Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS154132.roa
File: AS154132.roa (raw, json)
Hash identifier: ck8bsD62M9K5u0RcCsIXC06lVGhVJT7g2R1iNXkqEcg=
Subject key identifier: C0:01:2D:B0:68:FD:58:C4:8F:73:D4:5B:99:89:EF:79:2E:5A:DC:08
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 0DB13996092F141718FAE1C3B9070D6D5EBB8755
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS154132.roa
Signing time: Fri 12 Jun 2026 05:46:16 +0000
ROA not before: Fri 12 Jun 2026 05:41:16 +0000
ROA not after: Fri 11 Jun 2027 05:46:16 +0000
asID: 154132
IP address blocks: 82.21.188.0/24 maxlen: 24
82.39.253.0/24 maxlen: 24
82.47.167.0/24 maxlen: 24
82.47.179.0/24 maxlen: 24
84.75.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:b1:39:96:09:2f:14:17:18:fa:e1:c3:b9:07:0d:6d:5e:bb:87:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 12 05:41:16 2026 GMT
Not After : Jun 11 05:46:16 2027 GMT
Subject: CN=C0012DB068FD58C48F73D45B9989EF792E5ADC08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:21:28:76:59:ff:23:3d:a3:5f:a7:c6:e2:c8:
f9:a7:b0:1d:99:55:a1:10:bb:d7:1b:b6:63:e8:dc:
5f:c6:0b:80:99:37:d9:14:02:de:f9:31:c3:f3:1f:
e4:1d:38:89:a0:a3:92:2a:47:32:76:ba:06:ec:7a:
44:62:42:45:9a:2c:40:d0:4e:58:e7:0c:89:94:af:
25:d0:a2:fe:5f:0d:51:cb:cf:06:cd:d6:c7:34:ac:
46:67:be:5b:0f:25:5d:54:d2:ec:e1:f7:9b:8a:25:
93:d8:71:3c:ae:19:1b:4c:47:ec:7b:d3:d0:5a:41:
e0:a0:92:4e:2c:b5:e6:ac:df:a2:a7:2f:49:4e:80:
88:81:ed:34:11:e5:e9:2f:3c:04:b5:22:ee:de:15:
05:f3:ec:43:6b:dc:09:be:37:78:ef:08:7a:5c:ba:
ca:eb:2d:29:f4:13:1a:1e:37:d6:08:cd:5a:b2:05:
d3:1c:a8:45:a7:ca:20:f2:b0:ac:1f:d0:65:7c:34:
6b:a3:40:0f:de:f0:24:04:7e:e8:84:cb:35:c9:36:
12:10:5b:9f:79:83:c4:dd:c9:be:93:69:95:e6:48:
6f:75:4e:f8:a6:46:c1:ed:3e:67:9f:74:e8:84:73:
7d:5d:aa:35:72:2c:d0:1a:a3:66:92:9f:f0:2a:eb:
dc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:01:2D:B0:68:FD:58:C4:8F:73:D4:5B:99:89:EF:79:2E:5A:DC:08
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS154132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.188.0/24
82.39.253.0/24
82.47.167.0/24
82.47.179.0/24
84.75.25.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:23:9b:73:49:1b:90:e2:7c:2e:73:50:31:7c:af:60:03:18:
68:58:1a:17:ce:8f:fd:76:af:70:4e:12:36:ae:d6:38:f2:14:
6f:3f:23:50:7e:0d:e8:89:8b:ae:d1:ec:d4:1d:21:b0:d8:60:
64:9f:d8:13:47:8a:1d:17:54:45:e1:c4:98:ea:e1:a3:fb:dd:
72:a3:35:fb:f3:00:e4:bb:f2:17:d3:fc:6a:69:e0:69:be:47:
55:79:b7:b7:3f:83:82:b3:0d:d7:c1:ac:df:1e:d8:4a:c3:b3:
71:f3:d9:9d:a5:29:90:29:96:e4:44:f4:7f:8a:24:76:38:34:
1f:0a:ef:c2:5f:47:8a:65:14:80:5c:b4:d7:82:7b:6e:88:b7:
ed:d8:b3:8c:0e:ae:a9:88:4b:ca:98:16:4a:e3:9d:2b:da:45:
4e:a9:6d:c0:0e:a3:d8:a4:b2:20:1a:66:a5:11:fc:af:98:8e:
1a:af:3a:eb:9e:98:03:e7:a4:dd:22:01:cd:3e:a0:d3:4f:08:
48:3d:ab:19:56:c5:32:5a:f5:59:92:a3:54:2e:a8:49:88:2d:
40:a5:f2:77:a8:37:20:73:37:e5:08:96:88:0a:f0:03:a4:f1:
60:01:2d:27:d0:a8:46:a9:90:06:df:e9:ad:10:cb:51:20:84:
09:d9:08:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:53:53 2026 by rpki-client