Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS197537.roa
File: AS197537.roa (raw, json)
Hash identifier: oD0AZB1r0/gSC0s1bclp9oEfaTAmQ9HLesr3g5nwunM=
Subject key identifier: FC:67:36:75:2E:9C:B3:AA:6D:7C:8F:74:85:B4:3F:C8:E0:4D:78:4A
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 798C09196835C213DCD1203B547D06EA641ACB16
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS197537.roa
Signing time: Sun 22 Feb 2026 10:10:22 +0000
ROA not before: Sun 22 Feb 2026 10:05:22 +0000
ROA not after: Sun 21 Feb 2027 10:10:22 +0000
asID: 197537
IP address blocks: 82.21.77.0/24 maxlen: 24
82.22.176.0/24 maxlen: 24
82.23.148.0/24 maxlen: 24
82.24.84.0/24 maxlen: 24
82.26.194.0/24 maxlen: 24
82.39.196.0/22 maxlen: 24
82.39.248.0/23 maxlen: 24
178.83.28.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:8c:09:19:68:35:c2:13:dc:d1:20:3b:54:7d:06:ea:64:1a:cb:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 22 10:05:22 2026 GMT
Not After : Feb 21 10:10:22 2027 GMT
Subject: CN=FC6736752E9CB3AA6D7C8F7485B43FC8E04D784A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4b:04:16:1e:7f:24:16:59:db:0e:09:7a:3c:
7b:5a:28:64:b8:77:78:91:0f:9b:94:10:9f:04:bb:
a2:ac:98:c1:cc:50:c0:84:b5:a2:d6:fb:26:85:c2:
ac:8c:bd:4c:fa:f3:8f:6b:b7:07:63:df:88:54:1c:
70:9a:c9:df:e6:9c:98:64:44:90:38:17:50:5e:59:
27:4f:ea:02:2b:a1:6b:75:e0:50:20:e7:4b:3a:b4:
e9:fd:5c:fa:b5:f2:2b:8f:e6:4a:a8:ca:18:45:b6:
79:89:ec:8f:cd:54:6c:21:13:01:28:d8:5e:87:17:
cb:15:d4:43:65:b8:ae:f7:e2:96:d4:3a:5d:51:45:
79:9d:f6:b6:96:20:b4:fa:d7:2c:69:4d:e5:47:8b:
55:d5:aa:9b:20:1e:c3:33:bd:73:ee:50:34:f7:aa:
a5:aa:48:39:16:f1:28:a1:b7:ba:8a:db:81:8b:30:
d7:c1:e4:5e:00:30:9d:c3:14:cc:7c:a2:95:dc:68:
2c:02:d2:93:bb:b7:5e:02:f4:ae:93:f7:dd:8d:1e:
1d:93:ec:b0:99:62:ff:6f:d3:00:18:18:dd:56:00:
55:ea:97:87:27:b0:a9:2c:57:91:af:d8:e5:0c:0a:
a9:2f:73:23:7f:16:d1:c0:77:b7:4d:24:1c:55:60:
34:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:67:36:75:2E:9C:B3:AA:6D:7C:8F:74:85:B4:3F:C8:E0:4D:78:4A
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS197537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.77.0/24
82.22.176.0/24
82.23.148.0/24
82.24.84.0/24
82.26.194.0/24
82.39.196.0/22
82.39.248.0/23
178.83.28.0/22
Signature Algorithm: sha256WithRSAEncryption
40:4d:12:c1:87:b1:f6:57:b3:b2:e6:48:59:9c:94:f6:42:c7:
c8:87:18:b6:5a:87:3d:86:3c:50:23:23:db:f8:f9:4b:fc:23:
d4:99:f2:e7:a5:d9:6f:9c:e6:93:d8:20:eb:09:ea:ff:b1:42:
f7:9b:20:10:b8:08:ee:49:47:35:28:ea:45:d3:aa:8c:cb:c9:
e2:88:ba:5a:27:5c:11:dc:f8:3c:db:80:05:22:ea:60:e6:b8:
78:e9:7c:da:bc:b0:00:aa:29:3f:ab:05:02:6c:99:d7:71:66:
d5:d9:04:9a:6f:1e:db:ea:39:bb:a5:19:dd:a0:4b:a6:d4:00:
d6:4a:43:31:55:38:9a:cf:c1:ff:18:7b:24:7f:f7:3b:39:30:
d6:19:64:70:fe:d5:7a:cd:15:c3:28:35:86:08:e5:72:63:7d:
87:3b:ae:97:75:23:3e:95:a3:fc:2c:22:af:dc:97:48:41:09:
b5:36:25:63:e4:dc:9b:b5:16:b9:9a:5d:f2:d2:d8:0d:ee:86:
90:ab:f2:0a:54:06:9b:b7:7c:35:fd:78:08:e4:02:71:5f:75:
59:02:01:56:d5:ca:a4:53:43:ed:7d:3d:8c:9e:ba:19:b2:e0:
b6:f5:0e:a9:1f:39:63:6e:fc:e6:f1:20:e9:71:94:94:3d:b6:
55:57:3b:1c
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUeYwJGWg1whPc0SA7VH0G6mQayxYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjAyMjIxMDA1MjJaFw0yNzAyMjExMDEwMjJaMDMxMTAvBgNV
BAMTKEZDNjczNjc1MkU5Q0IzQUE2RDdDOEY3NDg1QjQzRkM4RTA0RDc4NEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZSwQWHn8kFlnbDgl6PHtaKGS4
d3iRD5uUEJ8Eu6KsmMHMUMCEtaLW+yaFwqyMvUz6849rtwdj34hUHHCayd/mnJhk
RJA4F1BeWSdP6gIroWt14FAg50s6tOn9XPq18iuP5kqoyhhFtnmJ7I/NVGwhEwEo
2F6HF8sV1ENluK734pbUOl1RRXmd9raWILT61yxpTeVHi1XVqpsgHsMzvXPuUDT3
qqWqSDkW8Siht7qK24GLMNfB5F4AMJ3DFMx8opXcaCwC0pO7t14C9K6T992NHh2T
7LCZYv9v0wAYGN1WAFXql4cnsKksV5Gv2OUMCqkvcyN/FtHAd7dNJBxVYDSLAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU/Gc2dS6cs6ptfI90hbQ/yOBNeEowHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTk3NTM3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAUhVN
AwQAUhawAwQAUheUAwQAUhhUAwQAUhrCAwQCUifEAwQBUif4AwQCslMcMA0GCSqG
SIb3DQEBCwUAA4IBAQBATRLBh7H2V7Oy5khZnJT2QsfIhxi2Woc9hjxQIyPb+PlL
/CPUmfLnpdlvnOaT2CDrCer/sUL3myAQuAjuSUc1KOpF06qMy8niiLpaJ1wR3Pg8
24AFIupg5rh46XzavLAAqik/qwUCbJnXcWbV2QSabx7b6jm7pRndoEum1ADWSkMx
VTiaz8H/GHskf/c7OTDWGWRw/tV6zRXDKDWGCOVyY32HO66XdSM+laP8LCKv3JdI
QQm1NiVj5NybtRa5ml3y0tgN7oaQq/IKVAabt3w1/XgI5AJxX3VZAgFW1cqkU0Pt
fT2MnroZsuC29Q6pHzljbvzm8SDpcZSUPbZVVzsc
-----END CERTIFICATE-----
Generated at Sun Mar 1 22:02:25 2026 by rpki-client