Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: Y5WGEZbBuK3CzWrtEe+X8jWqebZCEoy528FOizUSFrQ=
Subject key identifier: 08:B8:35:8C:DE:30:1B:DA:4D:BB:2E:22:FE:86:D5:93:B5:1F:1F:FA
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 6B0DBEEF92F0F684F883AF1BD7B35B4000B36A3C
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
Signing time: Thu 11 Jun 2026 00:37:22 +0000
ROA not before: Thu 11 Jun 2026 00:32:22 +0000
ROA not after: Thu 10 Jun 2027 00:37:22 +0000
asID: 174
IP address blocks: 82.47.24.0/23 maxlen: 24
82.47.198.0/24 maxlen: 24
82.47.199.0/24 maxlen: 24
82.47.200.0/24 maxlen: 24
82.47.201.0/24 maxlen: 24
82.47.203.0/24 maxlen: 24
82.47.204.0/24 maxlen: 24
82.47.205.0/24 maxlen: 24
84.75.189.0/24 maxlen: 24
84.75.190.0/24 maxlen: 24
84.75.191.0/24 maxlen: 24
2a13:9500:14f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:0d:be:ef:92:f0:f6:84:f8:83:af:1b:d7:b3:5b:40:00:b3:6a:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 11 00:32:22 2026 GMT
Not After : Jun 10 00:37:22 2027 GMT
Subject: CN=08B8358CDE301BDA4DBB2E22FE86D593B51F1FFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:54:e5:be:32:73:00:03:77:9b:bf:5e:f9:a6:
9b:15:0d:5c:74:13:bc:2d:99:b4:7a:80:9c:f0:78:
48:e1:44:ea:9e:cd:8c:eb:36:8f:4f:c4:14:7c:b2:
a8:50:67:aa:09:63:16:4d:83:b7:a6:a1:cd:e5:fc:
7e:ed:0d:75:62:86:b0:6c:88:7d:bc:2e:b9:2b:b1:
08:4b:4a:01:db:ec:6e:73:4b:da:e3:42:06:69:0a:
f5:e6:9d:a5:39:da:67:75:fd:43:26:b8:70:ca:1f:
c8:d7:95:b5:17:0b:a9:64:20:4b:da:51:25:2f:aa:
76:70:08:ce:13:59:04:9b:10:ca:d1:cd:13:5b:64:
15:1e:ad:83:39:77:5a:98:38:aa:7c:20:f5:77:13:
1f:cc:cb:9a:b0:8b:87:e8:06:0e:e6:71:ae:23:68:
51:f8:ff:1f:f1:00:74:07:d6:af:7a:33:91:88:72:
ef:4d:9a:8c:0b:00:fc:be:2b:84:21:bc:6d:bd:63:
ee:78:e1:3a:b9:66:54:bb:09:11:48:42:3e:80:03:
81:98:52:5e:4d:6d:77:e1:13:d7:16:14:4f:32:c5:
db:cd:cc:fb:63:a2:7c:ee:b5:be:ce:91:f9:f6:87:
65:9d:67:38:c3:aa:10:ab:e8:fe:bb:e3:7e:7b:25:
39:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:B8:35:8C:DE:30:1B:DA:4D:BB:2E:22:FE:86:D5:93:B5:1F:1F:FA
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.47.24.0/23
82.47.198.0-82.47.201.255
82.47.203.0-82.47.205.255
84.75.189.0-84.75.191.255
IPv6:
2a13:9500:14f::/48
Signature Algorithm: sha256WithRSAEncryption
60:f4:e8:8f:a2:89:24:0a:79:9b:ef:de:ec:fe:fa:a4:a4:ce:
7e:d1:2a:b9:db:b1:07:30:68:e6:80:9e:57:a8:c0:38:05:de:
2c:ae:42:02:bf:e6:4b:a6:f5:c8:20:cc:ce:5e:ac:8b:10:b9:
9a:b6:bf:12:5b:4d:29:7d:87:e7:38:8c:a2:d0:09:11:de:00:
ab:c1:b7:c7:44:ef:dd:a6:8f:c1:ea:4b:f5:30:44:f6:0a:7b:
a3:b8:c1:3b:85:99:b2:bc:30:23:f9:44:1b:f4:24:45:33:a7:
b0:9c:52:e7:86:23:53:4e:f0:43:c6:76:4f:ec:97:0c:9d:4e:
c2:91:da:31:cb:64:13:25:c0:6c:55:62:77:10:4d:ce:9c:bc:
ba:28:de:6e:8a:f6:d9:74:5e:83:d3:1e:db:db:f7:9c:4e:d6:
bc:29:7e:42:04:f6:0b:4c:cd:56:13:b8:17:9e:0f:be:bc:ba:
b4:1e:95:71:20:de:fc:ac:e6:fc:d2:ad:ab:a9:0c:9f:eb:44:
08:d4:cc:e5:72:40:54:98:80:9f:21:c2:85:73:20:cc:89:53:
aa:03:45:24:82:e5:fe:ea:78:90:a5:c8:93:f8:6c:00:7e:c8:
b4:16:fb:ec:ba:53:d0:bf:02:48:89:b3:66:a7:3f:08:47:d6:
75:f6:05:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:46:17 2026 by rpki-client