Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13122.roa
File: AS13122.roa (raw, json)
Hash identifier: AOf4Yg1A9iSEL3xKBDuQIz15bkCkqUogjZCXATZCFUI=
Subject key identifier: E8:98:1D:56:FC:9D:A2:76:6C:12:EA:89:5B:E6:06:A1:97:FB:0C:C0
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1CA9157859BE272E855089DB01700C83280D77F5
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13122.roa
Signing time: Fri 13 Feb 2026 08:58:25 +0000
ROA not before: Fri 13 Feb 2026 08:53:25 +0000
ROA not after: Fri 12 Feb 2027 08:58:25 +0000
asID: 13122
IP address blocks: 82.41.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:a9:15:78:59:be:27:2e:85:50:89:db:01:70:0c:83:28:0d:77:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 13 08:53:25 2026 GMT
Not After : Feb 12 08:58:25 2027 GMT
Subject: CN=E8981D56FC9DA2766C12EA895BE606A197FB0CC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f5:8a:23:4b:16:62:2d:3d:0e:74:85:a3:d0:
c5:7e:96:dc:4f:0d:a3:79:ed:93:2b:c9:6f:4f:a1:
85:9b:1f:d0:62:80:16:ec:5b:93:1d:84:3e:be:2d:
a7:0d:53:16:a4:e1:73:ee:79:6a:a5:87:74:ff:a5:
66:28:84:dd:b3:bb:b9:2b:8d:01:eb:b5:43:58:34:
5c:74:67:d2:68:1e:b7:e8:3b:02:c0:95:3c:a4:6a:
10:6e:dd:ac:7f:0b:8b:2b:0a:8e:4d:6a:a5:10:aa:
2e:0b:bb:35:38:08:4a:d2:8e:de:36:93:69:08:4e:
5a:a1:54:9e:61:de:5e:0a:b7:1e:59:a7:c1:1b:e5:
62:bc:14:31:a4:46:88:90:ba:65:be:ec:77:33:82:
5e:4e:b5:ba:4b:c6:f0:4f:86:20:40:b7:84:3e:5d:
54:5b:59:58:c7:59:82:db:d7:b1:40:84:3e:02:9f:
75:44:28:ac:bb:de:8c:1d:f0:5f:da:5c:64:ec:cf:
55:3e:74:e8:6a:24:6f:cb:fb:2d:11:e0:72:cc:66:
4a:74:fc:28:95:43:b4:44:9a:ec:28:fc:aa:10:47:
ce:4f:27:e4:64:41:59:e9:87:70:df:99:27:da:1c:
4a:f8:38:2d:ed:f1:85:d7:82:f8:b0:a3:4f:72:d8:
a4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:98:1D:56:FC:9D:A2:76:6C:12:EA:89:5B:E6:06:A1:97:FB:0C:C0
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13122.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.41.73.0/24
Signature Algorithm: sha256WithRSAEncryption
46:de:93:4f:a8:15:24:aa:ee:03:d8:e2:45:9f:10:ab:63:3b:
37:ed:99:d4:8a:d4:a0:df:c8:16:57:3c:92:fc:c9:6d:19:9c:
11:74:12:bd:c5:fa:81:cb:dd:8a:83:1c:ce:37:90:1f:83:1b:
8b:2d:fc:8d:f0:f7:9e:53:44:4f:45:84:ad:09:62:c9:8c:d2:
75:c5:8b:2c:40:4b:57:d6:35:d6:c2:68:2c:3a:fb:ee:f5:45:
3a:2c:7c:7e:c8:a1:3c:03:ae:76:16:09:e6:68:08:68:4a:08:
b0:e1:92:e4:07:3a:43:af:f0:14:95:00:c6:8d:08:bc:77:06:
09:49:66:5e:fe:d2:4e:16:5c:e3:ac:fa:86:c8:65:e6:f4:ab:
f2:4d:cf:38:a7:88:4f:88:d6:5a:7e:b8:ac:81:ff:69:46:d8:
95:c2:34:17:b0:66:ca:83:fb:5a:49:34:c8:1e:53:d9:0d:04:
1e:19:17:1e:33:c7:97:1d:a8:2d:08:9e:8a:ca:00:1d:21:37:
36:12:ea:f4:9e:70:06:d8:23:d1:2d:8b:d6:84:2d:45:37:fc:
83:0a:48:6f:e2:b9:5c:b6:e5:b2:b2:d9:75:7e:44:94:62:1e:
a8:55:e3:bc:f5:37:78:d4:fe:3e:de:34:7c:9b:41:a0:06:a2:
ca:29:59:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 21:38:45 2026 by rpki-client