Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS154612.roa
File: AS154612.roa (raw, json)
Hash identifier: hF1ElI38Bb2msGFq6c/Jrj/ADUEZlWnov2mx9XMV+P8=
Subject key identifier: 2B:33:28:2A:AB:D1:69:86:DA:A9:E6:65:35:CF:E3:38:88:7E:46:B8
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 5A7E0F666187CEE9EE17390F7188346481CB6C4C
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS154612.roa
Signing time: Fri 12 Jun 2026 07:20:55 +0000
ROA not before: Fri 12 Jun 2026 07:15:55 +0000
ROA not after: Fri 11 Jun 2027 07:20:55 +0000
asID: 154612
IP address blocks: 82.47.38.0/24 maxlen: 24
82.47.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:7e:0f:66:61:87:ce:e9:ee:17:39:0f:71:88:34:64:81:cb:6c:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 12 07:15:55 2026 GMT
Not After : Jun 11 07:20:55 2027 GMT
Subject: CN=2B33282AABD16986DAA9E66535CFE338887E46B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4e:d0:1b:26:cb:d6:d8:e8:4e:63:3e:fd:a7:
cc:04:3b:c5:ea:56:e6:30:e4:0c:bf:e1:81:ec:17:
d3:c6:9b:47:04:5a:78:ca:75:b4:e3:56:be:84:fa:
16:56:0c:4c:df:ee:01:c6:70:d7:2c:b2:21:0a:47:
92:7d:3e:9c:03:9b:af:67:e0:1f:c4:2f:d5:6a:0b:
0d:5f:8a:8a:23:0a:d8:a0:07:c3:c4:a2:b1:4e:4f:
a3:a0:4f:55:da:fb:08:f6:5b:a3:f7:47:e5:ec:7c:
15:4d:c8:2b:d8:8c:31:5a:18:70:ff:6f:ef:b0:df:
c7:11:b9:ae:9b:0a:7d:e7:1c:26:7e:e8:02:99:3d:
e3:ea:2a:fb:ad:61:f8:16:a2:7e:5f:88:5e:8b:ca:
c6:87:7a:d7:9f:98:d6:2f:bc:30:4a:00:ae:d5:d1:
b0:60:40:20:cf:ae:20:04:e1:1b:3e:d9:6d:4d:7b:
e5:93:3a:50:3b:8e:07:58:be:e8:85:2c:1e:70:63:
fc:d1:82:19:d4:49:35:d9:0d:b1:27:61:02:65:f5:
4a:77:be:b5:7e:14:d5:cb:86:e4:4e:ba:11:1f:9f:
29:0c:24:ce:ef:f6:fe:11:14:60:43:31:6b:0c:d8:
f2:84:c4:bb:20:60:d4:80:8d:57:01:ad:9b:fc:09:
4c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:33:28:2A:AB:D1:69:86:DA:A9:E6:65:35:CF:E3:38:88:7E:46:B8
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS154612.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.47.38.0/24
82.47.167.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:2f:ad:25:b4:38:db:2f:ad:a9:88:4a:e3:7d:34:96:07:2c:
0c:8c:40:b1:c6:d8:df:6c:6e:85:e8:7d:f1:35:7d:75:4c:3c:
b9:6f:72:7d:21:aa:d8:01:86:25:40:30:64:6e:b5:70:92:b9:
cc:a3:bf:4c:21:ff:2f:35:18:c9:67:61:69:c7:7a:ae:2b:de:
0c:fe:55:74:71:66:69:d0:b2:14:b7:8b:ab:9c:bd:45:f3:84:
e3:b1:c3:48:83:e6:15:e9:7e:c6:08:ec:c0:96:84:b8:a8:5e:
4d:4e:4f:07:b5:06:0b:cf:fc:6a:df:c3:ab:65:fc:6e:6d:21:
d7:19:d0:5c:f1:b6:3b:aa:e7:dc:1a:8d:ac:aa:d9:59:51:c0:
8d:65:5e:54:78:53:8f:2a:5a:18:cb:02:ae:58:2b:33:65:c3:
d7:d6:97:51:1c:4d:d4:fe:de:35:d4:6f:d8:cb:bf:95:8e:a6:
15:d1:8e:fb:d4:ee:10:f9:0f:a1:c5:e2:45:9f:f3:21:b9:d0:
e9:df:ef:04:a2:55:63:73:00:b5:b4:0f:7e:18:d3:c8:7d:28:
a5:cb:84:ab:17:0d:78:37:31:b2:53:2a:3c:29:1b:25:ed:5b:
52:80:a5:1f:f3:3a:c6:5e:96:25:99:f6:0f:89:78:dc:37:27:
9f:4f:1c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:34:58 2026 by rpki-client