:be:55:e0:dd:91:57:97:b9:6d:59:
46:dc:3a:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:47:37 2026 by rpki-client