Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS150293.roa
File: AS150293.roa (raw, json)
Hash identifier: 9ZZ1mDm0C+J+UThI6FtvMH1YjzDIuOGxsGwzjgCJLXM=
Subject key identifier: 53:99:D4:A8:8C:A1:B7:A0:17:36:DD:FF:3B:50:A2:AA:D9:28:66:72
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 09B6ABAB59CDD4E23BD08A4833E2FD773E3B2ACA
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS150293.roa
Signing time: Tue 07 Apr 2026 09:37:55 +0000
ROA not before: Tue 07 Apr 2026 09:32:55 +0000
ROA not after: Tue 06 Apr 2027 09:37:55 +0000
asID: 150293
IP address blocks: 82.23.14.0/24 maxlen: 24
82.27.94.0/24 maxlen: 24
82.47.2.0/24 maxlen: 24
84.75.11.0/24 maxlen: 24
178.83.138.0/24 maxlen: 24
178.83.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:34:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:b6:ab:ab:59:cd:d4:e2:3b:d0:8a:48:33:e2:fd:77:3e:3b:2a:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 7 09:32:55 2026 GMT
Not After : Apr 6 09:37:55 2027 GMT
Subject: CN=5399D4A88CA1B7A01736DDFF3B50A2AAD9286672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e5:62:dc:6a:8a:76:2e:ef:82:9d:65:83:49:
7b:70:f1:ef:ac:06:86:bd:c3:63:ce:20:c4:93:f3:
01:f4:9f:d1:6c:92:15:f0:9b:01:ef:67:25:99:25:
7b:25:e9:cb:96:d5:df:27:52:92:69:2d:9d:68:50:
33:50:4e:06:70:91:d4:f7:c7:f6:4c:3f:e7:0b:e5:
74:7f:5c:63:d3:4a:35:39:52:ed:21:96:86:67:38:
38:5d:b0:56:46:bb:1b:77:d1:01:8b:f2:3c:9c:a7:
73:b9:b7:da:fc:73:85:13:c8:e8:c0:f8:e4:04:47:
41:c6:27:a4:e6:94:11:29:5c:f8:c0:9a:79:7d:8c:
1d:66:72:a3:a5:c7:bf:b0:78:82:ff:fd:f6:d6:52:
c6:23:d3:28:b8:ad:67:b1:b2:52:43:18:16:e1:16:
9c:2b:fd:19:87:4e:75:ec:3d:c5:38:83:2c:d3:c1:
ff:97:39:53:df:f7:8d:02:8e:d2:8e:98:98:4f:f6:
4a:6d:bf:67:78:e0:bf:c7:d2:3a:8e:98:02:83:88:
7b:80:a9:71:72:c9:c4:cf:74:8d:67:84:75:03:0b:
8f:04:ae:98:96:88:aa:c7:a9:54:4d:e3:a3:1e:fa:
85:41:0d:d7:bc:b6:b7:cb:fe:88:b8:7c:0e:33:1e:
46:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:99:D4:A8:8C:A1:B7:A0:17:36:DD:FF:3B:50:A2:AA:D9:28:66:72
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS150293.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.23.14.0/24
82.27.94.0/24
82.47.2.0/24
84.75.11.0/24
178.83.138.0/24
178.83.150.0/24
Signature Algorithm: sha256WithRSAEncryption
48:19:65:36:74:c0:23:8e:67:34:5c:d4:51:0c:ef:56:9d:2c:
90:83:16:ec:ae:f7:1c:8b:d5:8b:cd:ab:e3:94:d9:1d:c4:db:
3b:1b:f1:3f:fb:43:7d:6b:4b:df:2f:9f:d2:de:b1:8a:f2:1c:
4f:41:7c:53:ef:10:2c:8f:27:8c:51:0a:e8:ea:25:c9:29:bf:
de:a1:1d:2d:ed:73:ef:f7:c9:53:55:30:e5:69:80:21:b7:ee:
0a:fb:21:02:f2:b0:c8:93:7b:5d:86:b7:3c:d2:83:aa:27:37:
52:92:ef:74:60:14:b3:9f:26:69:de:e6:db:4e:d4:06:3d:65:
73:c8:64:48:d1:bc:e0:4c:dd:6e:a1:36:2a:c8:a4:89:24:3e:
8f:fa:da:7a:37:9a:9c:b7:17:0b:c1:bb:62:aa:69:1f:46:c5:
52:65:f8:56:3c:82:dd:1e:25:a6:a9:7f:e8:fd:9f:4b:e0:ca:
3c:9c:76:c9:08:9e:6d:95:a2:67:9c:8e:43:dc:01:35:12:cb:
47:39:81:30:68:6e:fd:51:21:0f:e0:7f:3b:a3:d4:46:0a:16:
1a:2c:00:60:7c:31:4e:9c:6c:79:3a:0a:a1:e9:a6:cf:e0:42:
98:e5:ea:00:c0:bd:bb:56:d2:80:13:bb:c9:96:b1:b9:35:4b:
03:84:63:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:48:48 2026 by rpki-client