Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS201667.roa
File: AS201667.roa (raw, json)
Hash identifier: EcTYU8FvFPUI3Gk47mQK4l/rlcnhLL1AkSCdCWolTpA=
Subject key identifier: D9:1B:FE:9E:5B:58:89:84:B6:77:8D:74:29:04:F2:3E:13:FB:CE:1B
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 21CE981274CF7B1CEB03E0448DBA767D53B4BB73
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS201667.roa
Signing time: Mon 06 Apr 2026 14:07:51 +0000
ROA not before: Mon 06 Apr 2026 14:02:51 +0000
ROA not after: Mon 05 Apr 2027 14:07:51 +0000
asID: 201667
IP address blocks: 82.41.180.0/24 maxlen: 24
178.83.66.0/24 maxlen: 24
2a13:9500:15f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:ce:98:12:74:cf:7b:1c:eb:03:e0:44:8d:ba:76:7d:53:b4:bb:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 6 14:02:51 2026 GMT
Not After : Apr 5 14:07:51 2027 GMT
Subject: CN=D91BFE9E5B588984B6778D742904F23E13FBCE1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b6:a9:09:46:50:f8:88:9a:01:c3:5c:64:f1:
69:6a:2e:05:e9:0f:27:51:a2:b3:31:d9:12:de:d3:
f1:d8:15:22:67:8f:0f:a4:6d:ed:ef:26:83:d0:52:
db:3d:c0:a1:51:91:3c:10:36:eb:ac:ef:52:23:f3:
15:51:a4:7a:d5:91:aa:66:61:9c:42:d7:8d:3c:89:
89:8f:34:36:30:6f:11:46:bd:99:5b:ac:ac:71:88:
12:9b:98:1b:2f:60:f4:79:53:4f:9f:ca:2d:5a:7b:
6a:b4:46:1d:ae:8d:af:1e:b8:ef:28:06:96:70:12:
f3:ac:b5:d2:c9:17:49:19:a5:34:45:0c:af:31:6e:
95:86:27:89:4d:ef:07:ad:1d:e5:67:fc:ef:4d:80:
65:1e:bc:94:bd:39:62:45:ad:4b:6d:15:3c:03:7f:
3a:c0:a1:ba:05:57:29:b6:19:2c:30:8e:6e:68:91:
2f:e4:53:9e:55:7f:d7:f1:70:a0:44:ee:1b:d4:9f:
3b:e0:94:0a:33:95:a6:09:37:22:be:ff:ad:22:05:
db:c7:3f:f8:a8:ba:c6:70:8a:b9:c1:b2:1b:b9:f4:
4c:f6:25:fb:ea:42:b9:62:b4:6d:5b:d6:b0:27:5c:
35:19:47:cb:c2:5c:31:45:ad:b0:9c:44:66:b7:d1:
17:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:1B:FE:9E:5B:58:89:84:B6:77:8D:74:29:04:F2:3E:13:FB:CE:1B
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS201667.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.41.180.0/24
178.83.66.0/24
IPv6:
2a13:9500:15f::/48
Signature Algorithm: sha256WithRSAEncryption
18:5d:97:9c:e9:4d:3f:c4:d4:28:d4:18:7d:97:a0:82:40:e5:
e9:bf:dd:6d:ab:8b:40:d6:42:0b:0b:b2:fc:c4:e0:95:70:19:
37:01:28:6a:7e:4d:68:92:02:9f:0e:90:2d:32:df:7b:31:38:
71:bf:70:07:6e:91:e3:57:6c:b4:41:b0:3b:10:81:42:df:8b:
20:24:34:77:ae:21:7d:77:f4:8a:d1:43:93:b3:cc:2c:9c:ae:
33:94:ca:3b:4a:dd:61:8c:95:29:51:68:36:1d:e0:24:db:e1:
f4:42:33:2f:c0:44:0b:a8:89:ec:ce:af:1d:3e:cd:36:a2:a1:
b9:88:90:8e:08:3a:c1:ff:2e:9f:e1:7f:89:28:63:5c:42:2d:
d3:b7:68:cf:d5:62:5a:da:3a:54:72:06:0c:d8:bb:65:80:f7:
c1:55:d9:ff:be:9e:42:11:30:37:92:de:6a:eb:9b:19:d6:a4:
20:47:cd:ab:94:0b:ed:d8:8e:d1:3b:21:c5:e6:0b:02:63:2e:
ac:a4:f1:fe:81:a6:c1:ec:bf:e8:d5:a1:a6:42:39:69:95:bf:
a4:56:34:43:cb:f8:47:c1:11:39:4c:57:6a:b1:de:65:95:4e:
53:2f:d6:59:f2:fb:b1:5e:a3:37:42:5d:79:10:91:29:9b:7e:
ef:fe:44:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:00:11 2026 by rpki-client