Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
File: AS203054.roa (raw, json)
Hash identifier: tAn9VHtSC45ulttE3EXGD1E4/QQdlHP9rFY6SzMk1mY=
Subject key identifier: D5:2D:96:A1:BA:CA:24:C5:A6:0A:12:39:F0:58:CF:87:EA:AD:B3:B9
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 39825867B26124D96B0B5C120AA9E84E735B81D4
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
Signing time: Thu 16 Apr 2026 14:47:06 +0000
ROA not before: Thu 16 Apr 2026 14:42:06 +0000
ROA not after: Thu 15 Apr 2027 14:47:06 +0000
asID: 203054
IP address blocks: 82.47.52.0/24 maxlen: 24
84.75.148.0/24 maxlen: 24
84.75.162.0/24 maxlen: 24
84.75.163.0/24 maxlen: 24
178.83.198.0/24 maxlen: 24
178.83.202.0/24 maxlen: 24
178.83.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:82:58:67:b2:61:24:d9:6b:0b:5c:12:0a:a9:e8:4e:73:5b:81:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 16 14:42:06 2026 GMT
Not After : Apr 15 14:47:06 2027 GMT
Subject: CN=D52D96A1BACA24C5A60A1239F058CF87EAADB3B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:48:d6:f2:df:00:71:f8:fe:2b:32:af:66:cf:
69:60:9d:00:5a:f6:cc:4c:9c:af:f1:ed:a7:b5:64:
ea:3e:71:9b:52:b7:58:49:2c:f7:f4:78:5f:d6:b0:
85:c1:16:70:1d:5e:00:24:e5:71:49:34:01:4c:5c:
7b:44:f9:04:c7:7b:c9:fe:25:7e:3a:1a:79:52:8e:
34:0e:dd:95:1c:a8:8e:ae:a4:09:63:f4:ec:bb:2f:
c7:cc:1f:e3:76:1b:6b:81:76:b0:29:ba:6d:94:9c:
8b:83:f1:c2:a8:1b:c9:d2:94:26:6b:3f:46:87:aa:
47:27:30:c7:10:bf:f8:cb:d9:1b:3c:60:73:a2:af:
13:3e:df:68:8b:31:12:1d:a9:1e:0b:69:6e:8d:70:
5b:a1:f8:2e:3f:db:c8:d5:91:3a:3b:99:fc:22:24:
4f:08:0b:76:35:1f:7d:92:44:9d:b8:94:20:ed:6b:
fe:35:d8:64:18:8a:d6:7f:ac:32:64:a3:fc:e6:5b:
6c:ab:d0:04:1b:9b:37:f7:e5:51:41:7f:a5:8a:cd:
6d:e1:04:b7:93:5b:2f:be:21:20:ee:d7:ce:40:74:
2e:38:dd:4d:c0:f7:b7:0b:66:43:0f:85:b9:57:e5:
f2:82:f5:29:fc:24:36:7b:68:cf:77:2c:bd:1a:e7:
9b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:2D:96:A1:BA:CA:24:C5:A6:0A:12:39:F0:58:CF:87:EA:AD:B3:B9
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.47.52.0/24
84.75.148.0/24
84.75.162.0/23
178.83.198.0/24
178.83.202.0/24
178.83.214.0/24
Signature Algorithm: sha256WithRSAEncryption
12:00:99:e6:c5:a2:07:fe:04:bc:67:ad:75:d9:c0:47:2a:88:
a8:13:4f:ae:72:da:6f:78:eb:c0:69:02:05:ea:61:b1:52:06:
f9:61:50:57:3b:e1:c2:dc:0b:b3:38:21:a6:b2:26:4b:b2:62:
f7:2f:db:b6:97:24:fe:41:ba:9e:4c:6f:4b:f7:ed:d9:24:06:
4b:3e:76:96:f4:0f:04:76:0a:6e:41:1a:d4:ea:73:64:a3:de:
c6:1f:1c:72:3a:c4:81:da:10:3d:c6:bc:57:a3:99:45:34:98:
d0:61:05:da:66:c5:c8:8d:3d:9c:23:44:b7:1f:2f:23:8f:b6:
6a:be:d8:81:a5:51:23:84:19:d8:8a:b2:81:46:c5:bf:50:56:
5c:21:a5:09:ef:1c:d9:c8:a5:d0:20:48:a6:f2:cc:0f:82:6f:
76:97:1b:fc:bf:ba:40:a2:16:b2:34:b4:7a:90:93:d5:21:09:
54:eb:71:60:ed:95:8c:cc:e0:f6:92:77:13:12:1c:8d:d3:b4:
b6:63:96:2a:a2:14:28:e9:b2:f1:56:39:95:09:8a:68:10:f3:
91:e8:bd:2a:a2:fa:33:73:09:2a:12:32:7c:5a:24:26:9c:3e:
71:9b:40:30:cd:dd:1a:26:9c:37:fd:eb:1c:98:59:8d:bf:20:
84:53:c5:de
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgIUOYJYZ7JhJNlrC1wSCqnoTnNbgdQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA0MTYxNDQyMDZaFw0yNzA0MTUxNDQ3MDZaMDMxMTAvBgNV
BAMTKEQ1MkQ5NkExQkFDQTI0QzVBNjBBMTIzOUYwNThDRjg3RUFBREIzQjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZSNby3wBx+P4rMq9mz2lgnQBa
9sxMnK/x7ae1ZOo+cZtSt1hJLPf0eF/WsIXBFnAdXgAk5XFJNAFMXHtE+QTHe8n+
JX46GnlSjjQO3ZUcqI6upAlj9Oy7L8fMH+N2G2uBdrApum2UnIuD8cKoG8nSlCZr
P0aHqkcnMMcQv/jL2Rs8YHOirxM+32iLMRIdqR4LaW6NcFuh+C4/28jVkTo7mfwi
JE8IC3Y1H32SRJ24lCDta/412GQYitZ/rDJko/zmW2yr0AQbmzf35VFBf6WKzW3h
BLeTWy++ISDu185AdC443U3A97cLZkMPhblX5fKC9Sn8JDZ7aM93LL0a55tlAgMB
AAGjggIoMIICJDAdBgNVHQ4EFgQU1S2WobrKJMWmChI58FjPh+qts7kwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjAzMDU0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAUi80
AwQAVEuUAwQBVEuiAwQAslPGAwQAslPKAwQAslPWMA0GCSqGSIb3DQEBCwUAA4IB
AQASAJnmxaIH/gS8Z6112cBHKoioE0+uctpveOvAaQIF6mGxUgb5YVBXO+HC3Auz
OCGmsiZLsmL3L9u2lyT+QbqeTG9L9+3ZJAZLPnaW9A8EdgpuQRrU6nNko97GHxxy
OsSB2hA9xrxXo5lFNJjQYQXaZsXIjT2cI0S3Hy8jj7ZqvtiBpVEjhBnYirKBRsW/
UFZcIaUJ7xzZyKXQIEim8swPgm92lxv8v7pAohayNLR6kJPVIQlU63Fg7ZWMzOD2
kncTEhyN07S2Y5YqohQo6bLxVjmVCYpoEPOR6L0qovozcwkqEjJ8WiQmnD5xm0Aw
zd0aJpw3/escmFmNvyCEU8Xe
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:00:04 2026 by rpki-client